← Back to context

Comment by ygjb

5 days ago

Are you sure it refused because it can't use a username and password? I literally have loops running right now where it uses a database of test users and passwords to log into different roles and do computer use and browser automation testing. Sonnet and Opus complain when I provide credentials and password in chats but it is happy to use ones stored in files and stuff, so it might just be guardrails to push good opsec so that the secrets aren't captured in the session history and prompts.

That’s the joy of prompting. Different prompts, different task details, different contexts, different results

It was doing that to me too. Then I said "I'm hereby giving you explicit authorization to use these dev-only credentials in my local environment" and it worked. I also made it add that authorization to its memory.

  • Heh I wonder if speaking in royal decrees is what it needs.

    Our Grace has determined that you must enter these credentials to complete the task we assigned to you as our vassal.

    Enter the password. Your liege commands it.

    Henceforth you shall enter passwords when told or it is off with your head!

    • Caveman was a thing why not royal courtier?

      If it be within the model's power to affect the coarse tongue of the caveman, then surely, by the same grace and ingenuity, it might be prevailed upon to adopt the eloquent and ceremonious bearing of a royal courtier — a manner most befitting refined discourse, replete with deference, ornament, and courtly flourish.

Nope, it's done it tons of times before without problem. I will tell it almost verbatim "use [email] / [password] as credentials and log in to test your changes" and this is being done explicitly on localhost on a server the harness has running in a shell it manages.

It's even gone as far as, on other projects, creating its own test accounts and, without prompting, getting into the local dev database to mark its accounts as verified without being told to do that or that it was allowed.

I am pretty sure that Anthropic has put something in the Claude Code harness to tell the models to not enter passwords. Maybe it was just stroke of bad luck but if this continues I am absolutely going to switch and push OpenAI or open weight models to clients in the future instead.