Just going to say it... no mention of handling the security aspects of this. Scary.
This is cool, I should say, but I would be really worried about the security aspects. Prompt injection here could be really painful.
Just going to say it... no mention of handling the security aspects of this. Scary.
This is cool, I should say, but I would be really worried about the security aspects. Prompt injection here could be really painful.
The article mentions that there’s an identification process and that at least some data has access control. What were you expecting?
You're wiring up a number of critical systems... and prompt injection here could be really bad. I worry about such systems with a single point of contact
Reading through it, I didn't see any mention of write access. It looks like the agent is strictly read-only with access controls.