all AI news
Bullying in Open Source Software Is a Massive Security Vulnerability
May 9, 2024, 10:26 p.m. |
Simon Willison's Weblog simonwillison.net
Bullying in Open Source Software Is a Massive Security Vulnerability
The Xz story from last month, where a malicious contributor almost managed to ship a backdoor to a number of major Linux distributions, included a nasty detail where presumed collaborators with the attacker bullied the maintainer to make them more susceptible to accepting help.
Hans-Christoph Steiner from F-Droid reported a similar attempt from a few years ago:
A new contributor submitted a merge request to improve the search, which …
backdoor contributor linux linux distributions major managed massive open source opensource open source software security security vulnerability ship software story them vulnerability
More from simonwillison.net / Simon Willison's Weblog
Fast groq-hosted LLMs vs browser jank
1 day, 3 hours ago |
simonwillison.net
AI counter app from my PyCon US keynote
2 days, 1 hour ago |
simonwillison.net
Understand errors and warnings better with Gemini
2 days, 18 hours ago |
simonwillison.net
Commit: Add a shared credentials relationship from twitter.com to x.com
2 days, 20 hours ago |
simonwillison.net
Jobs in AI, ML, Big Data
Software Engineer for AI Training Data (School Specific)
@ G2i Inc | Remote
Software Engineer for AI Training Data (Python)
@ G2i Inc | Remote
Software Engineer for AI Training Data (Tier 2)
@ G2i Inc | Remote
Data Engineer
@ Lemon.io | Remote: Europe, LATAM, Canada, UK, Asia, Oceania
Artificial Intelligence – Bioinformatic Expert
@ University of Texas Medical Branch | Galveston, TX
Lead Developer (AI)
@ Cere Network | San Francisco, US