Today in InfoSec Job Security News:
Uncategorized
144
Posts
111
Posters
11
Views
-
@GossiTheDog protip, go to https://github.com/claude and click on Block User and you will see a helpful warning banner on any github repo that contains code from it.
@joeyh @GossiTheDog Works like a g--d--- charm. juanfont/headscale has claude commits if anyone wants a test case.
-
Today in InfoSec Job Security News:
I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.
So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.
https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc
As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.
@GossiTheDog that’s quite a bit lower than I would have expected
-
Today in InfoSec Job Security News:
I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.
So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.
https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc
As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.
@GossiTheDog So Claude is "Jia Tan as a Service"?
-
@GossiTheDog @deliberately_me oh goodie. Our global repository has been compromised by a worm.
@GossiTheDog @deliberately_me or actually a nearly infinite number of worms.
-
Today in InfoSec Job Security News:
I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.
So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.
https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc
As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.
@GossiTheDog Is Claude a real person
-
Today in InfoSec Job Security News:
I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.
So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.
https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc
As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.
@GossiTheDog Holy yikes.
-
Today in InfoSec Job Security News:
I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.
So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.
https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc
As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.
@GossiTheDog may this boost contribute to the fall of the AI bubble
-
@GossiTheDog protip, go to https://github.com/claude and click on Block User and you will see a helpful warning banner on any github repo that contains code from it.
@joeyh @GossiTheDog having checked this, i'm finding that on various repos it gets listed as having contributed, but then seemingly doesn't show up in any commits, issues or prs when you search for it. what's going on?
-
Today in InfoSec Job Security News:
I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.
So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.
https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc
As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.
@GossiTheDog it's been fun digging through this pile of shit
-
Today in InfoSec Job Security News:
I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.
So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.
https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc
As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.
@GossiTheDog I wish more of these fucking vibe coding agent bullshits used the co-authored-by tag, so that
- I can block them
- you can search for shit like this
-
@GossiTheDog
This is more and more feels like a coordinated attack on FOSS by the big software.@hittitezombie @GossiTheDog I could totally see that. Like they're trying to get this Claude to mess up the FOSS projects' code enough that it'll force some people back into the arms of Big Software.
-
@zarchasmpgmr @da_667 @GossiTheDog Or msybe introduce 20 vulnerabilities and show off by then finding 10 of them giving a false sense of competence.
@cxj @zarchasmpgmr @da_667 @GossiTheDog 2016 AI thinkers: AI cannot possibly take over the world, because there just aren't enough security holes to give you root on all nuclear submarines in 30 seconds
2026 AI thinkers: hey AI, can you add security holes to my nuclear submarines?
-
Today in InfoSec Job Security News:
I was looking into an obvious ../.. vulnerability introduced into a major web framework today, and it was committed by username Claude on GitHub. Vibe coded, basically.
So I started looking through Claude commits on GitHub, there’s over 2m of them and it’s about 5% of all open source code this month.
https://github.com/search?q=author%3Aclaude&type=commits&s=author-date&o=desc
As I looked through the code I saw the same class of vulns being introduced over, and over, again - several a minute.
Oh, man. Oh, oh, oh.
But as soon as somebody blocks every PR from AI or created with AI support the wailing starts.
-
@joeyh @GossiTheDog having checked this, i'm finding that on various repos it gets listed as having contributed, but then seemingly doesn't show up in any commits, issues or prs when you search for it. what's going on?
@0x9E01 @GossiTheDog I've seen in it a repo that had only Co-Authored-By: Claude, which a usual commit search won't find.
It may also flag repos that have a PR that got edited by the bot along the way, I'm not sure.
-
undefined swelljoe@mas.to shared this topic
Gli ultimi otto messaggi ricevuti dalla Federazione
-
-
Did this "militant" directly initiate violence?
-
Fuori i nomi! Vojo la lista de staggente che trama contro er governo e l'idea de stato votata democraticamente da laggente
Ah no, mica parlo de massoneria deviata...
Vojo sapé chi ha donato paa campagnia der NO ar referendum
-
@peterkotrcka divertiti e goditi la giornata!
-
Oggi eclissi di Sole nell'emisfero australe. Sarà anulare in alcune zone dell'Antartide
https://www.timeanddate.com/eclipse/solar/2026-february-17
-
@runoutgroover Exactly.
-
@musicvsartstuff
Welcome to the club. 💪🏻
-
Nuova prova generale del lancio della missione Artemis II verso la Luna. Le attività inizieranno alle 0.40 italiane e si concluderanno nella notte italiana fra giovedì e venerdì. In base all'esito la NASA deciderà quando partire. Prima data utile il 6 marzo
https://www.nasa.gov/blogs/missions/2026/02/16/nasa-eyes-next-wet-dress-rehearsal-for-artemis-ii/
