(ℹ) Join us now at the IRC channel | ䷉ Find the plain text version at this address (HTTP) or in Gemini (how to use Gemini) with a full GemText version.
| *x-amarsh04 has quit (Quit: Konversation terminated!) | Jun 11 04:35 | |
| *x-amarsh04 (~amarsh04@xk49uzi5amp4u.irc) has joined #techbytes | Jun 11 04:40 | |
| *psydroid2 (~psydroid@36imbvshpgubk.irc) has joined #techbytes | Jun 11 08:50 | |
| *psydroid2 has quit (Ping timeout: 2m30s) | Jun 11 09:35 | |
| *psydroid2 (~psydroid@36imbvshpgubk.irc) has joined #techbytes | Jun 11 10:01 | |
| *psydroid2 has quit (Ping timeout: 2m30s) | Jun 11 10:04 | |
| *croissant` (~croissant@uudy98nj9ntz2.irc) has joined #techbytes | Jun 11 10:17 | |
| *croissant has quit (Ping timeout: 2m30s) | Jun 11 10:18 | |
| *psydroid2 (~psydroid@36imbvshpgubk.irc) has joined #techbytes | Jun 11 10:40 | |
| *psydroid2 has quit (Ping timeout: 2m30s) | Jun 11 10:45 | |
| *psydroid2 (~psydroid@36imbvshpgubk.irc) has joined #techbytes | Jun 11 11:31 | |
| *psydroid2 has quit (Ping timeout: 2m30s) | Jun 11 11:58 | |
| *psydroid2 (~psydroid@36imbvshpgubk.irc) has joined #techbytes | Jun 11 14:02 | |
| *croissant (~croissant@uudy98nj9ntz2.irc) has joined #techbytes | Jun 11 14:38 | |
| *croissant` has quit (Ping timeout: 2m30s) | Jun 11 14:39 | |
| schestowitz[TR2] | https://lists.gnu.org/archive/html/libreplanet-discuss/2026-06/msg00019.html | Jun 11 17:21 |
|---|---|---|
| -TechBytesBot/#techbytes-lists.gnu.org | Re: Timeline to put the beginning of GNU in perspective | Jun 11 17:21 | |
| schestowitz[TR2] | " | Jun 11 17:21 |
| schestowitz[TR2] | Hi, Akira, | Jun 11 17:21 |
| schestowitz[TR2] | Related to that announcement would be the high profile publication of the GNU Manifesto in Dr. Dobb's Journal, Vol. 10, Issue 3, pages 30 - 34, in March 1985: | Jun 11 17:21 |
| schestowitz[TR2] | https://archive.org/details/dr_dobbs_journal_vol_10/page/186/mode/2up | Jun 11 17:21 |
| schestowitz[TR2] | Later in 1986, the even larger, general audience computing magazine BYTE discussed the GNU Manifesto¹ in 1986 but I'm not sure which number: | Jun 11 17:21 |
| schestowitz[TR2] | https://vintageapple.org/byte/ | Jun 11 17:21 |
| schestowitz[TR2] | ¹ GNU.org has a copy but doesn't cite the volume, number, or page of the issue in which it was published: | Jun 11 17:21 |
| schestowitz[TR2] | https://www.gnu.org/gnu/byte-interview.en.html | Jun 11 17:21 |
| schestowitz[TR2] | " | Jun 11 17:21 |
| -TechBytesBot/#techbytes-archive.org | Dr. Dobb's Journal Vol 10 : People's Computer Company : Free Download, Borrow, and Streaming : Internet Archive | Jun 11 17:21 | |
| -TechBytesBot/#techbytes-vintageapple.org | Vintage Apple | Jun 11 17:21 | |
| -TechBytesBot/#techbytes- ( status 403 @ https://www.gnu.org/gnu/byte-interview.en.html ) | Jun 11 17:21 | |
| schestowitz[TR2] | https://lists.gnu.org/archive/html/libreplanet-discuss/2026-06/msg00020.html | Jun 11 17:23 |
| schestowitz[TR2] | " | Jun 11 17:23 |
| schestowitz[TR2] | I discuss three issues in the Project Glasswing initial update | Jun 11 17:23 |
| schestowitz[TR2] | of May 22 in this message. | Jun 11 17:23 |
