Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It’s clear if what Comet was doing was safe, Chrome would already have implemented it.

The browser is the ultimate “lethal trifecta”: https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/

Giving an LLM’s agentic loop access to the page is just as dangerous as executing user controlled JavaScript (e.g. a script tag in a reddit post).



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: