It seems that the architecture you describe still gives the key to the agent (who could email it to red team or perform nefarious actions with it). The advantage of OP's architecture is that the agent never sees the key and you could inspect the request before proxying it. Is that right or do I misunderstand something?
Sort of. The point of Vault is you're supposed to actually use RBAC and least privilege and store NPE credentials that are properly scoped to the actions you're comfortable automating, which your NPE then gets a certificate to fetch on demand, rather than just giving it your own personal root credentials that can do anything.
We're going to see this reinvented thousands of times in the next few months by people whose understanding of security is far poorer than HashiCorp's, via implementations that are nowhere near as well-tested, if tested at all.
The call flow is:
agent -> select skill (ex: reddit) -> execute action in skill -> script or code associated with skill -> get api key -> call reddit -> reddit posts -> agent.
The agent sees the output of the service, it does not directly see the keys. In OpenClaw, it’s possible to create the skill in a way that the agent does not directly know about or use vault_get command.
It would seem in this design that all the tools should be called through a wrapper that understands the vault and provides the credentials to the tool in the right way. How otherwise can curl use the credentials? Curl has no idea that there's a vault somewhere
The idea is that this is a political deal, not a business deal - by buying WBD, the Ellisons add CNN to a portfolio that already includes CBS and TikTok, and shaping coverage matters more to them than the stock price.
I think this was actually on the table and rejected. Which is why the "control the narrative" argument is fishy, or at least missing something. And now having just defended Oracle I have to go take a shower.
I assume OP is talking about an ideological motive to take over the media industry and pivot it in a rightward direction. That’s certainly what happened with CBS News, I think it’s fair to speculate about CNN too.
No idea why OP alluded to it rather than just said it though.
Absolutely. But it’s still relevant because depending on your goal (and your resources) a bad deal that burns cash might still be a positive outcome.
Not dissimilar from Musk buying Twitter, objectively he overpaid by a ton for a business that wasn’t thriving. But I think time has shown that his purchase has paid political and ideological dividends. Which might be worth the money to him.
That's what a poor person would say. Fox news managed to get Donald Trump elected, whose net worth has gone up by billions.
Also, it's not real money, it's debt equity. Equity transfers are just rich people toys. They move the actual cost into the entity they purchase, and if it fails, whatever, it didn't cost them anything.
I don’t know what that means. You wrote something about debt equity not costing shareholders anything, but it’s trivial to see that all else being equal, a business with more debt will have a smaller market capitalization than a business with less debt.
The debt from the Time Warner and other purchases dragged ATT down from the top spot to 3rd, and boosted Tmobile to the top. The shareholders of ATT lost and the shareholders of Tmobile gained.
Cool, congrats on shipping. Looks similar to worldmonitor [0][1]. What's the main use-case for this kind of thing? What' the "Watch Floor" you mention?
IMHo the main use case is keeping up with a crazy world in data not words written by other people. I have trust issues with the media and with social "new media" and just crave data so I can form my own views as best I can and decide what to research into deeper. It's extremely chaotic and I expect it to get even more chaotic. I can see other uses, such as in prediction markets, investing, journalism as well. But mine is more of the pure play "monitor the situation" type.
FWIW I just tried this to monitor / shepherd a PR while I was on the exercise bike and it was pretty seamless. Way easier than the tailscale/vibetunnel thing I got burnt out on last fall.
I was using the Claude app on my iPhone and claude code on a MacBook pro. PR is merged, still on the bike :)
A lot of commenters seem to think this is purely a DEI thing, but doesn't it match how the best companies hire? Couldn't it be that the colleges are genuinely trying to select who they think will end up at the top of their fields? Common hiring advice for startups (my game) is to look for slope and drive, not deep expertise or experience. The top kid at a bad high school seems like a better bet to me than the median kid from a stellar high school, even if they've done 3x more AP classes. There have been "revelatory" articles like every year for decades about how google doesn't just hire ivy leaguers.
No, at FAANG I was coached to strictly evaluate based on individual merit, defined by some fixed rubric. We certainly would not penalize an applicant for attending a school with "too many" qualified graduates.
Helping friends (and friends of friends of friends of friends) find their next startup gig without the application process. Aspiring to be Wealthfront for your career… a passive optimization that pings you every now and then with an interesting interview you could take.
Thinking a lot about how to recognize great matches. I think basically everyone can be talented force multipliers in the right situation / company / mission / team. Everyone here wants to do their life’s work, but it’s hard to find it.
Tactically working to scale reliable human-in-the-loop AI recruiter agents with very few humans.
Love handy. I use it too when dealing with LLMs. The other day I asked chatgpt to generate interview questions based on job description and then I answered using handy. So cool!
reply