alt Hacker NewsRailway deserves a lot of blame here. Deleting backups along with the database is a lot like not having backups. Moronic design choice.
Railway deserves a lot of blame here. Deleting backups along with the database is a lot like not having backups. Moronic design choice.
Why does Railway deserve any blame here at all? It was an MCP with elevated infra access, that the user willingly connected through Cursor, which allowed an LLM Agent to manage infra on Railway. The user would first have gone through oAuth confirming the access level scope (I would have rejected the moment it indicates to me that it can delete critical infra and backups...). So obviously it has access to all commands the user would also have access to. From my perspective the blame is entirely on the user, and partly on Cursor for not enforcing HITL correctly across their agents.