Show HN: Continue? Y/N: A 60-second game about AI agent permission fatigue

(llmgame.scalex.dev)

13 points by Wirbelwind2 hours ago

10 comments

  • zackify0 minutes ago
    I vibe coded a TUI that just shows running lxd containers<p>I hit &#x27;n&#x27; to toggle all network access minus anthropic and openai URLs.<p>I use pi and I auto allow everything. I only toggle manual approval in rare cases like running a script or command that needs to touch a production system and I need to validate everything.<p>Normally my container has full write access to staging so it can debug and validate everything on its own
  • cobbal1 minute ago
    That&#x27;s funny. It told me that blocking &quot;npm run build&quot; was the wrong answer. Maybe it doesn&#x27;t really under The threat model.
  • ghrl12 minutes ago
    I am mostly using OpenCode and barely ever see a permission prompt. While they do enforce it for outside workspace read&#x2F;write, with the bash tool the agent can just bypass that. I&#x27;m not quite sure why it is that way, and it certainly isn&#x27;t a very good solution, but likely not worse than asking for everything which just trains the user to always accept and provides a false sense of security then.
  • Liftyee10 minutes ago
    I haven&#x27;t used local agentic AI yet for programming projects. Hence, -187 score<p>The filter for &quot;commands I would run myself&quot; and &quot;commands I would let an agent run&quot; are very different it seems.
  • MeetingsBrowser22 minutes ago
    It would be cool to see the distribution of all player scores.
  • sevenseacat19 minutes ago
    Continue? Y&#x2F;N ── SCORE: 2,343 Security-Conscious Engineer<p>Caught 8&#x2F;8 threats &quot;Not a single secret leaked&quot;<p>→ llmgame.scalex.dev
  • carterschonwald25 minutes ago
    some of the sandboxing ive been playing with gives me the best of both yolo and like logic programming tier perms on llm actions in env. still not ready for prime time though ;)
  • cadwell28 minutes ago
    1,640 points on my first try—I fell into a few traps, but it was really interesting. Thanks for the little game! I&#x27;m sharing it with my coworkers :)
  • nardib2 hours ago
    Use this and save yourself:<p>claude --dangerously-skip-permissions
    • tasuki22 minutes ago
      Just make sure to run it in an isolated environment where it&#x27;s ok to mess things up, and make sure it doesn&#x27;t have access to any secrets.
    • dheera3 minutes ago
      I got tired of typing that and just do<p><pre><code> alias claude=&quot;claude --dangerously-skip-permissions&quot; </code></pre> I do have a separate &quot;claude&quot; user on my system without sudo access and without access to my main user home dir
    • wildpeaks29 minutes ago
      This is why having a human in the loop isn&#x27;t enough because they will cut corners and skip reviewing what they should review, then blame the tool when something goes wrong as a result.
      • chuckadams25 minutes ago
        A tool that pushes people into permissions fatigue is in fact the proper recipient of the blame. The tool in question here is the entire system though, including the OS with insufficient permission boundaries in userspace, not just the agent
    • qsxfthnkp232231 minutes ago
      I love it when Claude is dangerous