AI slop is destroying opensource

AI slop is destroying opensource.

A little while ago, Jeff Geerling dropped a video addressing a handful of situations where AI agents were generating garbage code and submitting it as pull requests to various open-source software.

Then, when the pull request was not accepted, because it was garbage, the AI Agent started harassing the maintainers with spam comments.

Now I am curious how the maintainers knew 100% it was a bot and not some “neck beard” hyped up on Mt Dew, but I suppose if the speed of the code/comments far exceeds what is humanly possible, you can infer it's a bot.

He further went on to describe how valuable bug bounty programs, which normally allow white hat (Good guys) hackers to report bugs and security exploits in exchange for an incentive like cash, are being spammed with AI slop as well.

This one is likely worse than the open source problem because there is an additional financial incentive.

I have followed Jeff Geerling for a while now, and he is not the type to sensationalize or otherwise scream that the sky is falling.

These are real problems; this is not to say that there is no value in AI or anything like that.

I am just pointing out some real-world events happening now and pointing out that important infosec programs shutting their doors will likely have a significant effect on our industry… not a good one, I am afraid.

What do you think?