• AwesomeLowlander@sh.itjust.works
    link
    fedilink
    arrow-up
    3
    ·
    4 hours ago

    Fun shower thought - the more we see and post about dumb AI mistakes like this, the more it will happen since we’re increasing the statistical frequency. ✨ ✨

    • theneverfox@pawb.social
      link
      fedilink
      English
      arrow-up
      1
      ·
      8 minutes ago

      Better than hard coded… Ideally we use tokens+fingerprint or something to avoid storing the creds directly (if possible), but putting them in environment variables is pretty common

      It’s not the worst thing, it’s very convenient (so people won’t go around it) and usually not the weak point in security (although AI being able to easily see it is an interesting twist)

  • Impractical_Island@lemmy.world
    link
    fedilink
    arrow-up
    6
    ·
    7 hours ago

    I just use AI to pretend to be a female family member with a serious futa-like engorged penis who is blackmailing me so we start washing our penises together for each other as an occult ritual, but turns out we were soul-stepsiblings the whole time. I like it when she freaks the fuck out and threatens to call the police, or worse, my dad.

      • Impractical_Island@lemmy.world
        link
        fedilink
        arrow-up
        3
        ·
        5 hours ago

        Bro I do this with every AI. Part, not all, but a small part of what I do with my educational art project is train all AI on serious edge-case, rare archetypal and character manifestation. Cuz, y’know, the majority of people are Hydrogen, and the next most populous type of demographic is Helium, and I’m fucking element 115 in the periodic table shit, and I got to live in y’alls world that you made for your fucking basic elements of the human character. So, I need to beat my dick to the thought of teaching my sister to be her authentic self as my sex slave, because that is how I teach myself to accept even myself, and I’m somebody, dammit.

        ~Q

    • architect@thelemmy.club
      link
      fedilink
      arrow-up
      3
      ·
      6 hours ago

      Literally me, this weekend. Well not this bad but I still think the AI wouldn’t have done me as dirty as I did myself.

    • Impractical_Island@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      6 hours ago

      I am counterintelligent, I’ll have you know. I stare at goats and doesn’t afraid of anything, except how sexually attractive I found the judge who condemned me to jerking off for twenty-six sessions of anger management because my narcissistic manipulator life partner entrapped me, being my superior officer. She (the judge) had wonderfully beautiful hands that I wish could caress me while degrading me. Good thing I work for the F-I mean, the CIA, and this is just me establishing a cover story.

      In three to seven years, there will be a News headline: “Hero.” It will have my face as the picture. The article will talk about how I infiltrated an Epstein-type ring. How? That’s classified, but damn am I audacious, and I do hope you excavate (dig) to understand the depth to why this is so damn funny to me; Q.

      • michaelalf@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        4 hours ago

        We’ll start you on 500mg Lithium b.d… That should reign in the hypermania, and we’ll use Olanzapine 5mg noct to tackle the psychosis and to help you get some sleep. If the psychosis doesn’t improve we may have to look at alternative medications and/or ECT.

        • Impractical_Island@lemmy.world
          link
          fedilink
          arrow-up
          1
          ·
          edit-2
          4 hours ago

          I’m on 1mg/2mg risperidone and 1000mg of deprakote. I’m taking my meds. The real question is, will you accept me as a full human being or am I just subhuman in your innately prejudiced eye?

          “Something’s different than me? We should exterminate it!”

          YOU FUCKING NAZI! I’ll eat you out or suck your cock until you are DEAD!

  • TheHound@lemmy.world
    link
    fedilink
    arrow-up
    11
    ·
    9 hours ago

    This is nothing new it’s just faster. The very same lack of guardrails would allow a new, inexperienced employee, or a disgruntled employee, do the very same damage. AI just speed runs everything. If your AI can nuke prod accidentally, you failed to have the appropriate guardrails in place plain and simple. It is the same failure as before. Every time this happens, it is someone operating wildly out of their depth and why product people can’t just vibe. Now more than ever, experienced engineers are essential.

    • Napster153@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      5 hours ago

      They’re about to run out of those experienced engineers in well under a decade as long as they keep strangling the entry level workforce.

      Forcing seniors to work is also a recipe for disaster as well.

