[ktm5j]

I've heard that argument before, but has that actually been demonstrated? Ability to look at the code (especially in the age of AI) means that security researchers aren't the only ones who can look for bugs. For example, look at the bugs like copyfail that AI has recently uncovered in the Linux kernel.

[thesuitonym]

If an AI can find a vulnerability for a hacker, it will also find that vulnerability for a security researcher, so that point is moot.

There exists a danger that very good hackers will be able to find vulnerabilities by looking through the source code, but very good hackers find vulnerabilities without source code anyway.

Consider the following: Would you rather walk down a busy street hundreds of other people walking by, including police officers, good samaritans, and maybe people who want to do you harm, or would you rather walk down a dark ally with only four people in it?

[colordrops]

You are grasping for straws. No one said open source is perfect. But it's just an obvious fact that open source is going to be easier to audit than closed source.

[ktm5j]

No, I'm asking questions...... not pretending I have answers.

[beepbooptheory]

But isn't that their point? In the age of AI, maybe being "easier to audit" is as much a risk than an assurance? I'm not sure I agree, but it is interesting to mull over. Further, either way, your tone and response is not very charitable, to say the least. From the outside, you are the only one blustering and grasping here. Not everything needs to be so antagonistic maybe?

[colordrops]

Reverse uno. The same AI can be used to fix the holes in the open source code. And a LOT more AI review by benevolent parties is gonna hit that open source code than the closed source.

[ktm5j]

Okay guys, I'm being downvoted for asking questions? Let's be real, OSS has not been proven to be more secure. If you think otherwise then please back it up, I'm okay with being proven wrong.