Matthew Garrett1d ago

You have an agent running on your local system. You want it to have access to a restricted set of things, both locally and remote. What is the technical mechanism you use to ensure that it has a subset of the access that you, as an individual logged into the same system, do?

(I am uninterested in "Don't run an agent" because while yes I see your point that doesn't mean it's not happening and security professionals have to deal with what's happening not what we want to be happening)

Show threadGeorge Greer
@mjg59 I banished Gemini to its own user account on my work system and use a combination of `chmod` and `sudo -u` to cross the user permission gap. (It has its own read-only GitHub token from my own GitHub account.)
Apr 2 at 6:07pmWeb