https://falcao.org/tags/cve/Recent content in Cve on Danilo Falcão da SilvaHugoen-usSat, 23 May 2026 10:00:00 -0300https://falcao.org/posts/ai-bug-discovery-revolution/Sat, 23 May 2026 10:00:00 -0300https://falcao.org/posts/ai-bug-discovery-revolution/<p>On May 18, 2026, Linus Torvalds called the Linux kernel security mailing list <strong>&ldquo;almost entirely unmanageable.&rdquo;</strong> The reason: a flood of AI-generated bug reports. The reaction was predictable — ban AI, blame researchers, declare the tools aren&rsquo;t ready.</p> <p>I <a href="https://falcao.org/posts/ai-bug-reports-open-source/">wrote about the maintenance crisis last week</a> and I think that framing misses the deeper story. The problem is not that AI is generating too many reports. <strong>The problem is that the code was more broken than we thought, and for twenty years nobody had the tools to look at it properly.</strong></p>