Tech

1762 readers

1 users here now

A community for high quality news and discussion around technological advancements and changes

Things that fit:

New tech releases
Major tech changes
Major milestones for tech
Major tech news such as data breaches, discontinuation

Things that don't fit

Minor app updates
Government legislation
Company news
Opinion pieces

Community Wiki

founded 2 years ago

MODERATORS

Vacant@programming.dev

Open source project curl is sick of users submitting “AI slop” vulnerabilities (arstechnica.com)

submitted 3 months ago by sabreW4K3@lazysoci.al to c/tech@programming.dev

5 comments fedilink hide all child comments

top 5 comments

sorted by: hot top controversial new old

[–] sinceasdf@lemmy.world 8 points 3 months ago

Why bother submitting vulnerability reports just because some AI claims one with no POC?

[–] tja@sh.itjust.works 5 points 3 months ago (1 children)

I feel like I read this same headline every month

[–] sabreW4K3@lazysoci.al 3 points 3 months ago (1 children)

There's two levels to this. You have big tech trying to prove that their AI is capable of contributing positively and then you also have little people who with the best of intentions are trying to bug fix but don't have the skills. Both will become more prevalent.

[–] tja@sh.itjust.works 2 points 3 months ago

Yes, but I mean exactly this headline with this contents article. Someone submitted something very badly ai generated to the curl hackerone and the curl team complains.

[–] jet@hackertalks.com 2 points 3 months ago

For unknown reporters we might see a future where a demoable POC is attached to the issue, so it can be verified as not a hallucinogen... To be fair there are real issues that can't be demoed, but this cover most of the slop