Open source project curl is sick of users submitting “AI slop” vulnerabilities
Submitted 1 month ago by leo@lemmy.linuxuserspace.show to news@lemmy.linuxuserspace.show
Submitted 1 month ago by leo@lemmy.linuxuserspace.show to news@lemmy.linuxuserspace.show
GreenKnight23@lemmy.world 1 month ago
IMO repo owners should remove the ownership of all contributions from a contributor if they have been found abusing the project with AI.
TBH I’ll probably be slapping a few warnings on my own projects along those lines.
Ephera@lemmy.ml 1 month ago
In this case, it’s about vulnerability reports, not about vulnerable code being contributed. There’s a bounty for any found vulberability in Curl, and then because telling an AI to try to find a vulnerability is essentially free, you’ll have lots of people looking to make a quick buck by just reporting whatever the AI spat out, no matter how nonsensical it is.