FRESH

Hacker News

Living Dangerously with Claude

36 points by FromTheArchives

by stuaxo

0 subcomment

I've been thinking about this a bit.
I reckon something lie Qubes could work fairly well.
Create a new Qube and have control over network connectivity, and do everything there, at the end copy the work out and destroy it.

by matthewdgreen

1 subcomments

So let me get this straight. You’re writing tens of thousands of lines of code that will presumably go into a public GitHub repository and/or be served from some location. Even if it only runs locally on your own machine, at some point you’ll presumably give that code network access. And that code is being developed (without much review) by an agent that, in our threat model, has been fully subverted by prompt injection?
Sandboxing the agent hardly seems like a sufficient defense here.

by lacker

1 subcomments

The sandbox idea seems nice, it's just a question of how annoying it is in practice. For example the "Claude Code on the web" sandbox appears to prevent you from loading `https://api.github.com/repos/.../releases/latest`. Presumably that's to prevent you from doing dangerous GitHub API operations with escalated privileges, which is good, but it's currently breaking some of my setup scripts....

by BoredPositron

0 subcomment

Every blog post gets worse. Sorry but you are in way over your head and the solution is always bruteforce with LLMs. You never show learnings it's always open ended it's always verbose and tbh how shouldn't it be with 10-15 posts per month. You did 5 posts in 3 days... and for someone it's literally just repacking the source with some added one liners. It's tiktok level engagement farming.

by igor47

0 subcomment

My approach is to ask Claude to plan anything beyond a trivial change and I review the plan, then let it run unsupervised to execute the plan. But I guess this does still leave me vulnerable to prompt injection if part of the plan is accessing external content

by danielbln

1 subcomments

Claude Code offers sandboxing now: https://www.anthropic.com/engineering/claude-code-sandboxing

by catigula

1 subcomments

Telling Claude to solve a problem and walking away isn't a problem you solved. You weren't in the loop. You didn't complete any side quests or do anything of note, you merely watched an AGI work.