logoalt Hacker News

keyletoday at 5:29 AM2 repliesview on HN

Great write up.

These local agents that you spawn and give access to your drive are kind of insane to me.

It's at the level of

     /bin/bash -c "$(curl -fsSL https://somescriptofftheinternet
which you cannot inspect, and may be well different every time you interact with it!

As per usual, being at the forefront of the tech world is leaving behind privacy and security in the dust... until something bad happens.

Replies

globular-toasttoday at 6:39 AM

Not for me. I was running these things in sandboxes from the start. Couldn't believe people were running this stuff straight up.

add-sub-mul-divtoday at 5:40 AM

Historically at least there have been some established high trust projects for which curl | bash made sense. But with AI the scene is full of grifters and vibe coders so we can't have nice things.