|
|
|
|
|
|
by schipperai
59 days ago
|
|
|
Agent permissions layer are broken. We need better a permissions layer that doesn’t get in the way but stops destructive commands. Devs get pushed into running yolo mode cause classifying allow / deny by command is not enough. A sandbox would not have prevented this either. “nah” is a context aware permission layer that clasifies commands based on what they actually do nah exposes a type taxonomy: filesystem_delete, network_write, db_write, etc so commands gets classified contextually: git push ; Sure.
git push --force ; nah? rm -rf __pycache__ ; Ok, cleaning up.
rm ~/.bashrc ; nah. curl harmless url ; sure.
curl destroy_db ; nah. https://github.com/manuelschipper/nah Better permissions layers is part of the answer here, and a space that has been only narrowly explored. |
|
|