You're right that this is a concern but this and the followup are also totally unhelpful.

Even if you don't want to do any additional work explaining it or finding a source, all you have to do to change this message from being dickish to being helpful would be to phrase it more like "I think there are some serious risks with this approach from a prompt injection standpoint. I would recommend doing some research on the risks for AI agents with unfettered access to the internet and prompt injection."

And if spending a few more seconds typing that out is still too much of a waste of time for you to do, I might question if you have time to waste commenting on HN at all when you can't uphold basic social contracts with the time you do have.

why should one be more concerned about hypothetical prompt injection and that being the reason not to use clawdbot? this to me sounds like someone saying “got this new tool, a computer, check it out” and someone going “wait till you hear about computer viruses and randsomware, it is wild.”