1
Security Bug Bounty Program Paused Due to Loss of Funding
Node.js安全赏金因外部资金终止暂停,影响开发者社区安全贡献积极性。
2
We are retiring our bug bounty program
Turso因AI生成垃圾信息泛滥,无奈终止漏洞赏金计划,折射AI对安全社区的冲击。
Article URL: https://turso.tech/blog/the-wonders-of-ai Comments URL: https://news.ycombinator.com/item?id=48148391 Points: 352 # Comments: 279
3
Curl maintainer: AI security reports are no longer slop
Curl维护者亲述AI垃圾安全报告消失,项目重新开放后迎来更高质量的“混沌时期”。
Article URL: https://daniel.haxx.se/blog/2026/04/22/high-quality-chaos/ Comments URL: https://news.ycombinator.com/item?id=48164849 Points: 5 # Commen…
4
Bug bounty businesses bombarded with AI slop
AI生成的虚假漏洞报告泛滥,Bugcrowd三周内报告量暴增四倍,Curl被迫暂停赏金项目。
"Never-ending" AI slop strains corporate hacking reward schemes.
5
Raising the bar: Quality, shared responsibility, and the future of GitHub’s bug bounty program
GitHub重新定义漏洞赏金计划,从质量到共同责任,为安全社区树立新标杆。这份基于实战的思考,值得每一个安全从业者细读。
We're updating our bug bounty program standards to prioritize quality submissions, clarify shared responsibility boundaries, and evolve how we reward …