All articles tagged with #ai generated reports
Bug-bounty programs are being flooded with AI-generated, low-quality reports—Curl and Nextcloud have paused programs, and HackerOne reports a 76% surge in submissions with only about 25% legitimate—driving stricter checks and AI-assisted triage, as experts say AI will aid human researchers but not replace them.
Open-source tool curl is scrapping its vulnerability-bounty program after a surge of low-quality, AI-generated submissions, with founder Daniel Stenberg saying the team needs to protect their mental health; the move, effective at the end of the month, aims to stop the AI “slop” from flooding reports and distracting from real issues, though critics fear it reduces essential security disclosures.