David Gerard2d ago

currently playing "where the fuck's the beef" with claude mythos amongst all the proclamations of THIS IS IT. the openbsd "zero day" does not AIUI in fact appear to be one, for example - just a non-exploitable bug. what about these much hyped claims checks out?

EDIT: so far finding *none* of this checks out at all. it's the loudest AI hype this week and it seems to be a nothing burger. still open to non-nothings, of course.

using a chatbot as an expensive fuzzer, fine i guess. i would actually like price numbers on what finding each of these bugs would have cost. i saw some uncited cost numbers in chats, but not the sources for those cost numbers.

Show threadSimon newslttrs.com
@davidgerard in addition to the financial costs I’d be interested in the false positive rate. I suspect it’s something akin to throwing a dart at a printout of the code.
Apr 9 at 1:53pmWeb
Show threadDavid Gerard1d ago

@spzb oh anthropic admits that! they can't tell which bugs are real, so they send a pile of shit to humans to pick through

https://red.anthropic.com/2026/mythos-preview/

> We triage every bug that we find, then send the highest severity bugs to professional human triagers to validate before disclosing them to the maintainer.

Claude Mythos Preview \ red.anthropic.com

Show threadAnthony1d ago
@[email protected] @[email protected] Oh, so it's another ruse to sucker people into training their AI for them for no pay?
Show threadDavid Gerard1d ago
@abucci @spzb now you might think that
Show threadStephen 🌈 (he/him)1d ago
@davidgerard @spzb Meanwhile they begin to get so lazy they stop looking for the stuff the AI can’t find
Show threadSimon newslttrs.com1d ago
@davidgerard “Ford, there’s an infinite number of monkeys outside that want to talk to us about some code vulnerabilities they’ve found out”
Show threadArtemis1d ago
@davidgerard @spzb So, more Actually Indians in the AI pipeline.