Yeah, fine... but it's like daily that a non-tech-savvy friend of mine tells me they just installed some shiny "harness" on their laptop now to organize their emails, and they "just put it in one folder" and "8n8 says", what does it say on the tin, Dave? "it says it's highly unlikely it will escape from the folder". Your work computer? "Yeah, but it's a real company. They're all about security."
So telling someone who just wants to upload an .xlsx file to a bot that they should just find a harness to give CLI access to their work computer - right after they say they work in a regulatory capacity - is just freakin malpractice.
Yeah, fine... but it's like daily that a non-tech-savvy friend of mine tells me they just installed some shiny "harness" on their laptop now to organize their emails, and they "just put it in one folder" and "8n8 says", what does it say on the tin, Dave? "it says it's highly unlikely it will escape from the folder". Your work computer? "Yeah, but it's a real company. They're all about security."
So telling someone who just wants to upload an .xlsx file to a bot that they should just find a harness to give CLI access to their work computer - right after they say they work in a regulatory capacity - is just freakin malpractice.
i give it in real ubuntu, no vm, no docker. so long I don't ask it to organize files, it will behave. it has not screw me so far.
I only run it with --dangerously-skip-permissions. YOLO!
Godspeed
You mean a VM like the one that contains a 0day that can escape the sandbox that gets found every year at pwn2own?
Presumably you’re also using a browser to view this web page. There have also been vulnerabilities in that. You have to draw a line somewhere.
I run mine as a separate unprivileged user. (No VM.) Am I pwned?
Maybe, but the sort of 0days you're talking about aren't exploited in any meaningful way for almost all developers.
"Seatbelts don't save the life of everyone who gets into an accident, so why bother wearing one?"