When LLMs find all the exploits without the source code, they should find them even easier worth the code, no?