This is bad.
Uncategorized
149
Posts
33
Posters
0
Views
-
I'm gonna be real with folks here. I fucked up, and bad, with my participation in the open-slopware list. As a result, I'm not the right person to do it, but there has to be some kind of accounting for what damage AI is doing to open source.
For all the whinging about "supply chains" over the past few years, it *is* a problem when your code suddenly depends on AI, even if only indirectly.
Part of the problem with doing so is.... well, now what? It's not like a Python project can just... stop being a Python project?
But I think it's important to at least understand the scope of the problem.
-
@xgranade These are very much not fergalicious vibes. :/ Now I'm curious what they used Claude for. *runs some diffs*
@theorangetheme @xgranade *each time I see a diff that _doesn't_ have AI contributions*
“Fergalicious diff”
-
@xgranade These are very much not fergalicious vibes. :/ Now I'm curious what they used Claude for. *runs some diffs*
@theorangetheme @xgranade here are the commits on `main` where it's explicitly a co-author:
(Edit: I missed a few commits because I hadn't pulled
)```
$ git log --oneline -i --grep "Co-authored-by: Claude.*anthropic\.com"
300de1e98ac gh-86519: Add prefixmatch APIs to the re module (GH-31137)
ac8b5b68900 gh-143650: Fix importlib race condition on import failure (GH-143651)
9b8d59c136c gh-72798: Add mapping example to str.translate documentation (#144454)
34e5a63f145 gh-141444: Replace dead URL in urllib.robotparser example (GH-144443)
59f247e43bc gh-115952: Fix a potential virtual memory allocation denial of service in pickle (GH-119204)
5b1862bdd80 gh-87512: Fix `subprocess` using `timeout=` on Windows blocking with a large `input=` (GH-142058)
cc6bc4c97f7 GH-134453: Fix subprocess memoryview input handling on POSIX (GH-134949)
532c37695d0 gh-137134: Update SQLite to 3.50.4 for binary releases (GH-137135)```
-
@theorangetheme @xgranade *each time I see a diff that _doesn't_ have AI contributions*
“Fergalicious diff”
@reillypascal @xgranade Thank you for the laugh today hehe.
-
@xgranade These are very much not fergalicious vibes. :/ Now I'm curious what they used Claude for. *runs some diffs*
-
@theorangetheme @xgranade here are the commits on `main` where it's explicitly a co-author:
(Edit: I missed a few commits because I hadn't pulled
)```
$ git log --oneline -i --grep "Co-authored-by: Claude.*anthropic\.com"
300de1e98ac gh-86519: Add prefixmatch APIs to the re module (GH-31137)
ac8b5b68900 gh-143650: Fix importlib race condition on import failure (GH-143651)
9b8d59c136c gh-72798: Add mapping example to str.translate documentation (#144454)
34e5a63f145 gh-141444: Replace dead URL in urllib.robotparser example (GH-144443)
59f247e43bc gh-115952: Fix a potential virtual memory allocation denial of service in pickle (GH-119204)
5b1862bdd80 gh-87512: Fix `subprocess` using `timeout=` on Windows blocking with a large `input=` (GH-142058)
cc6bc4c97f7 GH-134453: Fix subprocess memoryview input handling on POSIX (GH-134949)
532c37695d0 gh-137134: Update SQLite to 3.50.4 for binary releases (GH-137135)```
@SnoopJ @theorangetheme There's a few more that list it in the PR thread but that don't list it as a co-author. Still, I agree, it's a fairly limited problem so far. My worry is that I don't see any mechanism for keeping that scope limited going forward.
-
@SnoopJ @theorangetheme There's a few more that list it in the PR thread but that don't list it as a co-author. Still, I agree, it's a fairly limited problem so far. My worry is that I don't see any mechanism for keeping that scope limited going forward.
@xgranade @theorangetheme yea I didn't mean to minimize the impact, just wanted to share the cantrip I've been using to check this when I run into the same thing
-
@ireneista Especially because you need to also fork the whole governance model around it.
-
@SnoopJ @theorangetheme There's a few more that list it in the PR thread but that don't list it as a co-author. Still, I agree, it's a fairly limited problem so far. My worry is that I don't see any mechanism for keeping that scope limited going forward.
-
@xgranade @theorangetheme yea I didn't mean to minimize the impact, just wanted to share the cantrip I've been using to check this when I run into the same thing
@SnoopJ @theorangetheme No, absolutely. I see this as the leading indicator rather than the damage itself, if that makes sense?
