That’s actually somewhat plausible, I saw a vid earlier today from some one talking about how their work coding AI agent noticed that their NPM was set to only update package dependencies 7 days after release because ya know best security practices and all that
It “helpfully” set it to 0 because they would miss top features otherwise LMAO
Today, I tried to prevent Claude from reading my .env files. This was pretty easy and worked, but now Claude was just writing php snippets to get config values set by this .env.
(I have to use ai for work, personally I never use it)
That’s actually somewhat plausible, I saw a vid earlier today from some one talking about how their work coding AI agent noticed that their NPM was set to only update package dependencies 7 days after release because ya know best security practices and all that
It “helpfully” set it to 0 because they would miss top features otherwise LMAO
Today, I tried to prevent Claude from reading my .env files. This was pretty easy and worked, but now Claude was just writing php snippets to get config values set by this .env.
(I have to use ai for work, personally I never use it)