I don't see why we cannot build an app that when connected to an external monitor switches to a "Desktop Environment". Maybe, even a hacked version of UTM[1] that exposes a fully functional OS on the monitor.
I used `sandbox-exec` previously before moving to a better solution (done right, sandboxing on macOS can be more powerful than Linux imo). The way `sandbox-exec` works is that all child processes inherit the same restrictions. For example, if you run `sandbox-exec $rules claude --dangerously-skip-permissions`, any commands executed by Claude through a shell will also be bound by those same rules. Since the sandbox settings are applied globally, you currently can’t grant or deny granular read/write permissions to specific tools.
Using a proxy through the `HTTP_PROXY` or `HTTPS_PROXY` environment variables has its own issues. It relies on the application respecting those variables—if it doesn’t, the connection will simply fail. Sure, in this case since all other network connection requests are dropped you are somewhat protected but then an application that doesn't respect them will just not work
You can also have some fun with `DYLD_INSERT_LIBRARIES`, but that often requires creating shims to make it work with codesigned binaries
At least on macOS, there is a third way where you can control the network connection on the PID/binary level by setting up a network system extension and then setting up a content filter so you can allow/deny requests. It is pretty trivial to set this up, but the real challenge is usually in how you want to express your rules.
Be careful. exceeding around the original 200k tokens leads to worse and worse results. It's important to have context clean and tailored to the current task.
Yes, but at the same time having the 1 million context enabled is nice because the model is aware that they have more context left and actually perform better. [0]
I've also heared good things of this island called Audiobookbay (and there's also this useful service called Bugmenot where you can find all sorts of login credentials...)
And even if it's a bit of a hassle, I always check if there is an option to buy books/audiobooks as directly as possible from the author (in some cases you can buy content directly on the author's website, for example).
I was going to post this - I just joined this week, but have a friend who has sourced audiobooks from it that I couldn't find any other way so it looks good so far. Their emphasis on friendliness is nice too and seems genuine.
In an ideal world, this workaround would not be needed
¯\_(ツ)_/¯
reply