|
|
|
|
|
|
by pcwelder
383 days ago
|
|
|
I believe it's not possible to restrict an LLM from executing certain commands while also allowing it to run python/bash. Even if you allow just `find` command it can execute arbitrary script. Or even 'npm' command (which is very useful). If you restrict write calls, by using seccomp for example, you lose very useful capabilities. Is there a solution other than running on sandbox environment? If yes, please let me know I'm looking for a safe read-only mode for my FOSS project [1]. I had shied away from command blacklisting due to the exact same reason as the parent post. [1] https://github.com/rusiaaman/wcgw |
|
|