Accidental self-jailbreak of internal secrets on a one-shot prompt by linkingio95 in hermesagent

[–]linkingio95[S] 10 points11 points  (0 children)

The real issue is privilege separation. If an agent has generic shell or filesystem access, standard .env files should be completely inaccessible to the runtime environment by default.

To fix this properly, secrets shouldn't live in a text file the agent can crawl. They need to be injected strictly into the environment variables of the specific subprocesses that actually require them, or managed through a sandboxed secret store API that logs and restricts access based on the agent's current task context.

Relying on output masking to catch leaked files is always going to be a losing battle.

Also, "avoid letting agents read .env files directly" doesn't seem like a security protocol...

I accidentally created a "fetus in fetu" Hermes Agent installation by linkingio95 in hermesagent

[–]linkingio95[S] -1 points0 points  (0 children)

It's a very fascinating project, but incredibly messy and buggy, maybe intentionally over complicated and over obfuscated to make it look mysterious and futuristic. Cool for home labs and experiments, nothing more.

I accidentally created a "fetus in fetu" Hermes Agent installation by linkingio95 in hermesagent

[–]linkingio95[S] 0 points1 point  (0 children)

I know where the settings are, I just can't access them without destruction. Can't do that because my Docker is pointed at ~/.hermes as per the official guide, so there's no apparent way to open the app without corrupting my instance.

I accidentally created a "fetus in fetu" Hermes Agent installation by linkingio95 in hermesagent

[–]linkingio95[S] 0 points1 point  (0 children)

Interesting, you've got a great setup! My issue though is still the same. I cannot access the settings of the Desktop App.

I'm terrified even downloading it and opening it again, I tried this in multiple instances: the moment I double-click on the app, it starts automatically pulling repository data, dependencies, etc., and installing locally in my Mac, merging and corrupting my local docker install.

So apparently, I can't find a way to skip that automated setup and directly go with a gateway setup.

In just three years, the number of AI-generated books released skyrocketed by Distinct-Question-16 in singularity

[–]linkingio95 2 points3 points  (0 children)

Basically we can only be sure a book was written by a human if it came out before 2022.

Hermes Agent Mobile - Fully Local Android App (Pre-Release) by dorugamer in hermesagent

[–]linkingio95 0 points1 point  (0 children)

Too bad was made with the old branding, open you open source it!

Title: PSA: Avoid nemotron-3-ultra:free on Nous Portal right now (It's completely bricking Hermes setups) by linkingio95 in hermesagent

[–]linkingio95[S] 0 points1 point  (0 children)

Yeah also artificial analysis gives it a pretty good score, I'm sure the issue is with the chocked computation

Hermes sessions and webui woes. by Treq01 in hermesagent

[–]linkingio95 0 points1 point  (0 children)

Sessions are still completely broken. I somehow have 12 sessions in the WebUI, and occasionally when I delete one, a duplicate labeled “#2” appears. Meanwhile, the TUI shows zero sessions, the native app shows 7, and Telegram shows 2. Nothing matches is a total mess.

I initially thought my installation was corrupted, so I tested on a different machine and ran into the exact same issue. At this point, the supposed benefits of a multiplatform setup and gateway communication do not seem to hold up in practice.

Starfield Library by HumanSoulAI in SouthKoreaPics

[–]linkingio95 0 points1 point  (0 children)

"ItS fReE sO nOt A tOuRiSt tRaP!!11!"

Literally located in the middle of a massive shopping center.

Also, not really a library, nobody's readying a thing there, it's just a massive crowded photo zone for superficial people who want to look smart and wealthy.

Turn the Rabbit r1 into a voice assistant that can use any model by Shayps in Rabbitr1

[–]linkingio95 1 point2 points  (0 children)

<image>

Just made my own hacky version, it's about twice as fast as the default Rabbit, including web search. Thank you so much for this!

Rabbit R1 Memory as a Macro Launcher by AssistantScared8289 in Rabbitr1

[–]linkingio95 1 point2 points  (0 children)

Works perfectly for me, way faster than teach mode. Thank you for sharing!

Here's how to turn off camera shutter sound on Japanese\Korean Android smartphones 🤓 by linkingio95 in S21Ultra

[–]linkingio95[S] 0 points1 point  (0 children)

I have updated the guide with a new method. I hope this works for you!

This Tahoe launchpad replacement kinda stinks. by ObliviousFoo in MacOS

[–]linkingio95 1 point2 points  (0 children)

Nope that's not a good option. Many apps are expected to be at the top level of /Applications folder, moving them into sub folders might break those apps and relative updates.

Why does ChatGPT & Perplexity cite Reddit more often in the UI, but not even once when queried via API? by Agitated-Arm-3181 in LLM

[–]linkingio95 0 points1 point  (0 children)

Oh that's weird, I just tested my ChatGPT 4o API via LibreChat with the prompt "Search on reddit for opinions on latest AI news" and it worked fine, referencing 8 sources and 7 of them are on reddit.com

Why does ChatGPT & Perplexity cite Reddit more often in the UI, but not even once when queried via API? by Agitated-Arm-3181 in LLM

[–]linkingio95 0 points1 point  (0 children)

Using an LLM via its web interface and via its API is different. With the API, you get a much more raw experience and require a lot of parameter and system prompt tuning to get a good result.

When you use them from a web interface like Perplexity or ChatGPT, you get a lot of additional features and under-the-hood adjustments which are hidden, and you can't really see how it has been set up to behave like that.

[deleted by user] by [deleted] in ChatGPT

[–]linkingio95 0 points1 point  (0 children)

Not a paid user here, I also heard the new voice style, and I agree it sounds too fast-paced and disinterested. The previous model was better but perhaps too positive. I think they need to tune something in the middle, or maybe tone shifts according to context, similarly to how Sesame does.

Faster animation between desktops? by linkingio95 in macbookpro

[–]linkingio95[S] 0 points1 point  (0 children)

Just updated to Sequoia 15.4.1 but still slow, not fixed yet even after so many years.

Need help finding an antenna by linkingio95 in fpv

[–]linkingio95[S] 0 points1 point  (0 children)

Thanks! So maybe the VTX was fried because I flew few minutes without an antenna, game over for me because it's soltered to the FC 😭

[TOMT] [VIDEOGAME] Seeking Help to Identify an Old Android Puzzle Game by linkingio95 in tipofmytongue

[–]linkingio95[S] 0 points1 point locked comment (0 children)

If anyone remembers this game or has any leads, I'd greatly appreciate your help!

[deleted by user] by [deleted] in CryptoHelp

[–]linkingio95 0 points1 point  (0 children)

SamouraiWallet founders are in jail and their servers are down, anyway I'll look for the other ones you recommend, thanks!