undefined | Better HN

0 pointsjatora3mo ago0 comments

With hooks you can enforce permissions much more concretely.

0 comments

2 comments · 1 top-level

SpicyLemonZest3mo ago· 1 in thread

Perhaps they're more functional. Hooks are configured in the same settings file, which makes me pretty skeptical in the absence of explicit confirmation that they represent a stronger security boundary. (But of course, this is a fundamental challenge with LLM agent security - if you're using a well-aligned model that doesn't want to be prompt injected, how do you go about auditing something like this?)

jatoraOP3mo ago

ya they definitely cant stop everything. nothing can be stopped if you allow python honestly, but hooks are guaranteed to fire on every tool use so you can bake in explicit rejections for different patterns based on regex which can catch a lot of nonsense

j / k navigate · click thread line to collapse