GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    daniel:// stenberg:// (bagder@mastodon.social)'s status on Friday, 13-Dec-2024 16:54:30 JST daniel:// stenberg:// daniel:// stenberg://

    "let me use an AI and file another bug against #curl

    https://github.com/curl/curl/issues/15736

    In conversation about 5 months ago from mastodon.social permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: opengraph.githubassets.com
      Severe Remote Code Execution Vulnerability in `varexpand` Function Due to Insecure Input Handling and Memory Operations · Issue #15736 · curl/curl
      I did this A critical remote code execution vulnerability exists in the varexpand function due to a combination of insecure input handling, unsafe memory operations, and improper execution of user-...
    • Rich Felker repeated this.
    • Embed this notice
      daniel:// stenberg:// (bagder@mastodon.social)'s status on Friday, 13-Dec-2024 16:54:34 JST daniel:// stenberg:// daniel:// stenberg://
      in reply to

      imagine the irony if they used GitHub CoPilot for this

      In conversation about 5 months ago permalink
    • Embed this notice
      F4GRX Sébastien (f4grx@chaos.social)'s status on Friday, 13-Dec-2024 16:55:47 JST F4GRX Sébastien F4GRX Sébastien
      in reply to

      @bagder and while we're at it make it severe so we're sure they'll have a look.

      Edit: omg these reports are so bad. Not a single effort is made so it could look legit. You're nice to call it wall of text. It's a generic security mansplaining. by a machine.

      In conversation about 5 months ago permalink
      Haelwenn /элвэн/ :triskell: likes this.
    • Embed this notice
      Andre Weissflog (floooh@mastodon.gamedev.place)'s status on Friday, 13-Dec-2024 17:07:23 JST Andre Weissflog Andre Weissflog
      in reply to

      @bagder about the only useful Github AI feature would be detecting LLM generated issues and closing them automatically ;)

      In conversation about 5 months ago permalink
    • Embed this notice
      Gina Häußge (foosel@chaos.social)'s status on Friday, 13-Dec-2024 19:58:12 JST Gina Häußge Gina Häußge
      in reply to

      @bagder This kind of crap makes me so incredibly angry that I cannot even put it into words.

      The shitty bug reports with missing information and problem descriptions along the lines of "it broken, plz fix, kthxbai" we maintainers often get are bad enough as is, as are the entitled assholes. But no, now we get put through a new circle of hell thanks to this LLM bullshit abused by script kiddies and trolls. This crap needs to die in a fire, and yesterday.

      In conversation about 5 months ago permalink
      Haelwenn /элвэн/ :triskell: likes this.

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.