this post was submitted on 05 Jun 2026
60 points (86.6% liked)

Opensource

6197 readers
85 users here now

A community for discussion about open source software! Ask questions, share knowledge, share news, or post interesting stuff related to it!

CreditsIcon base by Lorc under CC BY 3.0 with modifications to add a gradient


founded 2 years ago
MODERATORS
pylapp@programming.dev
60
Given the recent uproar about AI usage in rsync a PSA: maintainers owe you nothing (mikemcquaid.com)
submitted 2 days ago by onlinepersona@programming.dev to c/opensource@programming.dev
38 comments fedilink hide all child comments
 

For those outside the loop: rsync starting using AI agents to handle the influx of AI security reports to improve the test suite and fix bugs. It introduced a few CVEs and people who never contributed in any way started firing shots at the maintainer.

rsync maintainer's response to the people getting pissy about his usage of AI: medium and the related post on programming.dev

you are viewing a single comment's thread
view the rest of the comments
[–] poVoq@slrpnk.net 10 points 2 days ago (1 children)

They could have just refused merging slop. Rsync didn't need these "contributions".

[–] Zos_Kia@jlai.lu 2 points 14 hours ago (1 children)

What about the 6 critical security bugs he fixed in that release. Didn't rsync need those "contributions"?

[–] poVoq@slrpnk.net 1 points 9 hours ago (1 children)

The "critical" bugs that I have recently seen being found by AI were all extremely unlikely to be exploitable under realistic assumptions 🤷

[–] Zos_Kia@jlai.lu 0 points 6 hours ago (1 children)

Which of the CVEs in question are you referring to?

[–] poVoq@slrpnk.net 1 points 5 hours ago

The ones in Nginx and the Linux kernel.