|
|
|
|
|
|
by vova_hn2
70 days ago
|
|
|
I think that those permissions are largely security theater anyway. It would be better if an LLM coding harness just helped you set up a proper sandbox for itself (containers, VMs etc.) and then run inside the isolated environment unconstrained. In setup mode, the only tool accessible to the agent should be running shell scripts, and each script should be reviewed before running. Inside an isolated environment, there should be no permission system at all. |
|
|