Protect account from installed software

[erusev]

The Keyabse command-line interface seems to have unhindered access to the private files on my Keybase account.

Doesn't this mean that any piece of software that I install on my Mac can potentially access the private files on my Keybase account?

If that's the case, do you have any suggestions on securing Keybase accounts against this? Can I password-protect command-line access or disable the command-line interface altogether?

Thanks!

[Avamander]

On most OSs if you have something that can run cli commands then you're generally f****d anyways, doesn't matter what other userspace software does. It wouldn't hurt to notify on CLI usage if the GUI runs, but IMHO yeah, it's a war already lost at that point.

[erusev]

@Avamander Isn't it true that password-protecting or disabling command-line access would protect private files from installed software?

[junderw]

your private files are accessible from normal filesystem calls via fuse on mac/linux or dokan on Windows, sooooo.

[erusev]

@junderw Is this true if Keybase is not enabled in Finder (on MacOS), which is the default?