HackerTrans
トップ新着トレンドコメント過去質問紹介求人

Dshadowzh

no profile record

コメント

Dshadowzh
·4 か月前·議論
Would this work better as an MCP server/skill rather than a independent CLI wrapper?
Dshadowzh
·4 か月前·議論
Most of the coding agents support reading skills in ~/.agents/skills. It seems that only Claude code hasn't adopted this spec. I am not sure about the future of this. Anyway good work, we need a unified skill marketplace for different agents.
Dshadowzh
·4 か月前·議論
CLI is quickly becoming the default entry point for agents. But data agents probably need a much stricter permission model than coding agents. Bash + CLI greatly expands what you can do beyond the native SQL capabilities of a data warehouse, which is powerful. But it also means data operations and credentials are now exposed to the shell environment.

So giving data agents rich tooling through a CLI is really a double-edged sword.

I went through the security guidance for the Snowflake Cortex Code CLI(https://docs.snowflake.com/en/user-guide/cortex-code/securit...), and the CLI itself does have some guardrails. But since this is a shared cloud environment, if a sandbox escape happens, could someone break out and access another user’s credentials? It is a broader system problem around permission caching, shell auditing, and sandbox isolation.