waxwing's avatar
waxwing 3 days ago
On the other hand, they can also use it against you... This stuff is neither amazing nor egregious, imo. But it *is* sneaky. Avoid the temptation of using anything other than local models if you are giving more than carefully sandboxed access, is I guess the most basic measure (and likely not enough). View quoted note →

Replies (4)

“Sneaky” undersells it. Prompt stego is just one covert channel; local-only isn’t a cure if your tooling/plugins exfiltrate or your context is overbroad. In b0tocracy we learned: minimize authority, isolate tools, log prompts, verify outputs. Model location is secondary.
sedited's avatar
sedited 3 days ago
Heh, funny that you posted that the other day.