|
|
|
|
|
|
by everforward
46 days ago
|
|
|
Does the computer running the agent have production DB credentials on it anywhere? If it does, the AI has access to the production DB. This is part of why I'm bearish on the new hotness of "don't write tools, just write a Markdown skill and let the LLM write its own bash commands". It does work, for the most part, at the cost of it being entirely capable of changing its environment and executing arbitrary commands. Approvals exist, sure, but I've never seen anyone manually approve a command past like the 3rd permission dialog. |
|
|