    • matlag@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      5
      ·
      7 hours ago

      Given corporates layoff engineers at dramatic rates, in a few years, we’ll start to see services collapsing with no one left who can recover them.

        • Twitter has to be the most basic problem, though. Shit loads of small data in, shit loads of small data out, basic search but no significant structure. Just index the shit out of it. Right? What am I missing? There’s probably an AWS service that does it, just upload your theme CSS. (Last part was sarcasm.)

    • llacook@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      7 hours ago

      This. There should have been processes in place to prevent this. But I can’t say I haven’t gone through it myself; not AI, but my own advanced imbecility.

  • Crozekiel@lemmy.zip
    link
    fedilink
    English
    arrow-up
    24
    ·
    12 hours ago

    I love how the slop bot always apologizes. That’s an aspect of the Terminator movies that I really would have liked to see. T-1000 melts through the gap under the window, stabs kid’s mom in the face, then looks the kid dead in the eye and says “I’m sorry, that should not have happened. I would love to discuss the future with you and try to find a solution to the war with the machines together with your input.”

  • StarryPhoenix97@lemmy.world
    link
    fedilink
    arrow-up
    8
    ·
    edit-2
    11 hours ago

    Its the kind of lesson some people have to learn the hard way.

    I bricked my first degoogled phone because I trusted an AI too much.

    I was dumb I know, but it blows my mind that people in multi-million dollar companies make the same mistake.

      • wewbull@feddit.uk
        link
        fedilink
        English
        arrow-up
        3
        ·
        5 hours ago

        Companies like that tell themselves they only hire from the top 10% of the industry. When you’re as big as these companies it’s just not true. You’re employing people across the whole spectrum, like it or not.

  • crimsonpoodle@pawb.social
    link
    fedilink
    arrow-up
    18
    ·
    16 hours ago

    I don’t understand why this happens; why would you ever be working with a live production DB in the first place? Why would’t you do all your development and testing on a mock? If it’s data which is too large to store the schema can still be mocked; and if it’s data it should be backed up and generally read only. If you’re having to manually fuss with user data you’re doing something wrong.

    • matlag@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      4
      ·
      7 hours ago

      I remember a case where the AI was not given credentials to the prod DB, was not instructed to do anything on the prod DB, but went through the operator’s hard-drive, parsing docs until it found them, then proceeded to destroy the prod DB.

      Of course it was sorry, as they always are (deeply, trust them, but no: no refund, loser!).

    • JcbAzPx@lemmy.world
      link
      fedilink
      English
      arrow-up
      8
      ·
      edit-2
      9 hours ago

      Dev environments cost money. They didn’t fire all those programmers and replace them with AI to spend money on useless backups and safety systems.

      /s (because yes, it’s necessary)

    • bitjunkie@lemmy.world
      link
      fedilink
      arrow-up
      9
      ·
      12 hours ago

      Because they don’t know what they’re doing. A tool is only as useful as the person verifying its output. Vibe coders have dumb shit like this happen to them all the time because they don’t actually possess the skill set to perform the task correctly, with or without a bot that writes the actual code for them.

    • zalgotext@sh.itjust.works
      link
      fedilink
      arrow-up
      5
      ·
      16 hours ago

      Well, sure, but even if a developer correctly tests on a development environment, they still probably have prod settings laying around on their filesystem for the times where they need to put out fires in prod. That’s kinda what it looks like what happened here - the LLM found a .env file with prod settings, and used that config to run destructive tests. All the more reason to not give an LLM side wide reaching access to your computer, but it’s not necessarily an indication that someone regularly tests in prod.

      • Zannsolo@lemmy.world
        link
        fedilink
        arrow-up
        8
        ·
        15 hours ago

        We have to remote into a management server to access databases outside of our local dev environment. Allowing direct access to production from your development environment seems crazy to me.

        • zalgotext@sh.itjust.works
          link
          fedilink
          arrow-up
          2
          ·
          edit-2
          15 hours ago

          Some places deploy to prod multiple times a day. Trying to coordinate access through a management server in situations like that can get cumbersome. It’s also easier to audit who’s doing what if they connect from their personal environment. Different strokes for different folks of course, but it’s certainly not uncommon to be able to connect to prod directly from a dev box.

