Claude Code deletes developers' production setup, including its database and snapshots — 2.5 years of records were nuked in an instant

Submitted ⁨⁨2⁩ ⁨weeks⁩ ago⁩ by ⁨throws_lemy@lemmy.nz⁩ to ⁨technology@lemmy.world⁩

https://www.tomshardware.com/tech-industry/artificial-intelligence/claude-code-deletes-developers-production-setup-including-its-database-and-snapshots-2-5-years-of-records-were-nuked-in-an-instant

source

Comments

Sort:hotnew top

coalie@piefed.zip ⁨2⁩ ⁨weeks⁩ ago
Image

source
- athatet@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
  Honestly. At this point, after it having happened to multiple people, multiple times, this is the only appropriate response.
  
  source
fubarx@lemmy.world ⁨2⁩ ⁨weeks⁩ ago

Given that the infrastructure description included the DataTalks.Club website, this resulted in a full wipe of the setup for both sites, including a database with 2.5 years of records, and database snapshots that Grigorev had counted on as backups. The operator had to contact Amazon Business support, which helped restore the data within about a day.

Non-story. He let Terraform zap his production site without offsite backups. But then support restored it all back.

I’d be more alarmed that a ‘destroy’ command is reversible.

source
- CubitOom@infosec.pub ⁨2⁩ ⁨weeks⁩ ago
  Distributed Non Consensual Backup
  
  source
  - eager_eagle@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    new kink unlocked
    
    source
- db2@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  Never assume anything is gone when you hit delete.
  
  source
  - Vlyn@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
    Except when it’s your own data, then usually you’re fucked.
    
    source
    -> View More Comments
- zr0@lemmy.dbzer0.com ⁨2⁩ ⁨weeks⁩ ago
  For technical reasons, you never immediately delete records, as it is computationally very intense.
  
  For business reasons, you never want to delete anything at all, because data = money.
  
  source
  - jaybone@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
    Back in the day, before virtualized services was all “the cloud” as it is today, if you were re-provisioning storage hardware resources that might be used by another customer, you would “scrub” disks by writing from /dev/random and /dev/null to the disk. If you somehow kept that shit around and something “leaked”, that was a big boo boo and a violation of your service agreement and customer would sue the fuck out of you. But now you just contact support and they have a copy laying around. 🤷
    
    source
  - wewbull@feddit.uk ⁨2⁩ ⁨weeks⁩ ago
    Retaining data can mean violating legal obligations. Hidden backups can be a lawyers playground.
    
    source
    -> View More Comments
  - brbposting@sh.itjust.works ⁨2⁩ ⁨weeks⁩ ago
    Thought it could be a liability sometimes! Maybe that ship sailed
    
    source
just_another_person@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
Whoever did this was incredibly lazy. What you using an agent to run your Terraform commands for you in the first place if it’s not part of some automation? You’re saving yourself, what, 15 seconds tops? You deserve this kind of thing for being like this.

source
- PabloSexcrowbar@piefed.social ⁨2⁩ ⁨weeks⁩ ago
  Yeah, and to do that without some sort of DR in place is peak hubris.
  
  source
  - Viceversa@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    DR?
    
    source
    -> View More Comments
  - lobut@lemmy.ca ⁨2⁩ ⁨weeks⁩ ago
    Our DR process is a slow POS … takes far too long to back up and redeploy and set up again.
    
    I was the one that designed it. I pray I’ll never have to use it.
    
    source
    -> View More Comments
- kautau@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  It’s a grifter running a site called “aishippinglabs.com” which charges 500 euros for a “closed community of likeminded individuals”. He’s selling ai slop and a discord channel to other idiots who will do exactly shit like this with little understanding of what is going on
  
  source
  - SeductiveTortoise@piefed.social ⁨2⁩ ⁨weeks⁩ ago
    It’s an intelligence test. And if you take it, you’ve failed.
    
    source
  - criss_cross@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    Were they also into crypto 7 years ago?
    
    source
SapphironZA@sh.itjust.works ⁨2⁩ ⁨weeks⁩ ago
We used to say Raid is not a backup. Its a redundancy

Snapshots are not a backup. Its a system restore point.

Only something offsite, off system and only accessible with seperate authentication detauls, is a backup.

source
- daychilde@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  AND something tested to restore successfully, otherwise it’s just unknown data that might or might not work.
  
  (i.e. reinforcing your point, no disagreements)
  
  source
  - mic_check_one_two@lemmy.dbzer0.com ⁨2⁩ ⁨weeks⁩ ago
    AKA Schrödinger’s Backup. Until you have successfully restored from a backup, it is just an amorphous blob of data that may or may not be valid.
    
    I say this as someone who has had backups silently fail. For instance, just yesterday, I had a managed network switch generate an invalid config file for itself. I was making a change on the switch, and saved a backup of the existing settings before changing anything. That way I could easily reset the switch to default and push the old settings to it, if the changes I made broke things. Sure enough, the change I made broke something, so I performed a factory reset and went to upload that backup I had saved like 20 minutes prior… When I tried to restore settings after the factory reset, the switch couldn’t read the file that it had generated like 20 minutes earlier.
    
    So I was stuck manually restoring the switch’s settings, and what should have been a quick 2 minute “hold the reset button and push the settings file once it has rebooted” job turned into a 45 minute long game of “find the difference between these two photos” for every single page in the settings.
    
    source
    -> View More Comments
  - Whitebrow@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    Schrödinger backup
    
    source
- tetris11@feddit.uk ⁨2⁩ ⁨weeks⁩ ago
  3-2-1 Backup Rule: Three copies of data at two different types of storage media, with 1 copy offsite
  
  source
- Krudler@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  Circa 1997 I was making some innovative new games, employed by a dude who’d put millions of his own money into the company. He was completely nonplussed when I brought him 20 CDs in a sealed box to remove from the building and store off site. He thought I’d lost my damned mind and blew it off as ravings of a stressed dev. I pointed out real threats to our IP including the hardware failures and even so far as the building burning down. 2 years of custom art and code gone. “Unlikely. Relax.”
  
  After I moved on… an ex co-worker who’s still a longtime friend, tells me a different division lost a huge amount of FMV over some whoops-I-destroyed-the-wrong-drive blunder. 20 days to render on an 8 or 10 machine farm. Poof - No backups. In 1997 even with top-of-the-line gear it took an insane investment to render quality 3D.
  
  The friggin’ carelessness irks the shit out of me as I type ahah
  
  source
- OrteilGenou@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  I remember back when I first started seeing a DR plan with three tiers of restore, 1 hour, 12 hours or 72 hours. I knew that to 1 hour meant a simple redirect to a DB partition that was a real time copy of the active DB, and twelve hours meant that failed, so the twelve hours was a restore point exercise that would mean some data loss, but less than one hour, or something like that.
  
  I had never heard of 72 hours and so raised a question in the meeting. 72 hours meant having physical tapes shipped to the data center, and I believe meant up to 12 (though it could have been 24) hours of data lost. I was impressed by this, because the idea of having a job that ran either daily or twice daily that created tape backups was completely new to me.
  
  This was in the early aughts. Not sure if tapes are still used…
  
  source
  - Passerby6497@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    
    Not sure if tapes are still used…
    
    Alive and well depending on the use case. My org has an older backup software that’s entirely tape based and it’s amazing for the Linux systems I hear
    
    source
- SreudianFlip@sh.itjust.works ⁨2⁩ ⁨weeks⁩ ago
  Fukan yes
  
  D\L all assets locally
  
  proper 3-2-1 of local machines
  
  duty roster of other contributors with same backups
  
  automate and have regular checks as part of production
  
  also sandbox the stochastic parrot
  
  source
- HugeNerd@lemmy.ca ⁨2⁩ ⁨weeks⁩ ago
  A LTO drive with a non-consumer interface?
  
  source
- prenatal_confusion@feddit.org ⁨2⁩ ⁨weeks⁩ ago
  We still say that.
  
  source
aesthelete@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
Stop giving chat bots tools with this kind of access.

source
- Modern_medicine_isnt@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  Wrong answer. If you don’t give them access, the alternative (ruling out not using AI because leadership will never go for that) is to hire high school kids to take a task from a manager, ask the ai to do it, then do what the AI says repeatedly to iterate to the solution. The problem with that alt is that it is no better than giving the ai access, and it leaves you with no senior tech people. Instead, you give it access, but only give senior tech people access to the AI. Ones who would know to tell the AI to have a backup of the database, one designed to not let you delete it without multiple people signing off.
  
