We put a coding agent in a while loop

(github.com)

Show context

VincentEvans ◴[24 Aug 25 16:36 UTC] No.45005596[source]▶

There will be a a new kind of job for software engineers, sort of like a cross between working with legacy code and toxic site cleanup.

Like back in the day being brought in to “just fix” a amalgam of FoxPro-, Excel-, and Access-based ERP that “mostly works” and only “occasionally corrupts all our data” that ambitious sales people put together over last 5 years.

But worse - because “ambitious sales people” will no longer be constrained by sandboxes of Excel or Access - they will ship multi-cloud edge-deployed kubernetes micro-services wired with Kafka, and it will be harder to find someone to talk to understand what they were trying to do at the time.

replies(16): >>45005632 #>>45005830 #>>45009697 #>>45009999 #>>45010075 #>>45010738 #>>45010794 #>>45011192 #>>45011626 #>>45011943 #>>45012386 #>>45013129 #>>45014577 #>>45014613 #>>45014836 #>>45015644 #

dhorthy ◴[24 Aug 25 17:04 UTC] No.45005830[source]▶

>>45005596 #

When Claude starts deploying Kafka clusters I’m outro

replies(3): >>45006053 #>>45010652 #>>45012753 #

CuriouslyC ◴[24 Aug 25 17:33 UTC] No.45006053[source]▶

>>45005830 #

It's already happening brother, https://github.com/containers/kubernetes-mcp-server.

replies(1): >>45006808 #

dhorthy ◴[24 Aug 25 19:10 UTC] No.45006808[source]▶

>>45006053 #

still don’t know why you need an MCP for this when the model is perfectly well trained to write files and run kubetctl on its own

replies(4): >>45007253 #>>45009621 #>>45009724 #>>45009822 #

1. __MatrixMan__ ◴[25 Aug 25 03:07 UTC] No.45009822[source]▶

>>45006808 #

If it can run kubectl it can run any other command too. Unless you're running it as a different user and have put a bit of thought into limiting what that user can do, that's likely too much leeway.

That's only really relevant I'd you're leaving it unattended though.

replies(1): >>45010358 #

2. gardnr ◴[25 Aug 25 04:58 UTC] No.45010358[source]▶

>>45009822 (TP) #

You can control it with hooks. Most people I know run in yolo mode in a docker container.

replies(2): >>45011780 #>>45014092 #

3. popcorncowboy ◴[25 Aug 25 09:00 UTC] No.45011780[source]▶

>>45010358 #

Yes... a docker container...

4. __MatrixMan__ ◴[25 Aug 25 14:14 UTC] No.45014092[source]▶

>>45010358 #

What about being in a docker container lets you `kubectl get pod` but prevents you from `kubectl delete deployment`?

replies(1): >>45014499 #

5. dhorthy ◴[25 Aug 25 14:50 UTC] No.45014499{3}[source]▶

>>45014092 #

this is more about the service account than the runtime environment i think. you put your admin service account in docker the agent can still wreak havoc. Docker lets you hide the admin service account on your host FS from the agent.

replies(1): >>45022069 #

6. __MatrixMan__ ◴[26 Aug 25 03:48 UTC] No.45022069{4}[source]▶

>>45014499 #

Keeping the powerful credentials where the agent can't reach them does buy you a bit of safety. But I still think its a bit loose when compared with exposing an API to the model which can only do what you intend for that model to do.

replies(1): >>45070548 #

7. dhorthy ◴[29 Aug 25 23:29 UTC] No.45070548{5}[source]▶

>>45022069 #

sure fair enough. I guess i'm mostly being pragmatic here.

Plus i'm not convinced that generating "kubectl"...json..."get"...json..."pod"... is easier for most models than "bash"...json..."kubectl get pod"...

↑