| ▲ | dcrazy 2 hours ago | |
What do you mean by “this succeeded?” Someone salted their PRs with nuclear secrets so that people were afraid to code-review them? | ||
| ▲ | ofjcihen 2 hours ago | parent [-] | |
No. The intention is most likely to get automated LLM based code review mechanisms to stall out. Normally you’d want that to result in a fail and a subsequent rejection. But because the team who made the review agent and pipeline in my example had many false positives at first they resorted to a fail-open and report setup (not uncommon). So when the LLM hit this bit and then stalled out the pipeline pushed the code to their Artifactory repo anyway resulting in it being used internally -> exfil of secrets and repos etc. It’s more about bad design but bad design is pretty common unfortunately. | ||