Kevin Beaumont  

Today in InfoSec Job Security News:

I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.

So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.

As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.

1+
Old Fucking Punk
Follow

@GossiTheDog Another demonstration of why free software repositories shouldn't be on . is not your friend, and is not free software. There are many, many, free software git hosting services, and transferring repositories is easy.

· Tootle · 0 · 0 · 0
Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml