• 0 Posts
  • 7 Comments
Joined 6 months ago
Cake day: October 19th, 2024
  • adminofoz@lemmy.cafetoProgrammer Humor@programming.devGit, invented in 2005. Programmers on 2004:English
    1·
    10 days ago

    Pen Tester here. While i don’t focus on LLMs, it would be trivial in the right AI designed app. In a tool-assist app without a human in the loop as simple as adding to any input field.

    && [whatever command you want]] ;

    If you wanted to poison the actual training set in sure it would be trivial, but It might take awhile to gain some respect to get a PR accepted, but we only caught an upstream attack on ssh due to some guy who feels the milliseconds of a ssh login sessions. Given how new the field is, i don’t think we have developed strong enough autism to catch this kind thing like in SSH.

    Unless vibe coders are specifically prompting chatgpt for input sanitization, validation, and secure coding practices then a large portion of design patterns these LLMs spit out are also vulnerable.

    Really the whole tech field is just a nightmare waiting to happen though.

  • adminofoz@lemmy.cafetoPolitical Memes@lemmy.worldJill Stein’s campaign manager: “Yeah, we are the bad guys, actually”English
    11·
    2 months ago

    My position is that Israel hasnt stopped their genocide.

    A one month temporary pause in a 50+ year attempt to eradicate a people is a very early celebration party. Apparently, it isnt enough to stop US political parties and their loyalist from trying to score points off of it though.

    Or maybe you think only israels most recent action was genocidal. In which case sure. All hail [insert your favorite political leaders] glorious wisdom!

    the people who abstained from voting or protest voted against Kamala are rubes who allowed a felon fascist racist to take control of the US?

    I think you may spend too much time deep in culture wars.