(lucumr.pocoo.org)

313 points Bogdanp | 2 comments | 03 Jul 25 10:51 UTC | HN request time: 0.609s | source

1. empath75 ◴[03 Jul 25 13:52 UTC] No.44455102[source]▶

The problem with this is that you have to give your LLM basically unbounded access to everything you have access to, which is a recipe for pain.

replies(1): >>44455121 #

2. the_mitsuhiko ◴[03 Jul 25 13:53 UTC] No.44455121[source]▶

>>44455102 (TP) #

Not necessarily. I have a small little POC agentic tool on my side which is fully sandboxed, an it's inherently "non prompt injectable" by the data that it processes since it only ever passes that data through generated code.

Disclaimer: it does not work well enough. But I think it shows great promise.

↑

Tools: Code Is All You Need