Comment by _verandaguy
3 days ago
Generally, I agree!
But it doesn't matter how good a best practice is if the industry doesn't adopt them wholesale; and even then, if your container or VM is configured with inappropriately-permissive passthrough (which, from experience with similar misconfiguration in the past, will widely happen), it could be for naught in many orgs.
That said, I do hope these become the norm if LLMs are here to stay.
I can secure myself first, so I'm never at fault. I never want to be the one to accidentally break production.
Beyond that, I just keep advocating for more safe and secure approaches any opportunity I get.