>>106395686
yes you have to manually expose it to the internet but people still do for some reason? maybe for convenience, accessing their pc away from home or idk
also if the instance has comfyui manager you could literally just point it to a fake "custom node" git repo with malicious code and pwn them completely, it will happily clone and execute it