Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Daniel Stenberg of curl gave a talk about some of what theyve been experiencing, mostly on the security beg bounty side. A bit hyperbolic, and his opinion is clear from the title, but I think a lot of maintainers feel similarly.

“AI Slop attacks on the curl project” https://youtu.be/6n2eDcRjSsk



I think it's only fair to give an example where he feels AI is used correctly: https://mastodon.social/@bagder/115241241075258997


Wow very cool, theyve now closed 150 bugs identified via ai assistance/static analysis!

For ref, here is the post from Joshua Rogers about their investigation into the tooling landscape which yielded those findings

https://joshua.hu/llm-engineer-review-sast-security-ai-tools...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: