alt Hacker News>any vulnerability in any software available for inspection is going to be instant public knowledge. Or at least public among anybody who matters.
Shouldn't this naturally lead to a state where all (new) code is vulnerability-free? If AI vulnerability detection friction becomes low enough it'll become common/forced practice to pre-scan code.
Replies
Hizonner • yesterday at 8:10 PM
> it'll become common/forced practice to pre-scan code.
You'd think.
But then you'd think people would do a lot of other things too. I hope, I guess.
The other danger is that "the cloud" may become even more overwhelmingly dominant. Which of course has its own large security costs.
thinking_cactus • today at 7:23 AM
Remeber (to you both) extrapolation is a perilous business.
Obligatory xkcd https://xkcd.com/605/
Finding a vulnerability by looking at the diff that fixed it is very different than just looking through the code.