An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
Local models are trained on tool calling these days, and they can be pretty good at it, too.
A coding LLM doesn't care whether you code, just whether your input has rules ...