Y
Hacker News
new
|
ask
|
show
|
jobs
by
mkesper
54 days ago
When the agent uses your GH credentials to nuke all your projects or put out a lot of crap, this separation will not save you.
1 comments
nopurpose
54 days ago
whitelisting `gh` args should solve it. Event opencode's primitive permission system allows that.
link
tredre3
54 days ago
The ability to whitelist specific args for commands has been the source of several (countless?) sudo CVEs over the years.
link