##### ###### ##### ### # # ### # # ###### ## ## ## ## ## ## ## # # # # # ## ##### #### ##### # # # # # # # #### ## # ## ## ## ## # # # # # ## ## # ###### ## ### # ### # ######
##### ###### ##### ### # # ### # # ###### ## ## ## ## ## ## ## # # # # # ## ##### #### ##### # # # # # # # #### ## # ## ## ## ## # # # # # ## ## # ###### ## ### # ### # ######
Minimize permissions
AI tends to request broad permissions because it's easier. Database users with full admin access. API tokens with all scopes. File system access to root.
Narrow these down. Create database users with only the permissions they need. Use scoped API tokens. Restrict file access to specific directories.
When something gets compromised, least privilege limits the damage.
