Looks to my like an effort to pivot from an AI embedded Browser after the ChatGPT Atlas release into a local system Browser.
I still don't see the advantage I get for my local system? Nearly all of the actions on the demo page are doable with chatGpt in one or three interactions.
The big difference UX wise between chatbots and Surf is that Surf is built entirely on editable documents that you can mold / craft into an output (vs chat).
We actually had a chatbot, but our explorations showed that notes were a more effective in many cases!
An example of local data is that "Applets" made in Surf can be opened / updated from your local code editor, they're just HTML files.
Umm -- not being tied to ChatGPT? Like, that's huge. I personally do not consider consistently using any AI tool unless it has a local option. I've been air-quotes "paranoid" about things like this my whole life and it's served me QUITE well.
This vulnerability comes from allowing the AI to read untrusted data (usually documentation) from the Internet. For LLMs the boundary between "code" and "data" isn't as clear as it used to be since they will follow instructions written in human language.
I would describe it as blockly, as if we visualise the sound wave it seems to be without peaks and cut upwards and downwards producing a metallic boxy echo.
I my opinion the author refers to a LLMs inability to create a inner world, a world model.
That means it does not build a mirror of a system based on its interactions.
It just outputs fragments of world models it was build one and tries to give you a string of fragments that should match to the fragment of your world model that you provided through some input method.
It can not abstract the code base fragments you share it can not extend them with details using the model of the whole project.
You place malicious binaries outside the helm directory. Helm will now execute malicious code through the helm chart pointing outside the helm directory.
Don't I have already bigger problems if you have access to my file system to place there malicious code?
Is the danger here that one can get an execute permission? But if you can manipulate my helm chart why can you not also place the malicious code in the helm directory?
Yeah, there is a rather strong "downloading and executing arbitrary code from the Internet may lead to execution of arbitrary code" kind of vibe there.
I was sketching a sci-fi book idea in a similar tone with the following tones:
- what if AI took over
- what if the laws and legalities that allowed AI to take over bloodlessly just through an economic win force them to have a human representative to take legally binding actions in our society
- what if there developed a spectrum of individuality and cluster for different ai entities leading into a formation of processing guilds with AI agents. Limiting themselves in their individual time to a factor 10 Human Processing Speed for easier Human / AI interaction and to enable one to share the perception of their human representative without overloading them
I was thinking something similar, but much earlier along this timeline: what if the consultants that work for lobby groups that propose certain bills already use AI to write proposed laws? E.g. to make long, omnibus-style laws that very few of the people voting on it (or the public) actually read?
How will that erode laws that are undesirable to AI companies? Does AI take over, only because we no longer want to spend the effort governing ourselves?
Will AI companies (for example) end up providing/certifying these 'human representatives'? Will it be useful, or just a new form of rent-seeking? Who watches the watchmen, etc ?
I think it would make an interesting short story or novel!
That is from the viewpoint of the top 10% earners if you look at the european market or small / local business than you are looking at people doing the job of multiple departments and getting blamed if something does not work or for their salary if everything works.
And the salary is most of the time lower than anyone from the HR or Marketing department whose job if you are unlucky you also have to do because the tools they use are too complicated for them.
And if take the freelancer / remote work market into consideration everyone wants to pass all the work to the lowest bidder and some of them get lucky with skilled workers whose salary may be in the median considering their location after substracting the share of the middleman.
Lifetime deals on AppSumo don’t seem to me like a silver bullet for growth. Considering products with free trials, or even those that start as free and continue with a free core, struggle with initial growth.
Lifetime deals are also only compatible with software products that have negligible costs.
That is not true. It easy to create a holding on top of your GmbH in which case you only pay for 5% of the revenue taxes.
The only shoot in the foot is the higher cost of declaring taxes being it in time or in fee for a specialist.
And as long you are working from Germany you have to pay taxes for any kind of money you are going to take out from the company, being ist as dividend or salary.
The only exception is when you are not residing in one country in the EU for longer than 6 Months than you can play around with a LLC construct or other Holding structures from countries that have a double-tax avoidance agreement.
I still don't see the advantage I get for my local system? Nearly all of the actions on the demo page are doable with chatGpt in one or three interactions.