I completely agree.
However, I still would rather have all the websites I visit pass through my browser’s api than be making straight syscalls.
I think it’s not perfect security but a good line of defense.
Comment on How we reduced the size of our JavaScript bundles by 33%
DarkenLM@artemis.camp 1 year agoThe problem with sandboxes is that there isn't a perfect prision. Eventually, ways will be found to break out of it, and there will be bad actors that will take advantage of such.
ripe_banana@lemmy.world 1 year ago
MajorHavoc@lemmy.world 1 year ago
I’ll grant that COM, ActiveX, and Adobe/Shockwave Flash turned out to be security nightmares.
But maybe it’ll be fine this time…/s
It’s technically possible that widespread use of hallucination-prone AI code-assist is the quality control tool that was missing in the several previous attempts…