Opensource

6197 readers

256 users here now

A community for discussion about open source software! Ask questions, share knowledge, share news, or post interesting stuff related to it!

Credits

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

⠀

founded 2 years ago

MODERATORS

pylapp@programming.dev

Flathub Now Rejects AI-Assisted Apps and Submissions (linuxiac.com)

submitted 1 week ago by recursive_recursion@piefed.ca to c/opensource@programming.dev

15 comments fedilink hide all child comments

cross-posted from: https://lemy.lol/post/66317969

you are viewing a single comment's thread
view the rest of the comments

[–] x74sys@programming.dev 3 points 1 week ago* (last edited 1 week ago) (1 children)

Just because they‘re used everywhere doesn’t mean that we just have to accept them. Also doesn’t mean that LLMs are a good thing.

I think LLMs can be used as an (additional!) cyber security analysis tool, that’s honestly the only area in which it seems to be actually useful (right now). And most projects don’t reach the size in which spotting security risks spanning across many different modules is a relevant skill to have. So it should be used sparingly, on things like the linux kernel. Then the cost of it might even be worth it (but I also don’t want to know about the amount of hallucinated bugs it finds).

[–] x74sys@programming.dev 5 points 1 week ago* (last edited 1 week ago)

And I want to add: even though LLMs can identify cybersecurity risks, it doesn’t mean they are good at cybersecurity. They’re probably just as bad as in any other area. Also questionable if the actual positives outweigh the labor required to flag all the false-positives.