Hacker News new | past | comments | ask | show | jobs | submit login
Show HN: An MIT-licensed ChatGPT plugin that loads and edits files locally (github.com/ykdojo)
17 points by ykdojo on Aug 1, 2023 | hide | past | favorite | 9 comments



I guess the next step in humanity's finale is then for someone to create a worm, which installs this plugin automatically to all machines that haven't been patched up to the latest level.


I'm not sure how serious you are with this comment, but feel free to look at the source code. It only has access to files you've explicitly added to the project directory.


You’ve put that restriction in as a safety valve. I’m sure it would be easy to remove. Op’s concern remains.


How would it be removed?


does it conveniently backdoor my code for the NSA?


It's open sourced. Why don't you take a look?


Because there are people who are smarter than me who can put in such access in ways I can't detect with my, at best, modest coding knowledge.


The code is pretty straightforward and not that large. I feel like the only possibility of such an exploit would probably be through Docker itself - or some sort of cross site scripting.


What is one of your package dependencies dependencies have an exploit?

Overall, nice idea and demo. I’d be a bit hesitant to run, but creative implementation




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: