[mdeeks]

If it does do that then yeah, there should be backlash. But I don't see that stated anywhere in the notes nor do I see a hint of that in the app.

The only two AI interfaces I see are the "Engage Artificial Intelligence" menu item where you ask it how to form a command, and then a second interface in the Toolbelt called Codecierge where it tries to complete a task you tell it to do.

Both of which are completely optional and require an OpenAI key. If you do use them you're sending your request to OpenAI but as far as I can tell it doesn't get any of your command history or anything like that.

[upon_drumhead]

The API key is unvalidated and so any entry that isn't exactly a blank string is treated like a valid key and data is sent out. There's a risk there that a future version may handle the blank key incorrectly or differently and start transmitting away. For some people, the possibility of a string handling bug or a filesystem corruption or what not is enough of a risk to avoid the software.

[lurkersince2013]

If you're so paranoid about this possibility then just block it at the network level - heck, even whitelist IP ranges that you want iTerm2 to be able to connect out to and default deny the rest.

Let's not blame iTerm2, which is a highly useful, amazing piece of software that many of us have relied on on every day for years and have never paid anything to use.

If you really are so worried about the AI feature being part of iTerm2 then go fork it and strip the AI functionality yourself: https://github.com/gnachman/iTerm2

[tflol]

> If it does do that then yeah, there should be backlash.

It's a threat. Disrespectful to users.

Maybe it does, maybe it doesn't! If it doesn't maybe it will someday! When just the right person gets hired into exec.