| ▲ | OtherShrezzing 3 hours ago | |||||||
>As an AI-native startup founder, your responsibility is to know what's in your codebase, understand any potential exposure vectors, and not ship obvious vulnerabilities to real users who are trusting you with their data. This is fairly funny coming from the company whose employees report merging in hundreds of PRs per engineer per day, and accidentally leaked their own source code through a security misconfiguration in a package manager they own. | ||||||||
| ▲ | etoxin 3 hours ago | parent | next [-] | |||||||
Hundreds of PR’s per engineer per day! They would have zero visibility of their code. Their AI’s would have no visibility of the million plus lines of code. Sounds super stable and cool. | ||||||||
| ▲ | supriyo-biswas 2 hours ago | parent | prev | next [-] | |||||||
> your responsibility is to know what's in your codebase, understand any potential exposure vectors, and not ship obvious vulnerabilities to real users It seems like CYA; with all the marketing about how LLMs will solve all problems it was really surprising to see that, but legal probably told them to go easy on it. | ||||||||
| ▲ | koe123 3 hours ago | parent | prev | next [-] | |||||||
100 PRs a day? I am sure this is hyperbole but otherwise you have a quote for me? | ||||||||
| ||||||||
| ▲ | geraneum 2 hours ago | parent | prev [-] | |||||||
Yeah this is a Mythos pitch. | ||||||||