| schestowitz[TR2] | Reference: | Jun 11 17:23 |
| schestowitz[TR2] | https://www.anthropic.com/research/glasswing-initial-update | Jun 11 17:23 |
| schestowitz[TR2] | 1. Disagreement in severity assessment between Anthropic and maintainer | Jun 11 17:23 |
| schestowitz[TR2] | The chart has boxes on the bottom line which say this: | Jun 11 17:23 |
| schestowitz[TR2] | 1,586 findings Reported to maintainers | Jun 11 17:23 |
| schestowitz[TR2] | 1,451 findings Acknowledged by maintainer | Jun 11 17:23 |
| schestowitz[TR2] | The text does not give the number of findings acknowledged by | Jun 11 17:23 |
| schestowitz[TR2] | maintainer. While the text discusses only high and critical | Jun 11 17:23 |
| schestowitz[TR2] | vulnerabilities the chart lumps all levels together. There must | Jun 11 17:23 |
| schestowitz[TR2] | surely be cases in which Mythos and the Anthropic vetting staff | Jun 11 17:23 |
| schestowitz[TR2] | classify an issue as high severity while the maintainer considers it | Jun 11 17:23 |
| schestowitz[TR2] | low severity. Do such cases count as "acknowledged by maintainer"? | Jun 11 17:23 |
| schestowitz[TR2] | We can't tell. | Jun 11 17:23 |
| schestowitz[TR2] | Many observers say that it is in Anthropic's interest to claim that | Jun 11 17:23 |
| schestowitz[TR2] | the problems Mythos is finding are severe. | Jun 11 17:23 |
| schestowitz[TR2] | However in some instances the maintainer might be underestimating the | Jun 11 17:23 |
| schestowitz[TR2] | severity. Claude Mythos is good at chaining together vulnerabilities | Jun 11 17:23 |
| schestowitz[TR2] | to create an exploit. An issue which appears minor in itself may | Jun 11 17:23 |
| schestowitz[TR2] | be combined with others to create a serious security hole. | Jun 11 17:23 |
| schestowitz[TR2] | 2. Pareto rule | Jun 11 17:23 |
| schestowitz[TR2] | The Anthropic team has discovered "3,900 high-or critical-severity | Jun 11 17:23 |
| schestowitz[TR2] | vulnerabilities in open-source code". 1000 projects were scanned. | Jun 11 17:23 |
| schestowitz[TR2] | We should not expect the vulnerabilities to be evenly distributed. | Jun 11 17:23 |
| schestowitz[TR2] | Applying the 80:20 rule we get 3120 in 200 projects and the remaining | Jun 11 17:23 |
| schestowitz[TR2] | 780 in 800 projects. | Jun 11 17:23 |
| schestowitz[TR2] | 3. Quality of code written by "AI" | Jun 11 17:23 |
| schestowitz[TR2] | The security-related findings by Claude Mythos seem to show that | Jun 11 17:23 |
| schestowitz[TR2] | "AI" is getting better at writing code. | Jun 11 17:23 |
| schestowitz[TR2] | On the contrary we have reports like this which claim that code | Jun 11 17:23 |
| schestowitz[TR2] | produced by "AI" often introduces vulnerabilities: | Jun 11 17:23 |
| schestowitz[TR2] | Report finds AI-generated code poses security risks | Jun 11 17:23 |
| schestowitz[TR2] | July 30, 2025 | Jun 11 17:23 |
| schestowitz[TR2] | https://www.eenewseurope.com/en/report-finds-ai-generated-code-poses-security-risks/ | Jun 11 17:23 |
| schestowitz[TR2] | Veracode has unveiled its 2025 GenAI Code Security Report, revealing | Jun 11 17:23 |
