[rpigab]

People trust their browser nowadays, I'd expect the attack to be even easier if you just render the markdown in html, hiding the injection using plain old css text styling like in the docx but with many more possibilities.

You can even add a nice "copy to clipboard button" that copies something entirely different than what is shown, but it's unnecessary, and people who are more careful won't click that.

[snoman]

But nobody trusts AI. Whenever I leave my circle of engineering people and am along the general public, I hear nothing but contempt for it.

[munk-a]

I will never stop being disappointed that we have an API to control the clipboard. There is no use of this that I have ever found beneficial as a user.