upvote

points

by rbehrends11 hours ago |
comments
upvoteby heavyset_go7 hours ago|
next
[-]
It also sends all of your prompts to Grok's free tier by default, and the free tier trains on your submitted information, X AI can do whatever they want with that, including building ad profiles, etc.

You need to set an explicit "small model" in OpenCode to disable that.

reply
upvoteby integralid7 hours ago|
parent|
next
[-]
This. I work on projects that warrant a self hosted model to ensure nothing is leaked to the cloud. Imagine my surprise when I discovered that even though the only configured model is local, all my prompts are sent to the cloud to... generate a session title. Fortunately caught during testing phase.
reply
upvoteby DrewADesign12 minutes ago|
parent|
next
[-]
I’m curious if there’s a reason you’re not just coding in a container without access to the internet, or some similar setup? If I was worried about things in my dev chain accessing any cloud service, I’d be worried about IDE plugins, libraries included in imports, etc. and probably not want internet access at all.
reply
upvoteby vbernat2 hours ago|
parent|
prev|
next
[-]
From the code, this does not seem to be true anymore. It falls back to the current model if no small model is identified with the current provider. https://github.com/anomalyco/opencode/blob/9b805e1cc4ba4a984...
reply
upvoteby adam_mckenna4 hours ago|
parent|
prev|
next
[-]
It uses a model called "Big Pickle" by default which is an alias for minimax 2.5, as far as I've been able to tell.
reply
upvoteby rsanheim3 hours ago|
parent|
prev|
[-]
Wait what. For real? I knew their security posture was bad, but this bad??
reply
upvoteby ct52010 hours ago|
prev|
next
[-]
I second that.

Have fun on windows - automatic no from me. https://github.com/anomalyco/opencode/issues?q=is%3Aissue%20...

reply
upvoteby larschdk3 hours ago|
parent|
next
[-]
No surprise that a tool that can run shell scripts, open URLs, etc. is flagged down on Windows where AV try to detect such trojan methods.
reply
upvoteby foxygen10 hours ago|
parent|
prev|
[-]
Who cares about Windows?
reply
upvoteby Sebguer9 hours ago|
parent|
next
[-]
people who don't make OS preferences their entire personality
reply
upvoteby BoorishBears10 hours ago|
parent|
prev|
next
[-]
I do: they're important for ventilation in this heat wave.
reply
upvoteby UltraSane7 hours ago|
parent|
prev|
[-]
People who don't like messing around with drivers and like running Linux VMs on a Windows OS.
reply
upvoteby kolinko3 hours ago|
parent|
next
[-]
I think the parent meant vs MacOS, not vs Linux.
reply
upvoteby cracki2 hours ago|
parent|
[-]
Users of MacOS rarely have an active dislike for Windows, nor are they likely to announce this.
reply
upvoteby igravious3 hours ago|
parent|
prev|
next
[-]
Driver issues are way more of a thing on Windows than Linux or MacOS.
reply
upvoteby UltraSane3 hours ago|
parent|
[-]
Getting hardware to work is MUCH harder on Linux
reply
upvoteby shellwizard4 hours ago|
parent|
prev|
[-]
What? Drivers?
reply
upvoteby woctordho10 hours ago|
prev|
next
[-]
RCE is exactly the feature of coding agents. I'm happy with it that I don't need to launch OpenCode with --dangerously-skip every time.
reply
upvoteby mrln2 hours ago|
parent|
[-]
No, it is still configurable. You can specify in your opencode.json config that it should be able to run everything. I think they just argued that it shouldn't be the default. Which I agree with.
reply
upvoteby TZubiri9 hours ago|
prev|
next
[-]
I assign a specific user for it, which doesn't have much access to my files. So what I want is complete autonomy.
reply
upvoteby jee5994 hours ago|
prev|
next
[-]
[dead]
reply
upvoteby iam_circuit8 hours ago|
prev|
[-]
[dead]
reply