Open source project curl is sick of users submitting “AI slop” vulnerabilities

The curl project is facing a wave of security reports, some of which are AI-generated. Daniel Stenberg has expressed concern over the potential misuse of AI tools in crafting these reports, proposing verification and banning reporters who use such assistance. Additionally, an exploit leveraging stream dependency cycles in the HTTP/3 protocol stack could expose vulnerabilities like remote code execution. A report claiming to be AI-generated was made public after failing validation, drawing criticism for the lack of rigorous vetting processes.