In computer security it's always been a mortal sin to interpret data as instructions.
With LLMs, any type of external data you feed it can be interpreted by the LLM as instructions. You *don't* want external data being fed to your LLM outside of your control.
I tried running it in isolated environments, but it doesn't actually *do* anything without access to your whatsapp, email, etc.
Friends with a higher tolerance for catastrophe than me; They love it. They tell me that it allows them to automate parts of their lives.
Stuck_In_State_Space / Stuck)In_State_Space
npub1w6…hq6rs
2026-03-09 11:57:16 UTC
in reply to nevent1q…rp4h
Author Public Key
npub1w6wkqcxdwd2dxfguasl67fp20pmu946u5zhy58qu2uxpswrffc8sshq6rsSeen on
wss://nos.lolPublished at
2026-03-09 11:57:16 UTCEvent JSON
{
"id": "fc652d9da8cb71bee788c3f5ace441364c71f111992ec57ff0ba504a09afde24",
"pubkey": "769d6060cd7354d3251cec3faf242a7877c2d75ca0ae4a1c1c570c1838694e0f",
"created_at": 1773057436,
"kind": 1,
"tags": [
[
"e",
"20b83e458c818b4729ab5b62924bf5e0b240af816049fb14de79c165d327f93d",
"wss://espelho.girino.org/",
"root"
],
[
"p",
"8125b911ed0e94dbe3008a0be48cfe5cd0c0b05923cfff917ae7e87da8400883"
],
[
"r",
"wss://relay.primal.net/"
]
],
"content": "In computer security it's always been a mortal sin to interpret data as instructions. \n\nWith LLMs, any type of external data you feed it can be interpreted by the LLM as instructions. You *don't* want external data being fed to your LLM outside of your control.\nI tried running it in isolated environments, but it doesn't actually *do* anything without access to your whatsapp, email, etc.\n\nFriends with a higher tolerance for catastrophe than me; They love it. They tell me that it allows them to automate parts of their lives.",
"sig": "d47ceec316d52f66a884950e6245576c3cd8d253ddf6e42471e4247e3bfe6827cb0e3429a86212d96a467734ab6c0488417fae6b5bf5ee9c4ccc605e9f72f575"
}