top | item 45895644

(no title)

renhanxue | 3 months ago

All of these reports are effectively autogenerated by Big Sleep from fuzzing.

Again, Google has been doing this sort of thing for over a decade and has found untold thousands of vulnerabilities like this one. It is not at all clear to me that their doing so has been all that valuable.

discuss

saagarjha|3 months ago

Google fuzzing open source projects has eliminated a lot of low hanging fruit from being exploited. I am surprised you think that finding these vulnerabilities so they can be fixed has not been valuable.

surajrmal|3 months ago

AI found the bug, but the analysis and bug report were entirely written by a human without AI assistance. Source: I work with the author.