Reconsider the feature where logs.db is mounted as /llm automatically

simonw / datasette-llm

Datasette plugin for interacting with Large Language Models using LLM

10 stars 0 forks source link

Reconsider the feature where logs.db is mounted as /llm automatically #2

Open simonw opened 1 year ago

simonw commented 1 year ago

The problem with this feature is that if someone installs datasette-llm into the same virtual environment as datasette and then forgets about it, they may end up accidentally exposing their LLM logs.db in a future usage of Datasette.

simonw commented 10 months ago

Could I set this up as a default deny permission check, such that users could then configure it to allow access with their own YAML/JSON?