Simple put, no. In order to be save with a LLM that can execute stuff on its own it needs to be completely sandboxed.

A very nice talk about flaws in agentic AI can be found here: …ccc.de/…/39c3-agentic-probllms-exploiting-ai-com…