| ▲ | arjie 3 hours ago | |||||||
It makes sense. This process of searching for bugs was slow and time-consuming so it needed to be incentivized. This is no longer the case. Now the hard part is in identifying which ones are real. To paraphrase a famous quote: AI-equipped bug hunters find 100 out of every 3 serious vulnerabilities. | ||||||||
| ▲ | StrauXX 2 hours ago | parent | next [-] | |||||||
The process of finding bugs is still slow and time consuming. The kinds of vulnerabilities you find in codebases like cURL are still beyond AI. Binary exploitation is still a human only field. | ||||||||
| ▲ | wrxd 2 hours ago | parent | prev [-] | |||||||
> Now the hard part is in identifying which ones are real. So it’s still a slow and time consuming process. | ||||||||
| ||||||||