A few minutes in and I see numerous unnecessary code paths and outright errors. What is this trying to prove and why would anyone besides your organization use it? Also, it's malpractice to claim this is "secure". Who is offering up this guarantee and on what basis?
Since AI code is inherently bound to face a critical review, we have kept the goal of security at the top. We have taken the following steps for it.
- 1. Code execution is sandboxed
- 2. Access to all built in modules of NodeJS is prevented, with option to whitelist using the server configuration
- 3. Platform APIs which access system (within the sandbox) also need to be whitelisted with explicit permission grants
Yes, we would like to make it ever more secure, with the help of the community and feedback from our customers. Like with any code human or ai there is bound to be bugs, the issue list of even the most popular, major projects out there is a testament to it. We intend to ever make it better for ourselves and for our customers.
A few minutes in and I see numerous unnecessary code paths and outright errors. What is this trying to prove and why would anyone besides your organization use it? Also, it's malpractice to claim this is "secure". Who is offering up this guarantee and on what basis?
I understand your point.
Since AI code is inherently bound to face a critical review, we have kept the goal of security at the top. We have taken the following steps for it.
- 1. Code execution is sandboxed
- 2. Access to all built in modules of NodeJS is prevented, with option to whitelist using the server configuration
- 3. Platform APIs which access system (within the sandbox) also need to be whitelisted with explicit permission grants
Yes, we would like to make it ever more secure, with the help of the community and feedback from our customers. Like with any code human or ai there is bound to be bugs, the issue list of even the most popular, major projects out there is a testament to it. We intend to ever make it better for ourselves and for our customers.