zlacker

[parent] [thread] 1 comments
1. ryanra+(OP)[view] [source] 2026-02-04 18:08:10
Precisely! There's a fundamental tension: 1. Agents need to interact with the outside world to be useful 2. Interacting with the outside world is dangerous

Sandboxes provide a "default-deny policy" which is the right starting point. But, current tools lack the right primitives to make fine grained data-access and data policy a reality.

Object-capabilities provide the primitive for fine-grained access. IFC (information flow control) for dataflow.

replies(1): >>ATechG+yY
2. ATechG+yY[view] [source] 2026-02-04 22:54:50
>>ryanra+(OP)
I agree. However, how to define these permissions when agent behavior is undefined?
[go to top]