|
|
|
|
|
|
by aluzzardi
55 days ago
|
|
|
Author here. Depending on how it’s designed, the harness itself doesn’t need any sandboxing. At the end of the day, it’s a “simple” loop that calls an external API (LLM) and receives requests to execute stuff on its behalf. It’s not the agent running bash commands: you (the harness author) are, and you’re in full control of where and how those commands get executed. In the article’s case, bash commands are forwarded to a sandbox, nothing ever runs on the harness itself (it physically can’t, local execution is not even implemented in the harness). |
|
|