> let me be upfront about how much access i've given clawdbot: it can read my text messages, including two-factor authentication codes. it can log into my bank. it has my calendar, my notion, my contacts. it can browse the web and take actions on my behalf.

this is foolish, despite the (quite frankly) minor efficiency benefits that it is providing as per the post.

and if the agent has, or gains, write access to its own agents/identity file (or a file referenced by its agents file), this is dangerous