Hacker News

Favorites Setup
Comment by maxloh | original | ZCode – Harness for GLM-5.2
[−]maxloh · 2026-07-01 Wed 20:33 UTC · link
I don't find a closed-source Chinese agent system trustworthy.

It is essentially a black box with full user permissions, meaning you are just handing over your entire system to a Chinese-owned server. With OpenCode and its GLM provider, at least I can monitor which files were read, which were edited, and what commands were executed.

Not to mention that Chinese national security laws legally obligate companies to cooperate with state intelligence and counter-espionage efforts [0]. If you have this installed on a corporate workstation, and your company is large enough, the possibility of them spying on you is not just a risk—it's almost a certainty.

[0]: https://en.wikipedia.org/wiki/National_Intelligence_Law_of_t...

[−]Escapado · 2026-07-01 Wed 20:36 UTC · link
I agree. I don't find the US competitors trustworthy either. I think open source is the way here.
[−]simjnd · 2026-07-01 Wed 20:56 UTC · link
Thank you. It doesn't make sense to me how much people trust our companies so much more than Chinese ones for no reason. This country has an abysmal track record when it comes to respecting its citizen's rights or privacy. Propaganda working as intended I suppose.
[−]estearum · 2026-07-01 Wed 21:00 UTC · link
If you think the US has an "abysmal" track record on this, what words would you use to describe China's track record?
[−]D2OQZG8l5BI1S06 · 2026-07-01 Wed 21:06 UTC · link
"abysmal" probably.
[−]Yiin · 2026-07-01 Wed 21:06 UTC · link
depends if you look through China citizen point of view or someone in the west
[−]Natfan · 2026-07-01 Wed 21:07 UTC · link
also abysmal. two things can be bad at the same time
[−]pkulak · 2026-07-01 Wed 21:11 UTC · link
Yeah, but if you reach for the top shelf every time you need a word, you can't compare things anymore.
[−]froh42 · 2026-07-01 Wed 21:21 UTC · link
But really, where is the difference in data misuse from the US and China? Because the US has been "friends" in the past?
[−]preg_match · 2026-07-01 Wed 21:21 UTC · link
It’s just a coincidence that both the US and china have the absolute worst privacy concerns. They are the top shelf IMO. Comparing them I’d say they’re about equal, really, especially once we consider the financial sector and credit.
[−]estearum · 2026-07-01 Wed 21:45 UTC · link
lmfao

You know you're sitting here on the open Internet complaining about the US government with literally zero fear of any repercussions in any sense whatsoever?

You should go to an actual authoritarian country and just ask someone their opinion on their government.

The difference between flippant, hyperbolic complaining (you) and someone who will actually glance over their shoulder and totally clam up in response to that type of question is quite chilling in reality.

[−]LtWorf · 2026-07-01 Wed 22:05 UTC · link
Perhaps you have not heard of Francesca Albanese?

USA government does repercussions, severe ones.

[−]estearum · 2026-07-01 Wed 22:38 UTC · link
Wow, is GP afraid of being sanctioned?

Big if true, but I doubt it.

[−]LtWorf · 2026-07-02 Thu 06:15 UTC · link
Are you afraid of making sense?
[−]preg_match · 2026-07-01 Wed 22:24 UTC · link
The US is not authoritarian. But in terms of surveillance and privacy violations, we’ve really pushed it to the absolute limit. All of your communications are effectively tapped, especially since the US government can coerce private companies without letting you know.

There are very few exceptions, and of those that exist virtually all are under existential threat constantly.

[−]estearum · 2026-07-01 Wed 22:35 UTC · link
No, we haven’t “pushed it to the absolute limit.” We’ve pushed it to (and sometimes beyond) what’s Constitutional etc, but no, that’s not “the absolute limit.”

In other countries you can just be beheaded for saying negative things about the government. No trial necessary.

No, it’s quite illegal for the government to coerce private companies. Companies can and should and do sue the government for this.

[−]LtWorf · 2026-07-02 Thu 06:16 UTC · link
Which government are these? The ones you just made up?
[−]bayarearefugee · 2026-07-01 Wed 21:13 UTC · link
Both are abysmal, but as a US citizen bad behavior from Chinese corporations and government is vastly more limited in how negatively it can impact my life in a practical way than bad behavior from US corporations and government.
[−]npongratz · 2026-07-01 Wed 21:15 UTC · link
"Abysmal", but that's beside the point.

