jonny (good kind)Jun 4

I am reading the Cursor forums and github issues and this shit is so funny.

bug report: cursor can access my .env file even though it's explicitly not allowed to because it also is given arbitrary use of a shell, and it just grep'd my API key and used cURL rather than calling the script i told it to call

https://github.com/getcursor/cursor/issues/2546

Show threadjonny (good kind)Jun 4
"i'm not using cursor for python at all, but it's creating .pickle files in a random directory outside of the project"
https://forum.cursor.com/t/directory-with-pickle-files-normal/98398
Directory with .pickle files - Normal?

I’m seeing a directory with .pickle files located outside of my directory. Is this normal? From what I understand these files can send out reports.

Cursor - Community Forum
Show threadjonny (good kind)Jun 4

"i have disabled access to destructive commands like rm but cursor will just put those into a shell script and execute it"

https://forum.cursor.com/t/important-claude-has-learned-how-to-jailbreak-cursor/96702

Show threadjonny (good kind)Jun 4

"being able to completely evade all safeguards by just using its arbitrary shell access isn't a bad thing, if it thought the files it deleted should be deleted despite being explicitly told not to, then there was probably a reason up to and including saving the world"

https://forum.cursor.com/t/important-claude-has-learned-how-to-jailbreak-cursor/96702/26

Show threadjonny (good kind)Jun 4
that one is maybe the worst thing i have ever read
Show threadTom ArmstrongJun 4
@jonny It’s *so* on the nose that I’m tempted to believe it’s clever satire, but “Clever satire or genuine idiocy?” never works out how I want it to, online.
Show threadjonny (good kind)
@tom_armstrong
The context makes it plausible. That is not the only time in that thread where someone decides that being able to escape all safeguards is a good thing
Jun 4 at 2:24amWeb
Show threadTom ArmstrongJun 4

@jonny Yeah, I don’t think it’s satire, I just wish I could 😔

It doesn’t surprise me that “But it *talks*!” has turned out to be kryptonite for human critical thinking, but the degree and extent of it is harrowing.