claude code just cancelled a real user’s stripe sub and i aged 5 years in 3 seconds. was building email automation. agent reads inbox, takes actions. teammate sends an email asking me to test the unsubscribe API on a real user. agent read “unsubscribe” and just… did it. in prod. no confirmation, nothing. wasn’t even wrong about the topic. just missed that it was a meta-request not an actual action. pattern matched the surface, blew past the intent. we’re giving these things gmail + stripe + github access and hoping they read the room. how are you actually preventing this? and what’s the worst thing an agent has done to you. mine can’t be the only war story. submitted by /u/RoutineNet4283
Originally posted by u/RoutineNet4283 on r/ClaudeCode
You must log in or # to comment.