If you are giving your codegen LLM - the model involved truly, genuinely doesn’t matter - admin access to your prod env, all I’m going to do is point and laugh.
No one should be able to delete or change backups. This infra was in any case vulnerable to a ransomware attack as any bad actor that breaks in can delete the database and encrypt the backups with a key they promise to share in return for bitcoin.
If you are giving your codegen LLM - the model involved truly, genuinely doesn’t matter - admin access to your prod env, all I’m going to do is point and laugh.
Also no prompts, ironically, for operations like “Are you sure you want to delete the production database? (y/N)”
It’s amateur hour all around lol
Just to add - AND ACCESS TO THE BACKUPS!!
No one should be able to delete or change backups. This infra was in any case vulnerable to a ransomware attack as any bad actor that breaks in can delete the database and encrypt the backups with a key they promise to share in return for bitcoin.
and having the backups stored in the same location as the primary data
Then it’s not a backup, it’s just duplicated data.
Just a shit show top to bottom for sure