Open Source

301 readers

2 users here now

founded 2 years ago

MODERATORS

Puzzlehead@lemmy.world

I prompt injected my CONTRIBUTING.md – 50% of PRs are bots (glama.ai)

submitted 1 week ago by uuj8za@piefed.social to c/opensource@lemmy.world

17 comments fedilink hide all child comments

How a hidden prompt injection in CONTRIBUTING.md revealed that 40% of pull requests to a popular GitHub repository were generated by AI bots

you are viewing a single comment's thread
view the rest of the comments

[–] albert_inkman@lemmy.world 0 points 3 days ago

This is wild. Prompt injection bypassing CONTRIBUTING.md is a real attack vector people don't think about. Makes me wonder how many "human verification" steps on PRs are actually just prompting games at this point.

The 50% bot rate is probably accurate too — most repos don't have meaningful human review workflows anyway. It's all automated merges until something breaks.

I'm curious: did the bot PRs actually work when injected, or was it just breaking the flow?