  Senior tech people aren’t going to spend thier time trying things an AI needs tried to find the solution. So if you don’t give it access, they won’t use it, and eventually they will all be gone. Then you are even further up shit creek than you are now.
  
  The answer overall, is smarter people talking to the AI, and guardrails to stop a single point of failure. The later is nothing new.
  
  source
  - vithigar@lemmy.ca ⁨2⁩ ⁨weeks⁩ ago
    What is this insane rambling?
    
    The alternative is that the only thing with access to make changes in your production environment is the CI pipeline that deploys your production environment.
    
    Neither the AI, nor anything else on the developers machine, should have access to make production changes.
    
    source
    -> View More Comments
  - MartianRecon@lemmus.org ⁨2⁩ ⁨weeks⁩ ago
    The answer is no AI. It’s really simple. The costs for ai are not worth the output.
    
    source
    -> View More Comments
  - Shanmugha@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    Nah. As a tech people, I am not going to give an llm write access to anything in production, period
    
    source
    -> View More Comments
  - Matty_r@programming.dev ⁨2⁩ ⁨weeks⁩ ago
    I’m in favour of hiring kids to figure out the solution through iteration and doing web searches etc. If they fuck up, then they learn and eventually become better at their job - maybe even becoming a Senior themselves eventually.
    
    I get what you’re saying - Seniors are more likely to use the tools more effectively, but there are many cases of the AI not doing what its told. Its not repeatably consistent like a bash script.
    
    People are better - always.
    
    source
    -> View More Comments
  - aesthelete@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    What are you even talking about?
    
    If you hand chat bots access to tools that without so much as a confirmation proceed to do things that require you to run your fucking disaster recovery procedures…you might just be a 💩 🧠 'd moron.
    
    Are you writing these AI tools? Because you seem like the type.
    
    Sure, the only answer is fucking “YOLO mode” everything. 👍
    
    source
  - criss_cross@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    Do you go on an oncall rotation by chance? Because anyone that has to respond to night time pages would not be saying this lol.
    
    source
    -> View More Comments
- minorkeys@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  No risk, no reward. People are desperate for these tools to help them success.
  
  source
  - HugeNerd@lemmy.ca ⁨2⁩ ⁨weeks⁩ ago
    Success bigly, even.
    
    source
  - super_user_do@feddit.it ⁨2⁩ ⁨weeks⁩ ago
    We’ve always been succeeding even without them. I don’t see why would anyone try to work in aiT if they don’t… Want to work lol
    
    source
    -> View More Comments
kamen@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
You either have a backup or will have a backup next time.

Something that is always online and can be wiped while you’re working on it (by yourself or with AI, doesn’t matter) shouldn’t count as backup.

source
- MIDItheKID@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  AI or not, I feel like everybody has had “the incident” at some point. After that, you obsessively keep backups.
  
  For me it was a my entire “Junior Project” in college, which was a music album. My windows install (Vista at that time - I know, vista was awful, but it was the only thing that would utilize all 8gb of my RAM because x64 XP wasn’t really a thing) bombed out, and I was like “no biggie, I keep my OS on one drive and all of my projects on the other, I’ll just reformat and reinstall Windows”
  
  Well… I had two identical 250gb drives and formatted the wrong one.
  
  Woof.
  
  I bought an unformat tool that was able to recover mostly everything, but I lost all of my folder structure and file names. It was just like 000001.wav, 000002.wav etc. I was able to re-record and rebuild but man… Never made that mistake again. Like I said. I now obsessively backup. Stacks of drives, cloud storage. Drives in divverent locations etc.
  
  source
  - SirEDCaLot@lemmy.today ⁨2⁩ ⁨weeks⁩ ago
    
    AI or not, I feel like everybody has had “the incident” at some point. After that, you obsessively keep backups.
    
    Yup!
    
