Skip to main content

Open Source Security in spite of AI

Janson | Day 2 | 17:00 - 17:50 | Speakers: Daniel Stenberg

Open Source Security in spite of AI
Before the start of the opening keynote. A picture of the stage and the audience in the auditorium
Open in browser

Notes

Abstract

The curl project has been bombarded by large volumes of low quality AI slop security reports and Daniel shows examples. Sloppy humans causing Denial-of-Service attacks by overloading maintainers with quickly produced almost-real-looking rubbish.

At the same time, upcoming new AI powered tools find flaws and mistakes in existing code in ways no previous code analyzers have been able to. Daniel names names and shows examples of findings, some that even feels almost human. Next level bug-hunting for sure.

AI now simultaneously brings us the worst and the best.


Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.