Suppose a US citizen, residing and working in the US and never traveling to China, crosses The Powers That Be. Which Power is more likely to do worse things to said citizen? Pretty unlikely they'll be rendered to one of the illegal Chinese jails in Brooklyn, more likely they'll be sent to Gitmo or a black site.

[−]londons_explore · 2026-07-01 Wed 21:42 UTC · link
This. For a typical citizen, your own government is a far bigger threat than a foreign one.

That's why, all other things equal, I try to keep my own government happy or ignorant, but don't really mind what I share with foreign governments, especially ones who won't forward the info to my own government.

[−]estearum · 2026-07-01 Wed 21:47 UTC · link
That's actually not beside the point as it relates to GP's comment.
[−]MaxHoppersGhost · 2026-07-01 Wed 21:12 UTC · link
China is still doing horrendous things to its population that the US stopped doing over 100 years ago. Not the same.
[−]andy99 · 2026-07-01 Wed 21:12 UTC · link
It’s not no reason. At a fundamental level I don’t trust the companies any differently. But at a professional level, nobody is going to question my using Claude or OpenAI in a professional capacity - to work on customer projects, analyze their data, etc.

I also consider Microsoft to be the biggest industrial spy in the world, them and google both are no doubt mining everything you type into office / gsuite, all your emails, etc. But nobody bats an eye when you write a word doc about some sensitive matter.

If my customers thought I was feeding their data into a Chinese owned LLM API (which to be clear I’m not), I don’t think it would go over well, and I’d be exposed legally to all sorts of things.

So the reason is risk aversion and desire to participate in US / western commerce. One can debate the actual threat, but why would you ever risk sending your data to a processor perceived as dodgy?

[−]eeasss · 2026-07-01 Wed 20:40 UTC · link
If you are not US based that’s not really a big concern.
[−]ianm218 · 2026-07-01 Wed 20:45 UTC · link
I think it’s a real concern. Chinese companies are much more closely tied to the state, as in if you decide to go to China one day they might already have all the data on how you have interacted with their models.

The US is certainly inching in that direction but it’s not like someone from the US government sits at Anthropic’s HQ reading chats from state people of interest.

[−]CptFribble · 2026-07-01 Wed 21:03 UTC · link
> all the data on how you have interacted with their models

1) there is a very non-zero chance that the US government also has that data from OpenAI and possibly Anthropic

2) unless you are asking the chinese models to draw up plans to overthrow the chinese government, it's extremely unlikely they would ever care.

while china has a track record of harassing it's own dissident citizens abroad, if you're not chinese and not trying to subvert their government (or are a high-ranking government official yourself), it's kind of silly to suppose they would ever care about you or what you do.

and if you have information they want for their own national development purposes, like EUV engineers, they are much more likely to offer you fabulous amounts of money instead of try to intimidate or threaten it out of you.

[−]MangoCoffee · 2026-07-01 Wed 21:41 UTC · link
to me its more about company's IPs/trade secrets. china have a history of stealing IPs and very poor IPs enforcement while US have an established history of protecting IPs and US court can enforce it but hey, cheap token is more important, right?
[−]CptFribble · 2026-07-02 Thu 03:08 UTC · link
I agree, but considering the age of AI was ushered in with the largest and most complete theft of IP in human history, from inside the good 'ol USA, we shouldn't trust any LLM provider with critical information of any kind, and instead push even harder for better local models.

even companies that proclaim zero data retention have yet to produce a mechanism that makes me trust that claim

[−]saberience · 2026-07-01 Wed 21:05 UTC · link
It's interesting how you would say this about China but not about the US, especially given what's happened recently with Anthropic and the US govt.

Do you really think the US government doesn't get access or couldn't get access to any of your chats with Claude?

[−]ianm218 · 2026-07-02 Thu 03:06 UTC · link
Hmm yeah I really think that the US government doesn’t have access to my Claude chats and wouldn’t be able to without jumping through actual legal hoops like a subpoena or other legal order. More than happy to be wrong if you have a source that points in that direction.
[−]blitzar · 2026-07-01 Wed 21:51 UTC · link
> if you decide to go to China one day they might already have all the data

PRISM ... XKeyscore ...

> The US is certainly inching in that direction

Itching to go in a direction that (publicly known) they have been in for decades now.

