hamburgheftig@feddit.org to Technology@lemmy.worldEnglish · 2 days agoFed up with vibe coders, dev sneaks data-nuking prompt injection into their code - Ars Technicaarstechnica.comexternal-linkmessage-square125linkfedilinkarrow-up1589arrow-down19
arrow-up1580arrow-down1external-linkFed up with vibe coders, dev sneaks data-nuking prompt injection into their code - Ars Technicaarstechnica.comhamburgheftig@feddit.org to Technology@lemmy.worldEnglish · 2 days agomessage-square125linkfedilink
minus-squarethis@sh.itjust.workslinkfedilinkEnglisharrow-up19arrow-down1·1 day agoTrue, but I would think developers should at least be following it with the code they’re actually working on.
minus-squareAwesomeLowlander@sh.itjust.workslinkfedilinkEnglisharrow-up3arrow-down4·17 hours agoIt’s an imported library, since when are devs expected to be inspecting the source code of every library they import?
minus-squareyessikg@fedia.iolinkfedilinkarrow-up1·2 hours agoSince forever? Don’t you do security audits on the libraries you use?
minus-squaresakuraba@lemmy.mllinkfedilinkEnglisharrow-up3·7 hours agoit used to be a thing but javascript npm brainrot happened
True, but I would think developers should at least be following it with the code they’re actually working on.
It’s an imported library, since when are devs expected to be inspecting the source code of every library they import?
Since forever? Don’t you do security audits on the libraries you use?
it used to be a thing but javascript npm brainrot happened