logoalt Hacker News

aqme28yesterday at 7:20 PM1 replyview on HN

How do you enforce this? You have a system where the agent can email people, but cannot email "too many people" without a password?


Replies

jameslkyesterday at 7:42 PM

It's not a perfect security model. Between the friction and all caps instructions the model sees, it's a balance between risk and simplicity, or maybe risk and sanity. There's ways I can imagine the concept can be hardened, e.g. with a server layer in between that checks for things like dangerous actions or enforces rate limiting

show 2 replies