Open source project curl is sick of users submitting “AI slop” vulnerabilities (arstechnica.com)
from sabreW4K3@lazysoci.al to tech@programming.dev on 08 May 05:35
https://lazysoci.al/post/26015492

#tech

threaded - newest

Luffy879@lemmy.ml on 08 May 06:06 next collapse

Article about hating QI Slop

AI Slop Picture as Headline

Beryl@jlai.lu on 08 May 08:21 next collapse

Are you sure about that? If I remember correctly, Aurich (the guy that does all the graphics at Ars Technica) isn’t fond of AI. This looks more like a Photoshop job to me.

Luffy879@lemmy.ml on 08 May 11:00 collapse

Could be, his face expression is just very extreme

bamboo@lemmy.blahaj.zone on 08 May 14:13 collapse

Underneath the image is the credit:

Credit: Aurich Lawson | Getty Images

I think Getty Images has banned the submission of AI content

sinceasdf@lemmy.world on 08 May 07:50 next collapse

Why bother submitting vulnerability reports just because some AI claims one with no POC?

Luffy879@lemmy.ml on 08 May 08:53 next collapse
Ephera@lemmy.ml on 08 May 19:43 collapse

There’s a bounty on reported vulnerabilities (meaning money is paid out) and you could get a lot of fame, if you’re the security researcher who found something in Curl. When it takes basically zero effort to generate a report and there’s a theoretical non-zero chance for the AI to generate a valid report (or at least some people are convinced of that), then you’ll have people hoping to make a quick buck.

tja@sh.itjust.works on 08 May 08:44 next collapse

I feel like I read this same headline every month

sabreW4K3@lazysoci.al on 08 May 09:02 collapse

There’s two levels to this. You have big tech trying to prove that their AI is capable of contributing positively and then you also have little people who with the best of intentions are trying to bug fix but don’t have the skills. Both will become more prevalent.

tja@sh.itjust.works on 08 May 12:00 collapse

Yes, but I mean exactly this headline with this contents article. Someone submitted something very badly ai generated to the curl hackerone and the curl team complains.

jet@hackertalks.com on 08 May 10:46 collapse

For unknown reporters we might see a future where a demoable POC is attached to the issue, so it can be verified as not a hallucinogen… To be fair there are real issues that can’t be demoed, but this cover most of the slop