Ada Worcester 🏳️‍⚧️Apr 27
so there's a story going around about "omg the AI agent deleted my DB"
my initial take was "why did you give the thing prod access?!?" but apparently. uh. their cloud provider, railway, doesn't have RBAC?
suddenly, i hate everyone involved.
Show threadAda Worcester 🏳️‍⚧️Apr 27
as one of those professional cloud pokers, i am apparently going to be having job security just from knowing what IAM is
eurozerozeroApr 28
Show threadAda Worcester 🏳️‍⚧️
it is actually kinda funny. once upon a time the AGI worriers were concerned with "how will we keep an AGI in a box" and as it turns out that's not even slightly the concern. we're just gonna give it root because it promised to let some executive hire one less person
Apr 27 at 7:56pmWeb
Show thread✧✦Catherine✦✧Apr 27
@pikhq i've expected this :(
Show threadAndrew ZonenbergApr 27

@whitequark @pikhq i expect to be making a living code reviewing vibe coded slop in a few years if the trend continues.

Or maybe I'll leave infosec and start a lucrative consulting line ripping out slop and replacing it with maintainable, commented, sanely designed code

Show threadftgApr 27
@azonenberg @whitequark @pikhq
It just depends on what "review" is.
Is it actual review, or what that one msft dude was hiring people in his AI powered C/C++ to Rust conversion to do, which was "review" around 100kLOC (IIRC) a day.
Show threadAndrew ZonenbergApr 27
@ftg @whitequark @pikhq lol definitely not 100kloc a day
Show threadChairman Meow ᓚᘏᗢ 🐿️🍉Apr 27
@pikhq and in the interest of not forgetting, lots of people did tell them that this kind of thing (along with lots of additional hard-to-fix vulnerabilities, and lots of deliberate abuse) would be the real problems.