Don't. Among the many other reasons why you shouldn't do this, there are regularly repor...

JoshTriplett • yesterday at 8:24 PM • 3 replies • view on HN

Don't.

Among the many other reasons why you shouldn't do this, there are regularly reported cases of AIs working around these types of restrictions using the tools they have to substitute for the tools they don't.

Don't be the next headline about AI deleting your database.

Replies

codingdave • yesterday at 9:59 PM

You need to secure the account an LLM-based app runs under, just like you would any user, AI or not. When you hire real people, do you grant them full privileges on all systems and just ask them not to touch things they shouldn't? No, you secure their accounts to the specific privileges they need, and no more. Do the same with AI.

➕ show 1 reply

ninju • yesterday at 9:23 PM

https://www.pcmag.com/news/vibe-coding-fiasco-replite-ai-age...

nico • yesterday at 8:33 PM

> Don't

Do you mean "Don't give it more autonomy", or "Don't use it to access servers/dbs" ?

I definitely want to be cautious, but I don't think I can go back to doing everything manually either

➕ show 4 replies

alt Hacker News

Replies