Comment by anVlad11
1 day ago
So, $100B+ valuation companies get essentially free access to the frontier tools with disabled guardrails to safely red team their commercial offerings, while we get "i won't do that for you, even against your own infrastructure with full authorization" for $200/month. Uh-huh.
Yes, and that's normal. Coordinated disclosure is standard practice when the risk of public disclosure is unacceptable.
Risk for who? It feels unfair that the risk to myself is ignored "for the greater good of everyone else."
Welcome to the world of security engineering, in which your needs do not in fact trump the needs of everyone else.
1 reply →
I'm sympathetic to your point, but I'm sure there are heightened trust levels between the participating orgs and confidentiality agreements out the wazoo.
How does public Claude know you have "full authorization" against your own infra? That you're using the tools on your own infra? Unless they produce a front-end that does package signing and detects you own the code you're evaluating.
What has it stopped you from doing?
You can do pretty much anything you want with public claude if you self-report to it that you have been properly authorized.