Experimental News Clipping Site

Tag: Curl project

  • Slashdot: Curl Warns GitHub About ‘Malicious Unicode’ Security Issue

    by

    Kurt Seifried
    in

    Source URL: https://developers.slashdot.org/story/25/05/17/0420236/curl-warns-github-about-malicious-unicode-security-issue?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Curl Warns GitHub About ‘Malicious Unicode’ Security Issue Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a security issue related to the use of Unicode characters in URLs within the Curl project, highlighting the impact of such changes and the subsequent measures taken to address it.…

  • Slashdot: Curl Battles Wave of AI-Generated False Vulnerability Reports

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/05/07/1750249/curl-battles-wave-of-ai-generated-false-vulnerability-reports?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Curl Battles Wave of AI-Generated False Vulnerability Reports Feedly Summary: AI Summary and Description: Yes Summary: The curl open source project is facing an influx of AI-generated false security reports, which are overwhelming the project maintainers. The lead developer, Daniel Stenberg, highlighted the lack of valid results from AI…

  • The Register: Curl project founder snaps over deluge of time-sucking AI slop bug reports

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/05/07/curl_ai_bug_reports/ Source: The Register Title: Curl project founder snaps over deluge of time-sucking AI slop bug reports Feedly Summary: Lead dev likens flood to ‘effectively being DDoSed’ Curl project founder Daniel Stenberg is fed up with of the deluge of AI-generated “slop" bug reports and recently introduced a checkbox to screen low-effort submissions…

  • Simon Willison’s Weblog: Quoting Daniel Stenberg

    by

    Kurt Seifried
    in

    Source URL: https://simonwillison.net/2025/May/6/daniel-stenberg/#atom-everything Source: Simon Willison’s Weblog Title: Quoting Daniel Stenberg Feedly Summary: That’s it. I’ve had it. I’m putting my foot down on this craziness. 1. Every reporter submitting security reports on #Hackerone for #curl now needs to answer this question: “Did you use an AI to find the problem or generate this submission?"…

  • Hacker News: Curl Project and Go Security Teams Reject CVSS as Broken

    by

    Kurt Seifried
    in

    Source URL: https://socket.dev/blog/curl-project-and-go-security-teams-reject-cvss-as-broken Source: Hacker News Title: Curl Project and Go Security Teams Reject CVSS as Broken Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The debate surrounding the efficacy of the Common Vulnerability Scoring System (CVSS) is intensifying, particularly as key projects like cURL and Go distance themselves from it, advocating for context-driven…

  • Slashdot: Open Source Maintainers Are Drowning in Junk Bug Reports Written By AI

    by

    system automation
    in

    Source URL: https://developers.slashdot.org/story/24/12/10/2334221/open-source-maintainers-are-drowning-in-junk-bug-reports-written-by-ai?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Open Source Maintainers Are Drowning in Junk Bug Reports Written By AI Feedly Summary: AI Summary and Description: Yes **Summary:** The report highlights the rising prevalence of low-quality security vulnerability submissions generated by AI models in open-source projects, which poses significant challenges for developers. Seth Larson from the Python…