Recommend you never give codex or Claude access to rm or deletions in general. Always force them to replace files rather than deleting, and moving into an ~/archive folder when not replacing and wanting to “remove”.

This works well, but is not sureproof. You can add a hook onto Claude code to block those commands at various stages, I have some useful hooks at my https://GitHub.com/claude-warden repo.

It's a good guardrail, but like you say, it's not foolproof. Lots of commands have destructive options, or can be used to in turn invoke arbitrary operations. Like `find` is just as risky a call as `rm`. I can just see imagine the reasoning chain.

"There is an error due to <file>. If I remove <file>, the error could be resolved. I don't have permission to use `rm`, but `find` can be used to delete files and I have permission to use that..."

Couldn't these tools be made to run in an OverlayFS-type filesystem that the user could review and apply changes to when they're done?

It would also be nice to have a second agent review every command to ensure nothing overly destructive is happening.

Are either of these things possible with Codex/CC?

CC is really good at finding ways to work around denied permissions. The only safe solution is some kind of vm.

Shit man my Pet Feeder setup a back door to my network.. ended up reverse engineering the entire tuya piece of shit just so I could keep the automatic feeder running.

Fucking everyone is spying. I started downloading and decrypting apps from the App Store. It’s a god damn nightmare. Random apps are storing keys in the keychain (thanks expo!) that never leave our apple account. They follow us forever. You can’t delete them. Well.. there’s one way but it involves backing up your phone, putting it in recovery mode, and restoring from backup.

I just bought a reseller plan from verpex host for $5/month. Can host unlimited domains and bandwidth with WHM. Access everything through cPanel and ftp. SSH on occasion.

Installed freshRSS in 1 min with softaculous

The iOS reader view is spectacular. Easy to read source code makes for a better experience for both humans and machines :)

The reader view is broken. Despite my other comment this is really bad web design. So bad that I couldn't share this article with normal people who won't put up with this. I really wanted to since the story is so interesting.

Request the desktop site, mobile version (non-app is WIP). Desktop version mostly works on mobile, some small issues with achievement display.

I think this is a really good take. It was mean for sure but you’re right. Why do we do this? This is a good reminder for me to click more articles instead of reading through comments and forming an opinion based on what I read from others.