| schestowitz[TR2] | critical security flaws in AI-generated code. The study analysed 80 | Jun 11 17:23 |
| schestowitz[TR2] | curated coding tasks across more than 100 large language models | Jun 11 17:23 |
| schestowitz[TR2] | (LLMs), revealing that while AI produces functional code, it | Jun 11 17:23 |
| schestowitz[TR2] | introduces security vulnerabilities in 45 per cent of cases. | Jun 11 17:23 |
| schestowitz[TR2] | The research shows that despite advances in AI-generated code and | Jun 11 17:23 |
| schestowitz[TR2] | the ability of LLMs to generate syntactically correct code, security | Jun 11 17:23 |
| schestowitz[TR2] | performance has not kept up, remaining unchanged over time. Another | Jun 11 17:23 |
| schestowitz[TR2] | concerning trend is that when presented with a choice between secure | Jun 11 17:23 |
| schestowitz[TR2] | and insecure coding methods, GenAI models opted for the insecure | Jun 11 17:23 |
| schestowitz[TR2] | option 45 per cent of the time. | Jun 11 17:23 |
| schestowitz[TR2] | Finding a large number of vulnerabilities is not the same as a | Jun 11 17:23 |
| schestowitz[TR2] | guarantee that all vulnerabilities will be found. "AI" can write code | Jun 11 17:23 |
| schestowitz[TR2] | and scan code for problems but that gives us no guarantee that it will | Jun 11 17:23 |
| schestowitz[TR2] | be always aware of problems in its output or input. | Jun 11 17:23 |
| schestowitz[TR2] | Some people are interested in this. They feed old versions of a | Jun 11 17:23 |
| schestowitz[TR2] | program with a well-known issue and test whether the LLM can actually | Jun 11 17:23 |
| schestowitz[TR2] | find it. There is no mention of tests of this kind by Anthropic in | Jun 11 17:23 |
| schestowitz[TR2] | the initial report. | Jun 11 17:23 |
| schestowitz[TR2] | Akira Urushibata | Jun 11 17:23 |
| schestowitz[TR2] | " | Jun 11 17:23 |
| -TechBytesBot/#techbytes-Connection timed out after 10002 milliseconds ( status 0 @ https://lists.gnu.org/archive/html/libreplanet-discuss/2026-06/msg00020.html ) | Jun 11 17:23 | |
| -TechBytesBot/#techbytes-Project Glasswing: An initial update \ Anthropic | Jun 11 17:23 | |
| -TechBytesBot/#techbytes-www.eenewseurope.com | Report finds AI-generated code poses security risks ... | Jun 11 17:24 | |
| *psydruid (~psydruid@jevhxkzmtrbww.irc) has left #techbytes | Jun 11 17:53 | |
| *psydroid2 has quit (Ping timeout: 2m30s) | Jun 11 17:57 | |
| *psydruid (~psydruid@jevhxkzmtrbww.irc) has joined #techbytes | Jun 11 18:55 | |
| schestowitz[TR2] | <Goblin> Ill get organised and get those pictures onto gdrive and link it here.. | Jun 11 21:00 |
| *psydruid (~psydruid@jevhxkzmtrbww.irc) has left #techbytes | Jun 11 21:54 | |
| *psydruid (~psydruid@jevhxkzmtrbww.irc) has joined #techbytes | Jun 11 22:02 | |
| *psydroid2 (~psydroid@36imbvshpgubk.irc) has joined #techbytes | Jun 11 23:23 | |
| *psydroid2 has quit (Quit: KVIrc 5.2.10 Quasar http://www.kvirc.net/) | Jun 11 23:23 | |
Generated by irclog2html.py 2.6 | ䷉ find the plain text version at this address (HTTP) or in Gemini (how to use Gemini) with a full GemText version.