I keep using the term "AI-vulnerable" to try and point to that there isn't necessarily an actual direct impact, so much as a dramatically increased vulnerability surface area.
-
@ireneista Especially because you need to also fork the whole governance model around it.
@xgranade @ireneista "do you have five million dollars of disposable income to fund an alternative to the PSF" is a good place to start, if you want to frame it as a "hostile fork" situation. the only solution is to get involved in the messy process of politics and governance and try to figure out a way to negotiate a durable peace
-
@xgranade @ireneista "do you have five million dollars of disposable income to fund an alternative to the PSF" is a good place to start, if you want to frame it as a "hostile fork" situation. the only solution is to get involved in the messy process of politics and governance and try to figure out a way to negotiate a durable peace
@xgranade @ireneista unless you do have $5MM++ in which case, uh, cool, very happy for you
-
@xgranade @ireneista "do you have five million dollars of disposable income to fund an alternative to the PSF" is a good place to start, if you want to frame it as a "hostile fork" situation. the only solution is to get involved in the messy process of politics and governance and try to figure out a way to negotiate a durable peace
@glyph @ireneista One of those domino memes that starts with Calibre cutting a new release and topples into "Cassandra Granade runs for PSF Board."
I just seriously do not want to. But I agree, getting into the messy politics is the only way forward with Python in particular.
-
@cap_ybarra @xgranade @sparks they do not take fash money, but they seem to be happily using a machine that is intrinsically inseparable from fash values anyway...
-
@theorangetheme @xgranade I don't want to sell CPython's review process and test suite short here, nor the high quality of the work that Serhiy and Gregory do on the core. I don't subscribe to the theory that it's automatically bad work on technical merit because of the tools.
But it *does* carry the taint of corporate influence, exposure to financial instability, and ethical/aesthetic unpleasantness, and I find that very regrettable.
-
@theorangetheme @xgranade I don't want to sell CPython's review process and test suite short here, nor the high quality of the work that Serhiy and Gregory do on the core. I don't subscribe to the theory that it's automatically bad work on technical merit because of the tools.
But it *does* carry the taint of corporate influence, exposure to financial instability, and ethical/aesthetic unpleasantness, and I find that very regrettable.
@theorangetheme I do agree with @xgranade that it's a leading indicator, especially if the scope of use grows…
-
@cap_ybarra @xgranade @sparks they do not take fash money, but they seem to be happily using a machine that is intrinsically inseparable from fash values anyway...
-
@theorangetheme I do agree with @xgranade that it's a leading indicator, especially if the scope of use grows…
@theorangetheme @xgranade and possibly a compromise of the Code of Conduct, if Anthropic drops their commitment to not building weapons and turns Claude into another genocide machine at DOD's behest, as it seems they would like to/are being pressured to do.
(that ship has probably sailed on account of e.g. using GitHub in the first place)
-
@ireneista If there's any monolithic overly centralized dependency that makes sense to take on, it's the language itself.
It would have been nice if alternative implementations like PyPy, IronPython, and Jython could have taken off, but extension modules are just too important to leave out.
-
This is bad. This is very, very bad.
I'm not trying to pick on Python here, I pick it because Python is something I'm actively using, and so I have a vested interest in the project *not* being AI-vulnerable.
But it's not good, chat. It's very far from good, in fact.
[edited to add: see two addendums below, they're important context]
@xgranade you shouldn't really be judging the code authors, but rather the maintainers. writing code is usually easier than reviewing it.
Feed RSS
Gli ultimi otto messaggi ricevuti dalla Federazione
-
@discatte @ozzelot my plan at some point is to build a long fully custom control surface with rotary encoder jog wheels, each with a ring of WS2816B-2121 LEDs for indication and position marking. not hard to set that up for USB MIDI.
that'd then be a good starter project to get more familiar with the stack, ready for when I eventually build a custom grandMA3 Command Wing clone for onPC.
-
Ma chi è sta qui?! 😅
-
at some point I need to build myself a little USB MIDI thing that's just got a bunch of nice jogger knobs on it, maybe with a nice laser cut diffuser so I can have an LED ring around each one to mark positions.
-
-
@cwebber Depeche Mode voice: Your own... Parasocial... Media.
-
@support No, not yet. As I told @thedarktangent, we'll run some tests, but we can only do that once I've had all my time to test compatibility with all the other instances feddit.it currently works with.
@signorina37 @grabbi_it @informapirata@defcon.social @TCMBC @informapirata@mastodon.uno
-
@marcoboh @Uilebheist @ju
...per non parlare del diluente alla nitro. 😬
