This is why having a human in the loop isn't enough because they will cut corners and skip reviewing what they should review.
This is why having a human in the loop isn't enough because they will cut corners and skip reviewing what they should review.
I created a watcher for this problem, to watch my PRs for unfinished scope and have a fresh Claude review
Uses tmux and gh https://github.com/Kyu/claude-pr-watch
A tool that pushes people into permissions fatigue is in fact the proper recipient of the blame. The tool in question here is the entire system though, including the OS with insufficient permission boundaries in userspace, not just the agent
A tool that bypasses permission requests because they’re annoying will be just as guilty when the repo is poisoned.
I'm not saying wedging doorstops under the fire doors is a good thing, I'm just saying look at the situation that's making people put the doorstops there. Or something, it's not a great analogy. I'm just saying that shaming the user belongs with obscurity in the list of security mechanisms that don't work out in practice.