Hacker News new | ask | show | jobs
by orf 86 days ago
Back office, employee access is a completely different problem to what is described in the post.

How do you enforce tenant isolation with that method, or prevent unbounded table reads?
2 comments
tossandthrow 86 days ago
They likely don't need tenant isolation and unbound table reads can be mitigated using timeouts.

We do something similar for our backoffice - just with the difference that it is Claude that has full freedom to write queries.

link
paulryanrogers 85 days ago
Can Claude drop tables?
link
weird-eye-issue 86 days ago
RLS...
link