Yeah? And why should some wagie care that his corp gets hacked through the agent? Or that Microft is watching? This is true but its not an angle to get at anything with because the country where this is being mass produced has an apathetic population

Yes and no.

At its very core? “Agentic AI” is about the idea of having a bunch of different “agents” communicate with one another in a network with defined(-ish) communication pathways. This is an “agent network”. And if that sounds like microservices/task graphs/how every fucking app works then… you win the No-Prize!!

And, in that regard, it isn’t any difficult. This service has access to that database. It always has. Hell, this service might still have zero “AI” in it but count as an “agent” for marketing purposes. If the credentials are checked and passed in an appropriate and authorized way, it is as safe as it ever has been. Which… is a different depressing discussion.

The issue comes into play when you are looking at people rapidly rewriting existing infrastructure just to say they did. And doing so with generative AI that they fundamentally can’t vet (even if they wanted to). THAT is how you break things and THAT is how you introduce new CVEs.

The issue isn’t that you have this data stored in a SQL table that is accessed by that service which was pre-seeded with credentials in a secure way. The issue is that you have no rewritten both that service and the SQL server in a way that “optimized” things by removing that costly security check.

China just over there letting them mfers fuck all their own shit up.

Meredith Whittaker is bae.

I’ve wiped better ideas off of the used shoes of an old bash profile than the average agentic AI solution.

Meanwhile, they just started publicizing their own e2e encrypted chatbot.