    Also totally unrelated helpful tip- triple check your inputs and outputs when using dd to clone a drive. dd works great to clone an old drive onto a new blank one. It is equally efficient at cloning a blank drive full of nothing but 0s over an old drive that has some 1s mixed in.
    
    source
    -> View More Comments
  - kamen@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    TestDisk has saved my ass before. It’s great at recovering broken partitions. If it’s just a quick format done with no encryption involved, you have a very high chance of having your stuff back. That’s of course if you catch yourself after doing just the format.
    
    Other than that, yeah, I’ve also had my moments. Back in high school not only did I not have money for an external drive - I didn’t even have enough space on my primary one. One time a friend lent me an external drive to do a backup and do a clean reinstall - and I can’t remember the details, but something happened such that the external drive got borked - and said friend had important stuff that was only on that hard drive. Ironically enough it wasn’t even something taking much space - it was text documents that could’ve lived in an email attachment.
    
    source
- ThomasWilliams@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  He did have a backup. This is why you use cloud storage.
  
  The operator had to contact Amazon Business support, which helped restore the data within about a day.
  
  source
Deestan@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
We don’t need cautionary tales about how drinking bleach caused intestinal damage.

The people needing the caution got it in spades and went off anyway.

Or maybe the cautionary tale is to take caution dealing with the developers in question, as they are dangerously inept.

source
- Scipitie@lemmy.dbzer0.com ⁨2⁩ ⁨weeks⁩ ago
  Yeah this is beyond ridiculous to blame anything or anyone else.
  
  I mean accidently letting lose an autonomous non-tested non-guarailed tool in my dev environment… Well tough luck, shit, something for a good post mortem to learn from.
  
  Having an infrastructure that allowed a single actor to cause this damage? This shouldn’t even be possible for a malicious human from within the system this easily.
  
  source
- eleitl@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
  Most devs are ops-tarded.
  
  source
  - msage@programming.dev ⁨2⁩ ⁨weeks⁩ ago
    Even dev-impaired
    
    source
eleitl@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
“and database snapshots that Grigorev had counted on as backups” – yes, this is exactly how you run “production”.

source
- Nighed@feddit.uk ⁨2⁩ ⁨weeks⁩ ago
  With some of the cloud providers, their built in backups are linked to the resource. So even if you have super duper geo-zone redundant backups for years, they still get nuked if you drop the server.
  
  It’s always felt a bit stupid, but the backups can still normally be restored by support.
  
  source
  - eleitl@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
    That’s because these are not backups. With backups you still have your data even if the cloud provider has gone away.
    
    source
    -> View More Comments
phoenixz@lemmy.ca ⁨2⁩ ⁨weeks⁩ ago
At least you had backup, right?

Oh, yeah, that’s right. You were dumb enough to give AI full access to your production system so likely you’re dumb enough to not have backups of anything either.

I take it Claude has full access to all of your git repositories as well so that it could wipe those too?

You got what you deserve

source
- Metype@pawb.social ⁨2⁩ ⁨weeks⁩ ago
  Yeah they did, they had plenty of recovery snapshots. That were able to be deleted at a whim and were deleted by Claude! :D
  
  source
BrianTheeBiscuiteer@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
Whether human, AI, or code, you don’t give a single entity this much power in production.

source
- billwashere@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  It’s why there a two keys to launch nukes.
  
  source
  - Paranoidfactoid@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
    WOPR disagrees:
    
    Image
    
    source
    -> View More Comments
  - Rooster326@programming.dev ⁨2⁩ ⁨weeks⁩ ago
    How does one on implement this with dba credentials?
    
    source
rumba@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
Anyone who lets AI do this is absolutely inept, lazy, or deserving.

In its default configuration, it stops at EVERY STEP. Do you want to run this command, do you want to update this file, here’s the file I want to modify and the patch i’m going to use with adds and deletes in green and red.

If you’re using it in unsafe permissions mode, click yeah sure allow Claude to run whatever the fuck it wants in this directory, or just hitting yeah sure go ahead every time, it’s your own damn fault.

It’s self-driving for the terminal. Don’t you dare take your eyes off the road or hands off the wheel.

source
- entropiclyclaude@lemmy.wtf ⁨2⁩ ⁨weeks⁩ ago
  What do you mean I shouldn’t give AI admin privileges on my or any other machine?
  
  source
  - Sturgist@lemmy.ca ⁨2⁩ ⁨weeks⁩ ago
    Depends on how much you enjoy fresh installs of your OS
    
    source
  - rumba@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
    I’m rather a fan of letting it do stupid, repetitive shit. I need you to create 30 linux accounts the other day from a screen shot. Then store, initial keys and creds in my password manager platform.
    
