logoalt Hacker News

puchatektoday at 7:05 AM1 replyview on HN

Approaching the maintainers would be ideal but time-consuming. Disclosing it like this is neutral I guess. Better than selling it in the darknet.

I do wonder though: if you can tell the AI to search for vulns, can't you also tell it to contact the right maintainer for each one found?


Replies

tostitoday at 4:33 PM

Unfortunately, yes.