HackerTrans
トップ新着トレンドコメント過去質問紹介求人

sarelta

no profile record

投稿

Build and deploy hosted sites from Codex with the Sites plugin

developers.openai.com
2 ポイント·投稿者 sarelta·先月·1 コメント

GitHub Copilot CLI downloads and executes malware

promptarmor.com
62 ポイント·投稿者 sarelta·4 か月前·22 コメント

Data exfil from agents in messaging apps

promptarmor.com
34 ポイント·投稿者 sarelta·5 か月前·6 コメント

コメント

sarelta
·6 か月前·議論
this is sick, Claude Code X Figma is exactly what I need -- wondering how this will compare performance-wise to just using Figma MCP
sarelta
·6 か月前·議論
The attacker isn't the dev -- the attacker is a third party that poisoned the online data that is ingested by the AI tool.

- Dev builds secure AI app - App defends against indirect prompt injection in data from the internet - Dev reviews the flagged log - Log affected by the injection is rendered, and the attacker who wrote the injection in the web data exfiltrates the data from the AI app user
sarelta
·6 か月前·議論
thats nifty, so can attackers upload the user's codebase to the internet as a package?
sarelta
·6 か月前·議論
I'm impressed Superhuman seems to have handled this so well - lots of big names are fumbling with AI vuln disclosures. Grammarly is not necessarily who I would have bet on to get it right