Open Source is so fucked

tante@tldr.nettime.org

RE: https://cyberplace.social/@GossiTheDog/116080909947754833

Open Source is so fucked

nihkeys@mastodontti.fi

@tante Odds are that the same attack vector is being deployed in closed source environments as well.

tante@tldr.nettime.org

@nihkeys probably but that I care less about.

lu_leipzig@troet.cafe

@tante No need to tell this to you personally, but for those who need to hear it: Accepting slop is a choice. Responsible maintainers reject vibe-coded commits outright, review the rest thoroughly and generally move slow and fix things. Fast forward a few years, and this will make the difference between building something nice and drowning in chaos.

emma@orbital.horse

@tante fortunately us olds will happy to bill these ass clown companies to fix all the nonsense that the glorified regression models shat out.

octothorpe@mastodon.online

@tante @GossiTheDog …I would wager a dollar closed source is just as, if not more fucked.

alienghic@timeloop.cafe

@tante

To get rid of the AI companies, do we need to just erase their payroll systems, or do we need the stock market or banking systems to all get rm -rfed by some vibe coded backup configurations and production?

hopeless@mas.to

@tante You know humans have been sending garbage patches too since time immemorial, the sky isn't falling any more than it has been ten years ago.

These commits don't go in the tree until someone reviews them, if it's that bad they will get the boot and before long the bot will get the boot.

lexinova@cyberplace.social

@tante Developer never cared for security.

Even in my company, i had to push to the CEO, to change the rules to force their hand.

gvlx@masto.pt

@lexinova @tante I hope those that are pushing bad code don't work for the same company that's providing ai-based security vulnerability searches at a cost. #aislop