←back to thread

Claude Sonnet will ship in Xcode

(developer.apple.com)
485 points zora_goron | 1 comments | 29 Aug 25 00:44 UTC | HN request time: 0s | source
Show context
breadwinner ◴[29 Aug 25 02:55 UTC] No.45059612[source]
It seems every IDE now has AI built-in. That's a problem if you're working on highly confidential code. You never know when the AI is going to upload code snippets to the server for analysis.
replies(13): >>45059623 #>>45059634 #>>45059661 #>>45059894 #>>45059943 #>>45060054 #>>45060064 #>>45060101 #>>45060121 #>>45060510 #>>45060668 #>>45061092 #>>45061687 #
tcoff91 ◴[29 Aug 25 02:57 UTC] No.45059634[source]
Neovim and Emacs don’t have it built in. Use open source tools.
replies(1): >>45060072 #
simonh ◴[29 Aug 25 04:08 UTC] No.45060072[source]
They both support it via plugins. Xcode doesn’t enable it by default, you need to enable it and sign into an account. It’s not really all that different.
replies(2): >>45060175 #>>45070755 #
renewiltord[dead post] ◴[29 Aug 25 04:24 UTC] No.45060175[source]
[flagged]
OsrsNeedsf2P ◴[29 Aug 25 04:29 UTC] No.45060206{3}[source]
If you're worried about someone accessing your unlocked computer to install LLMs, you might need to rethink your security model.
replies(1): >>45060255 #
renewiltord ◴[29 Aug 25 04:37 UTC] No.45060255{4}[source]
They could install anything. Including Claude Code and then run it in background as agent to exfiltrate data. I'm a security professional. This is unacceptable
replies(1): >>45060306 #
BalinKing ◴[29 Aug 25 04:45 UTC] No.45060306{5}[source]
I think the parent commenter was pointing out that, instead of installing Claude Code, they could just install actual malware. It's like that phrase Raymond Chen always uses: "you're already on the other side of the airtight hatchway."
replies(1): >>45060468 #
renewiltord ◴[29 Aug 25 05:14 UTC] No.45060468{6}[source]
Yes but Claude Code could install malware when I'm not paying attention. And when I remove with MalwareBytes it will return because LLMs are not AGI.
replies(1): >>45064514 #
1. BalinKing ◴[29 Aug 25 14:21 UTC] No.45064514{7}[source]
Isn't the general advice that if malware has been installed specifically due to physical access, then the entire machine should be considered permanently compromised? That is to say, if someone has access to your unlocked machine, I've heard that it's way too late for MalwareBytes to be reliable....