These days anytime I want an extension I'm just asking Claude to build it. Has no problem knocking them out. I'm pretty certain Claude could have built any of these features in the malicious extensions in one shot
I think there are many valid reasons to be against them - I think a lot of them are more right than wrong. It’s the “It can’t really do much” that I think must be from people that haven’t really tried it.
A: The sky is blue!
B: No it's not.
A: Yes, it is, please look up.
B: No, you must prove it to me through reason.
A: But, if you would just pretty please look up.
B: No.
I run a company, I've been running it for 10 years, we do alright. I'm a shitty manager. Every time I've hired developers, the business freezes. The business isn't anything super important, the main consequence of bugs is that my family loses money. Everything has always rested on my shoulders. In theory there is some path for me to become a good manager, but I never landed on it. But now, with Claude, it's great. So far Claude has paid itself off in real profits at least 20x over, and that's with significant API usage on top of the monthly sub. I can prototype new features in an afternoon that before were on my giant list of "maybe somedays if I ever get to breathe" list. Our user experience has improved in so many ways that I knew were probably worth it, if I could just find the time. Now I can.
There are situations where yeah, it probably isn't ready yet. But, there are so many where it's amazing. Seriously, it's worth looking up.
Plus, if you're black hat utilizing prompt injection or a living, you're probably unlikely to have been willing to share your methods in this test. This is likely made up mostly of people testing that are not experts in prompt injection
Makes sense to me that it wouldn’t. You’re effectively saying you’re willing to trade future use for priority access now. Of course they’re going to use that to reach a more favorable price tradeoff for themselves
Seems like a booby trap to me, which is illegal. I suspect if one of these does enough damage there will be laws against it. The intent was to destroy - still I sympathize with the desire to have their terms followed, and I think this situation isn't that bad, but, I suspect there will someday be one that is pretty bad.
There is plenty of work that does not need to be perfectly verified, because the risk is controlled. Prototyping a javascript game for example. Or code that runs just on your local machine where good enough is good enough. I'm sure a lot of you do super important work that needs 100% quality code all the time, but... some of us don't.
This would be like someone 40 years ago asking who Donald Trump is. It may not effect you yet but it likely will someday. Ignoring these people does not seem to help them go away