Hacker News new | ask | show | jobs
by jbergknoff 803 days ago
> 10. The FOSS axiom "More Eyes On The Code" works, but only if the "eyes" are educated.

One thing that could help with this is if somebody points an LLM at all these foundational repositories, prompted with "does this code change introduce any security issues?".
2 comments
Osiris 803 days ago
Not sure why an LLM would be better than existing static analysis tools. Many projects I have worked on run static vulnerability analysis on PRs.
link
kqr 803 days ago
I found the black hat!
link