Tech

1040 readers

120 users here now

A community for high quality news and discussion around technological advancements and changes

Things that fit:

New tech releases
Major tech changes
Major milestones for tech
Major tech news such as data breaches, discontinuation

Things that don't fit

Minor app updates
Government legislation
Company news
Opinion pieces

Community Wiki

founded 1 year ago

MODERATORS

Vacant

Open source project curl is sick of users submitting “AI slop” vulnerabilities (arstechnica.com)

submitted 18 hours ago by [email protected] to c/tech

12 comments fedilink hide all child comments

top 12 comments

sorted by: hot top controversial new old

[–] [email protected] 15 points 17 hours ago (3 children)

Article about hating QI Slop

AI Slop Picture as Headline

[–] [email protected] 4 points 9 hours ago

Underneath the image is the credit:

Credit: Aurich Lawson | Getty Images

I think Getty Images has banned the submission of AI content

[–] [email protected] 2 points 10 hours ago

It looks like iRobot starring Adam Ragusea

[–] [email protected] 10 points 15 hours ago* (last edited 15 hours ago) (1 children)

Are you sure about that? If I remember correctly, Aurich (the guy that does all the graphics at Ars Technica) isn't fond of AI. This looks more like a Photoshop job to me.

[–] [email protected] 1 points 13 hours ago

Could be, his face expression is just very extreme

[–] [email protected] 9 points 16 hours ago (2 children)

Why bother submitting vulnerability reports just because some AI claims one with no POC?

[–] [email protected] 5 points 4 hours ago

There's a bounty on reported vulnerabilities (meaning money is paid out) and you could get a lot of fame, if you're the security researcher who found something in Curl. When it takes basically zero effort to generate a report and there's a theoretical non-zero chance for the AI to generate a valid report (or at least some people are convinced of that), then you'll have people hoping to make a quick buck.

[–] [email protected] 6 points 15 hours ago

[–] [email protected] 4 points 15 hours ago (1 children)

I feel like I read this same headline every month

[–] [email protected] 3 points 14 hours ago (1 children)

There's two levels to this. You have big tech trying to prove that their AI is capable of contributing positively and then you also have little people who with the best of intentions are trying to bug fix but don't have the skills. Both will become more prevalent.

[–] [email protected] 2 points 12 hours ago

Yes, but I mean exactly this headline with this contents article. Someone submitted something very badly ai generated to the curl hackerone and the curl team complains.

[–] [email protected] 2 points 13 hours ago

For unknown reporters we might see a future where a demoable POC is attached to the issue, so it can be verified as not a hallucinogen... To be fair there are real issues that can't be demoed, but this cover most of the slop