Comment by nomilk

4 hours ago

> I tend to think giving a remote party control over your command prompt inherently comes with risks.

I thought cursor (and probably most other) AI IDEs have this capability too? (source: I see cursor executing code via command line frequently in my day to day work).

I've always assumed the protection against this type of mishap is statistical improbability - i.e. it's not impossible for Cursor to delete your project/hard disk, it's just statistically improbable unless the prompt was unfortunately worded to coincidentally have a double meaning (with the second, unintended interpretation being a harmful/irreversible) or the IDE simply makes a mistake that leads to disaster, which is also possible but sufficiently improbable to justify the risk.

3 comments

nomilk

sroussey 4 hours ago

I only run ai tools in dev containers, so blast radius is somewhat minimal.

conradev 2 hours ago

I run Codex in a sandbox locked to the directory it is working in.

fragmede 4 hours ago

umm, you have backups, right?