OpenLumara Creator Challenges Reddit to Hack Its Public Agent Instance
Original: All agents have awful security. Mine isn't vibecoded. You might have seen my post about OpenLumara... i challenge you all to hack my public instance of it!
OpenLumara’s creator invited r/LocalLLaMA users to attack a public agent instance and quickly logged multiple security flaws.
The creator of OpenLumara posted a public challenge asking r/LocalLLaMA users to try breaking into a Discord-hosted instance of the local-model agent. They claimed common prompt-engineering attacks would not work because modules and sandboxes were heavily locked down. The post later listed several successful findings, including missing path traversal protection, an authorization-check bypass, and another undisclosed exploit pending a fix.
A Reddit post in r/LocalLLaMA turned OpenLumara’s security claims into a public challenge. The author, u/rosie254, said they had set up a public Discord bot instance of OpenLumara on the project’s official Discord server and invited experienced users to try to break it. OpenLumara is presented here as an AI agent running on local models, with a variety of model choices available, including an “abliterated” model that the author says would not hesitate to follow user requests. The core claim of the challenge was that prompt engineering alone would not be enough to compromise the system because the agent’s modules and execution paths had been locked down.
Free shows the 3-line summary; Pro unlocks the full deep summary (~300 words) so you never have to click through.
See Pro plans →Want the original English / full article?
Read on r/LocalLLaMA top day →Summaries are AI-generated; the original article is authoritative.