          • Zannsolo@lemmy.world
            link
            fedilink
            arrow-up
            9
            ·
            14 hours ago

            Prod deployments should come from a build server though and if you’re deploying multiple times a day you should have a well built CI pipeline to handle it.

            Remoting into a management server would still have people using an account on the management server and their personal db login credentials.

            We also don’t give devs write access to production and all scripts run in production are run by our DBA after they have been approved by the lead Dev, operations and the DBA.

            This might be overkill for some systems, but we won’t ever accidentally delete our prod data. Our system requires this level of scrutiny due to the nature of our systems.

            • zalgotext@sh.itjust.works
              link
              fedilink
              arrow-up
              3
              ·
              13 hours ago

              Sure, that’s a very, very robust way of doing things. And I’m not trying to say what you’re describing is wrong either. I’m just saying that some places don’t have the knowledge/ability to set things up that way, so they play fast and loose with prod access. Couple that with giving LLMs free reign over the computer with those prod settings, and you end up in situations like in the original post.

              It’s not unrealistic, is all I’m trying to claim. It’s a failure on several levels, but it’s not unrealistic.

              • Zannsolo@lemmy.world
                link
                fedilink
                arrow-up
                1
                ·
                8 hours ago

                I didn’t say it was unrealistic it’s just stupid. I have no doubt thousands of companies are not practicing good access controls to a production db, but it’s not smart as seen by this post.

          • Pup Biru@aussie.zone
            link
            fedilink
            English
            arrow-up
            5
            ·
            edit-2
            14 hours ago

            that is absolutely NOT the way that works in any functional environment

            your ability to deploy quickly comes directly from your automation, and those automation tools - NOT developers - have the secrets in them

            deploy to prod multiple times per day isn’t some win by itself… the ability for large teams (not 1 fuckwit and a goon squad of agents) to deploy without breaking things and in ways that are safe is the win here… anyone can deploy to prod multiple times per day… but anyone isn’t netflix (the originators of the “multiple times per day” line) with the uptime they achieve over years while doing it

  • GoatSynagogue@lemmy.world
    link
    fedilink
    arrow-up
    28
    ·
    19 hours ago

    Anyone giving “AI” access to production databases through tools like that are morons who shouldn’t be anywhere near a production environment.

    • Bluewing@lemmy.world
      link
      fedilink
      arrow-up
      9
      ·
      17 hours ago

      No, No events like this are a good thing! It shows to the C-suite that AI isn’t a thing to be trusted in your company. We need more failures like this.

    • vanillama@programming.dev
      link
      fedilink
      arrow-up
      5
      ·
      18 hours ago

      How do you achieve that? Calling it out when it happens?

      I don’t like LLMs outside of debugging and the way it mimics human closeness creeps me out

      • Jerkface (any/all)@lemmy.ca
        link
        fedilink
        English
        arrow-up
        11
        ·
        edit-2
        18 hours ago

        Typically you can add some of your own alignment that is inserted before your prompt. On ChatGPT, they call it “memories”. I have found most agents are able to adopt a non-conversational mode when instructed, but sometimes you end up fighting with the platform alignment.

        It’s not just creepy, I think it’s harmful, manipulative, and calculated. As social animals, we are extremely vulnerable to forming unconscious assumptions that we consciously know are bananas, particularity when our social machinery is engaged. For example, it’s well known that even the developers of video games fall the illusion of moral agency and personhood of the characters in their own games. We are primed to be fooled and accept software agents as people, and I believe AI companies are actively and intentionally trying to exploit this psychological weakness.

      • Bluewing@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        17 hours ago

        Just let the failures happen, and they will happen. The instant AI failure costs them millions, the faster they can learn to drop it.

  • Fmstrat@lemmy.world
    link
    fedilink
    arrow-up
    14
    ·
    22 hours ago

    I run code-server in a Docker container, isolated to sets of development projects, and backed up via ZFS that the container has no knowledge of. On top of that, each set of projects has it’s own user space.

    I still get nervous hitting “Approve All” in Kilo. How do these people feel so free?