[−]ianm218 · 2026-07-02 Thu 03:09 UTC · link
The US government is no saint in terms of mass surveillance but there is a gigantic gulf between US governments mass surveillance and China, I think to act otherwise is a bit disingenuous.
[−]LtWorf · 2026-07-02 Thu 06:58 UTC · link
At this point i think the china mass surveillance was propaganda while the USA one is for real.
[−]d3m0t3p · 2026-07-01 Wed 20:46 UTC · link
This is exactly the same with providers from the USA.
[−]tristor · 2026-07-01 Wed 21:03 UTC · link
As someone who loves using OpenCode w/ local Chinese open source models, this is basically my take on this as well. There's no way I would ever put a piece of proprietary Chinese software that gets full system control on anything important. This is definitely something I would only ever run sandboxed in a lab environment for toy projects, not for serious work. I feel only marginally better about Codex/Claude Code, hence my strong preference for local LLMs w/ OpenCode, but a proprietary approach to Chinese models is a hard no from me dawg.
[−]scotty79 · 2026-07-01 Wed 21:16 UTC · link
How's that different from Codex (gui app) or Claude?
[−]sejje · 2026-07-01 Wed 21:24 UTC · link
Well, it's different from OpenCode
[−]ElFitz · 2026-07-01 Wed 21:25 UTC · link
The codex cli too is open source, afaik.
[−]InvertedRhodium · 2026-07-01 Wed 21:26 UTC · link
Codex is open source: https://github.com/openai/codex
[−]dingdingdang · 2026-07-01 Wed 21:21 UTC · link
In a sense it's a clean reminder that all these, especially non-local, llm tools should NEVER run outside a container. I'm currently looking at z-jail specifically for these scenarios; VMs are too heavy & expose too many sec issues of their own for continual integrated use in my case.
[−]ahrzb · 2026-07-01 Wed 21:25 UTC · link
At least the model weights are open, I’m not American, so to me this is much more trustworthy in every possible way. You’re talking as if US intelligence are the good guys, and to me at least, they are not to any extent.
[−]LeBit · 2026-07-01 Wed 21:33 UTC · link
We are talking about an agent harness here, not a model.

Nevertheless, Americans thinking they are morally superior to China is always quite funny.

This administration is corrupt, cruel and doesn’t care about human rights.

And the worst is… Americans have voted for that administration…. twice!

I digress…

[−]dakolli · 2026-07-01 Wed 21:38 UTC · link
While Trump is terrible, all the same morally questionable practices existed under Clinton, Bush, Obama, Biden. This administration just likes to brag about it. The US has been controlled by an evil technocracy/intelligence apparatus for 25+ years that gives zero f*ks about democracy or a constitution.
[−]100721 · 2026-07-01 Wed 21:53 UTC · link
> all the same morally questionable practices existed under Clinton, Bush, Obama, Biden.

I’m gonna need a citation on this claim

[−]patrickprunty · 2026-07-01 Wed 21:47 UTC · link
How is this an agent harness? It’s the harness and the model if it’s weights
[−]snootypoot · 2026-07-01 Wed 21:54 UTC · link
foolish to blame one administration rather than all administrations since jfk was killed for trying to change things
[−]cheesecakegood · 2026-07-02 Thu 03:15 UTC · link
It didn't stop all of Facebook's behavior, far from it, but we did get to see Zuckerberg hauled in front of Senate committees multiple times (who we do vote for).

This has never happened in China, and will never happen, nor anything like it. Some open oversight is almost always better than possible secret oversight (and do you think that the Chinese government has user privacy on even its top 10 priorities?)

[−]dakolli · 2026-07-01 Wed 21:36 UTC · link
There's no way to safely use SOTA LLMs if privacy, and IP protection are your concern. Unless you want to spend 100k+ to host a 1T param model. Even if you use OpenCode you're sending all that information to random data centers you know nothing about.

But yes, US intelligence has killed and ruined the lives of far more people than China has. Not sure how so many people buy into the narrative that they're protecting freedom and democracy.. They're protecting their freedom to kill and crush all their enemies and control every "democracy" on earth.

[−]andy99 · 2026-07-01 Wed 21:47 UTC · link
You can run one on a cloud provider. You’re correct that intelligence orgs probably still can access them, but if you’re that high value of a target then you have bigger problems and / or can afford to build an air gapped system or whatever. If you’re just concerned about other companies mining your messages, self hosting in the cloud solves that.

