logoalt Hacker News

arein3yesterday at 4:58 PM1 replyview on HN

All apis have to authorize and authenticate if they do sensitive stuff. Otherwise youre asking for it.


Replies

NateEagyesterday at 8:25 PM

Yes, but whatever the LLM has authenticated access to, an attacker can convince it to mess with on their behalf.