• emzili
    link
    fedilink
    English
    arrow-up
    29
    ·
    22 hours ago

    It’s simple actually, curl has a bug bounty program where reporting even a minor legitimate vulnerability can land you at a minimum $540

    • Taleya@aussie.zone
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 hours ago

      If they ever actually identify one, make a very public post stating that as this was identified using AI there will be no bounty paid.

    • zygo_histo_morpheus
      link
      fedilink
      arrow-up
      1
      ·
      12 hours ago

      What are the odds that you’re actually going to get a bounty out of it? Seems unlikely that an AI would hallucinate an actually correct bug.

      Maybe the people doing this are much more optimistic about how useful LLMs are for this than I am but it’s possible that there’s some more malicious idea behind it.