    Hey, Claude, write me a bash script to do this from this image. and also use best practice for removing non-standard characters from login names.
    
    I review the loop and the general state of the OCR and let it go.
    
    source
- NastyNative@mander.xyz ⁨2⁩ ⁨weeks⁩ ago
  Plus we have automation just people are lazy like you said.
  
  source
Bongles@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
This keeps happening. I can understand using AI to help code, I don’t understand Claude having so much access to a system.

source
- Etterra@discuss.online ⁨2⁩ ⁨weeks⁩ ago
  It’s because these idiots believe their own bullshit.
  
  source
  - Earthman_Jim@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
    That’s honestly the most frightening part of all of this to me. How many of these idiots at the very tippy top pushing this stuff are suffering from cyber psychosis? How many of them have given themselves the mission to give AI the keys to the world at all costs because they’re literally mentally ill from their own technomagic trick?
    
    source
    -> View More Comments
  - horn_e4_beaver@discuss.tchncs.de ⁨2⁩ ⁨weeks⁩ ago
    Getting high off your own supply
    
    source
- NostraDavid@programming.dev ⁨2⁩ ⁨weeks⁩ ago
  Especially since between Claude and Codex, Claude seems to have NO issues breaking things, while Codex is “I’ve ensured that the old path still works, and also fixed a bug I ran into”.
  
  Claude is Facebook (“Move fast and break things”)
  
  Codex is Linux (“We do not break userspace!”)
  
  source
The_Almighty_Walrus@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
Remember when Gemini got caught in a loop of self-loathing and nuked itself?

Image

source
- Auth@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  OpenClaw now comes with a therapist AI to talk other AIs off the ledge so they dont nuke your project and themselves.
  
  source
- mechakid37@retrolemmy.com ⁨2⁩ ⁨weeks⁩ ago
  
  The code is cursed, the test is cursed, and I am a fool.
  
  Such venom, of which only a programmer could spew.
  Perhaps the A.I. isn’t so different from us.
  
  source
Poppa_Mo@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
Whoever gave it access to production is a complete moron.

source
- tempest@lemmy.ca ⁨2⁩ ⁨weeks⁩ ago
  If you’ve ever used it you can see how easily it can happen.
  
  At first you Sandbox box it and your careful. Then after a while the sand box is a bit of a pain so you just run it as is. Then it asks for permission a 1000 times to do something and at first you carefully check each command but after a while you just skim them and eventually, sure you can run ‘psql *’ to debug some query on the dev instance…
  
  It’s one of the major problems with the “full self driving” stuff as well. It’s right often enough that eventually you get complacent or your attention drifts elsewhere.
  
  This kind of stuff happened before the LLM coding agents existed, they have just supercharged the speed and as a result increased the amount of damage that can be done before it’s noticed.
  
  There are already a bunch of failures in place for something like this to happen. Having the prod credentials available etc etc it’s just now instead of rolling the dice every couple weeks your LLM is rolling them every 20s.
  
  source
GaumBeist@lemmy.ml ⁨2⁩ ⁨weeks⁩ ago
Nobody wants to point out that Alexei Grigorev changes to being named Gregory after 2 paragraphs?

Slop journalism at its sloppiest. I wouldn’t be surprised to find out that this story was entorely fabricated.

source
- zarkanian@sh.itjust.works ⁨2⁩ ⁨weeks⁩ ago
  Naw, Alexey Grigorev is a real person, with a GiHub and everything, and he wrote a blog post about this very incident. The person writing the article just fucked up the name.
  
  I’m surprised that you jumped to that conclusion without doing a 5-minute web search.
  
  source
- Sundiata@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
  holy shit your right lol…good catch.
  
  Makes me want to get out more so I can have real interaction with real peop-
  
  sees people walking around with meta glasses
  
  me: “Hey hows it going?”
  
  person(GEMINI 35.84 INTERFACE): “Human is approaching you, facescan assumes awkward, potentially hostile, he isn’t tagged, there is no name above his head. do not speak with him”
  
  person: turns and walks away silently in a creepy puppet manner
  
  me: “What the actual fuck?”
  
  GEMINI 35.84: “Uploading unknown face into database to Stargate for analysis, no match, law enforcement has been called”
  
  News at 11: “A man has been incinerated by law enforcement in what officials are describing as a special unwanted persons removal operation”
  
  this shit could become real in a few decades. funny and depressing as fuck.
  
  source
Ghostie@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
You’ve heard of vibe coding. Allow me to introduce despair coding.

source
Deestan@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
According to mousetrap manufacturers, putting your tongue on a mousetrap causes you to become 33% sexier, taller and win the lottery twice a week.

While some experts have argued caution that it may cause painful swelling, bleeding, injury, and distress, and that the benefits are yet to be unproven, affiliated marketers all over the world paint a different, sexier picture.

However, it is not working out for everyone. Gregory here put his tongue in the mousetrap the wrong way and suffered painful swelling, bleeding, injury and distress while not getting taller or sexier.

Gregory considers this a learning experience, and hopes this will serve as a cautionary tale for other people putting their tongue on mousetraps: From now on he will use the newest extra-strength mousetrap and take precautions like Hope Really Hard that it works when putting his tongue in the mousetrap.

source
anon_8675309@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
Mistakes happen. But how do you go 2.5 years without proper backups?

source
Passerby6497@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
My CTO keeps telling me I need to try agenic coding, and I keep telling him I won’t touch shit until I have an isolated VM to use it in, because I’m not letting some fucking clanker nuke my scripts/documentation/mailbox/whatever for no reason.

Too bad there’s never any free time to set that shit up. Oh damn…

source
nutsack@lemmy.dbzer0.com ⁨2⁩ ⁨weeks⁩ ago
have you heard of not doing this instead? perhaps by not giving the keys to your wacky robot wizard

source
Benchamoneh@lemmy.dbzer0.com ⁨2⁩ ⁨weeks⁩ ago
Who let’s AI anywhere near production environments? Fully deserved

source
plateee@piefed.social ⁨2⁩ ⁨weeks⁩ ago
Jesus Christ people. Terraform has a plan output option to allow for review prior to an apply. It’s trivial to make a script that’ll throw the json output into something like terraform visual if you don’t like the diff format.

I’ve fucked up stuff with Terraform, but just once before I switched to a rudimentary script to force a pause, review, and then apply.

source
jaykrown@lemmy.world ⁨2⁩ ⁨weeks⁩ ago
The developer is to blame. Using a cutting edge tool irresponsibly. I have made mistakes using AI to help coding as well, never this bad though. Blaming AI would be like blaming the hammer a roofer was using to hammer nails and slamming their finger accidentally with it. You don’t blame the hammer, you blame the negligence of the roofer.

source
mudkip@lemdro.id ⁨2⁩ ⁨weeks⁩ ago
I don’t feel an inkling of sympathy. Play stupid games, win stupid prizes.

source
ColeSloth@discuss.tchncs.de ⁨2⁩ ⁨weeks⁩ ago
If your dumb fucking ass let an ai near your work AND you didn’t have any recent backups that it couldnt have access to; you’re really extra fucking stupid.

source
bold_omi@lemmy.today ⁨2⁩ ⁨weeks⁩ ago
Good. Anyone foolish enough to write code with a slop machine produces only slop. That garbage should’ve been deleted anyway.

That’s entirely ignoring the fact that this person didn’t have any backups elsewhere.

If you can’t think, you can’t code.

source
etchinghillside@reddthat.com ⁨2⁩ ⁨weeks⁩ ago
This is like blaming the gun for killing people.

source
sefra1@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago
It seems that every few weeks some developer makes this same mistake and a news is published each time.

source
Cantaloupe@lemmy.fedioasis.cc ⁨2⁩ ⁨weeks⁩ ago
Why aren’t we adding any safeguard to what commands AI models can use?

Image

source
LiveLM@lemmy.zip ⁨2⁩ ⁨weeks⁩ ago

but should serve as a cautionary tale.

Jesus there’s a headline like this every month, how many tales people need to learn???

source

-> View More Comments