Curl will end its bug bounty program by the end of January due to excessive AI generated reports ~comp security.cyber open source Link 63 votes
Death by a thousand slops | daniel.haxx.se ~comp open source security.cyber Article 999 words 36 votes
CVE-2020-19909 is everything that is wrong with CVEs (false bug report for curl) ~comp security Article 1001 words, published Aug 25 2023 25 votes