I was on Claude the past week creating version 4 of my "Jarvis" AI personal assistant and Claude is regularly warning me not to post any API Keys, passwords, etc into any of its' chats. And flags this whenever it detects it. And recommends I rotate the credential.
So, I appreciate Claude is doing this, but it makes you think: How vulnerable are we making our systems by exposing an AI Agent to our files, giving them some control over those systems but then as soon as someone penetrates through (pick your poison: Firewall, public port, server, etc) they have control over...email....calendar....banking info....private info living on your Google Drive...
Thoughts?