| ▲ | pizlonator 2 hours ago | |
They don’t. For the calculus to change, anyone running an LLM to find bugs would have to be able to find all of the bugs that anyone else running an LLM could ever find. That’s not going to happen. | ||
| ▲ | 0xDEAFBEAD 2 hours ago | parent [-] | |
Correct me if I'm wrong, but I think a better mental model would be something like: Take the union of all bugs found by all white hats, fix all of those, then check if any black hat has found sufficient unfixed bugs to construct an exploit chain? | ||