jogai_san@lemmy.world to Selfhosted@lemmy.worldEnglish · 2 days agoSelf-Host Weekly (30 January 2026)selfh.stexternal-linkmessage-square28fedilinkarrow-up176arrow-down18
arrow-up168arrow-down1external-linkSelf-Host Weekly (30 January 2026)selfh.stjogai_san@lemmy.world to Selfhosted@lemmy.worldEnglish · 2 days agomessage-square28fedilink
minus-squarenix98@lemmy.worldlinkfedilinkEnglisharrow-up1·1 day agoThis is where tools like bubblewrap (bwrap) come in. For opencode, I heavily limit what it can see and what is has access to. No access to my ssh keys or aws credentials or anything else.
minus-squareB0rax@feddit.orglinkfedilinkEnglisharrow-up2·14 hours agoYes, that is what you do. But not what the majority does… heck it even asks if it can get access to 1password
This is where tools like bubblewrap (bwrap) come in. For opencode, I heavily limit what it can see and what is has access to. No access to my ssh keys or aws credentials or anything else.
Yes, that is what you do. But not what the majority does… heck it even asks if it can get access to 1password