I completely forgot about this PR until some random AI agent found a "security issue".
But if the PR goes through that means it's in active development !
I think he should do a PR to change back the readme
this post was submitted on 17 Apr 2026
213 points (100.0% liked)
Programmer Humor
31518 readers
2698 users here now
Welcome to Programmer Humor!
This is a place where you can post jokes, memes, humor, etc. related to programming!
For sharing awful code theres also Programming Horror.
Rules
- Keep content in english
- No advertisements
- Posts must be related to programming or programmer topics
founded 2 years ago
MODERATORS
That's the security issue, right? Liar paradox detected!
What was the issue? Without looking at the PR it's hard to judge
The link in the comment is borked, as expected. But the PR itself is definitely OK: https://github.com/unipop-graph/unipop/pull/138
it's a readme change
It was a load-bearing readme file.
By removing the banner, it tells the LLM that it is no longer being maintained, thus "lead to security issue".
In my company my management is using similar approach to review changes. soon more and more ppl will no longer read code and think about the code change logically, instead get scared and block changes due to these "scary AI comment"...
Not being sure it applies to this scenario and too lazy to verify, sometimes the security scanners get updated and flag previously accepted code.
... tough to make sense of flagging a readme though, unless there's sensitive info in it.
until some random AI agent
Wait, do they now have spam bots going around on random PRs to post advertisements?
also it's from the spammer's "staging" instance, so the payload is a URL with a staging hostname which doesn't even resolve 🙄
Nice, that's like the meme:
Look at how quickly AI put up a webpage for me: http://127.0.0.1/index.html