|
|
|
|
|
|
by yunseo47
94 days ago
|
|
|
While it's now relatively well-known that downloading and executing arbitrary code is dangerous, many still fail to recognize the risk when it's wrapped in agent skills and Markdown. This context likely explains why companies like Cisco, 1Password, and Snyk emphasize the dangers of agent skills. I entirely agree with what you said. As has been the case with all types of security vulnerabilities, this too requires the comprehensive application of principles such as least privilege, sandboxing, and defense in depth. Thank you for your insightful comment. |
|
|