Reminds me a bit of the old “is your adversary Mossad or not Mossad” decision matrix https://www.usenix.org/system/files/1401_08-12_mickens.pdf

[−]switchbak · 2026-07-01 Wed 21:54 UTC · link
"US intelligence has killed and ruined the lives of far more people than China has" - please provide a strong argument for this statement, with numbers and sources.

I'm no apologist for the US Intelligence and related organizations (not by a very long shot), but that is a very extreme statement to make.

[−]ai_fry_ur_brain · 2026-07-01 Wed 23:57 UTC · link
How many Russians, Palestinians, Afghanis, Libyan, Sudanrse, Somalian, Syrians, Iranians and Yemenis people do you think US intelligence has contributed to killing over the last decade?

Or are those not people to you?

China doesn't go around the world using it's military to force it's will upon people.

Every decision the US military, or State Department makes is a product of US intelligence

The foundation of US Intelligence was built by people who literally cried in the meeting when FDR broke ties with Nazi Germany. They proceeded to pardon and protect the perpetrators of genocide after ww2, then went onto hire them. US intelligence is literally built by Nazis.

The CCP was founded on the back of a peasent uprusing. The US is the 4th Reich and the most evil government to ever exist. The people of the US are generally good people, but the Empire itself is pure evil that fuels itself with death and destruction.

[−]seanmcdirmid · 2026-07-02 Thu 00:02 UTC · link
> China doesn't go around the world using it's military to force it's will upon people.

No, they use it on their own people. Come on, the USA is bad, but comparing it to China isn’t going to show the contrast you are looking for.

[−]LtWorf · 2026-07-02 Thu 06:56 UTC · link
I see the USA propaganda is working.
[−]LtWorf · 2026-07-02 Thu 06:55 UTC · link
You know what's happening in Cuba right now?
[−]galaxyLogic · 2026-07-01 Wed 23:02 UTC · link
What can you gain by looking at the weights, whether open source or not? Are they not what determines the model's output, but in an oblique way? We can't really fix the weights ourselves, weight by weight, or can we?
[−]kachnuv_ocasek · 2026-07-01 Wed 21:26 UTC · link
You can always run it in bwrap or rootless podman.
[−]mrosenbjerg · 2026-07-01 Wed 21:41 UTC · link
nono, the sandboxing tool, has been working great for me
[−]arikrahman · 2026-07-01 Wed 21:40 UTC · link
That's why I like to use Reasonix with Deepseek. Hitting cache makes requests basically free and that's through unsubsidized American providers like Digital Ocean or cloudflare.
[−]diego_moita · 2026-07-01 Wed 21:43 UTC · link
> It is essentially a black box with full user permissions,

You mean, like Windows and Android?

[−]snootypoot · 2026-07-01 Wed 21:53 UTC · link
so basically no worse than europe or usa, but they are just more open about it
[−]efficax · 2026-07-01 Wed 21:56 UTC · link
yes but the americans are also doing it, and i don’t really work on anything worth spying on
[−]kordlessagain · 2026-07-01 Wed 21:58 UTC · link
Run it in a container under Opencode. It works great, and I even upgraded to their pro plan (~$60/month). If you want it in a container, there's info in my profile under my projects. That code is entirely open source, and it's there simply because I built what I needed for my own work. I'm sure there a zillion other ways to do it. However, I highly advise against running any agent on bare metal, regardless of the company's country of origin. My thesis addresses this directly and repeatedly.

By the way, some pedant recently asked why anyone would run software with only a few stars. My thoughts on that are minimal: people can practice whatever slop logic they want. I've architected and built systems that handled tens of thousands of users. I'm not fucking around. The way I build isn't typical, and I don't suggest anyone try to mimic my approach, but it works for me and the way my mind processes complex systems.

To the peanut gallery: use it or don't, but don't give me a hard time unless you're ready to get one back. I've made plenty of mistakes in my career, and accountability is a crucial part of growth. I'm more than willing to work with anyone using my code, provided they bring valid, substantial criticism to the table.

[−]mempko · 2026-07-02 Thu 00:41 UTC · link
I'm in the US. The benefit of the Chinese spying on me vs a US company is the Chinese can't come to my door and take me to jail.
[−]iberator · 2026-07-02 Thu 07:02 UTC · link
NSA can also legally force companies to spy. Secret spy courts and gag orders are a thing.

Actually there are more such cases against the USA than China in public.