I’ve grown to depend on little snitch for this sort of thing. Always run in either Alert or Deny mode.
It is a little wild how many things expect to communicate with the internet, even if you tell them not to.
Example: the Cline plugin for vscode has an option to turn off telemetry, but even then it tries to talk to a server on every prompt, even when using local ollama.
I agree, it's very valuable in these situations, although it can only minimize damage. For Littlesnitch/OpenSnitch users: avoid allow rules that apply to all apps. Malware can and has used even trusted websites like Github Gists to expose secrets extracted.
In any case, even if your firewall protects you, you'll still have to treat the machine as compromised.
It is a little wild how many things expect to communicate with the internet, even if you tell them not to.
Example: the Cline plugin for vscode has an option to turn off telemetry, but even then it tries to talk to a server on every prompt, even when using local ollama.