@[email protected] Excluding keyloggers, assuming the key is not tied to an enclave (at least true for all cross platforms password managers I know of) the only possible vector is some kind of local information leak (a hostile app, memory vulns, a leaked backup etc.) If you trust that nothing bad will ever get to your computer yes it is safe, otherwise it is not: the password will be the last defense.
(Creds: former cyber security analyst)
Posts
-
Good point. -
These studies are important but nevertheless they don't tell the whole history because the outcome will always depend on the model that is used.@[email protected] I think one reason may be they only surveyed commercial software (?) and commercial development has much more "just because" requirements which AI cannot comprehend. For open source (big 10k+ star ones or personal use ones) and academic work Copilot has definitely increased my code efficiency and quality: not because copilot can do my job, but I can worry less about mechanical work with non-trivial refactoring and glueing algorithms and APIs and pipelines that I already wrote together automatically. I have less psychological burden making core changes and I feel I am more likely to do a better job under this.
Also statistically PR time/throughout by time does not feel like a good metric: most PR time is waiting for review based on priority not actually working on it, maybe no of revisions/rounds of reviews might be better? The "41% more bug" by an unreleased methodology also feels like either the developers were overusing it or just statistic issues...
It is true that it rots your memory sometimes, so I occasionally turn it off just to train my brain on the muscle memory on trivial things.