[motbus3]

We learned from the past litellm security incident that there are tons of compromised/fake GitHub stars (which was known from the past due to the star farms)

I don't see vibe coders trying to push PRs in good faith in a old emulator. Could it be that the sheer amount of PRs and eventually a bad PR in the middle is being used to compromise repositories?

[sunaookami]

It's for their CV's

[motbus3]

Does it really count? Honest question.

I mean, if I interview a candidate who put such thing on the CV, it wouldn't matter, but if it did, I would make 300% sure to ask him all the ins and outs. I think it would be plain stupid to expose that you didn't do that instead of showing smaller collaboration that you completely understand

[sunaookami]

>I would make 300% sure to ask him all the ins and outs

In a healthy job market this would be the norm, yes.