He should be promoted to management! Specifically head of cyber security! They also love security by obscurity and knowing nothing about what they are doing!
this post was submitted on 17 Mar 2025
1340 points (99.8% liked)
Programmer Humor
35561 readers
236 users here now
Post funny things about programming here! (Or just rant about your favourite programming language.)
Rules:
- Posts must be relevant to programming, programmers, or computer science.
- No NSFW content.
- Jokes must be in good taste. No hate speech, bigotry, etc.
founded 5 years ago
MODERATORS
ELI5?
Man uses AI to make software. Man learns hard way that AI doesn't care about stuff like security.
load more comments
(1 replies)
Managers hoping genAI will cause the skill requirements (and paycheck demand) of developers to plummet:
Also managers when their workforce are filled with buffoons:
ITT: "Haha, yah AI makes shitty insecure code!"
“Come try my software! I’m an idiot, so I didn’t write it and have no idea how it works, but you can pay for it.”
to
“🎵How could this happen to meeeeee🎵”
AI is yet another technology that enables morons to think they can cut out the middleman of programming staff, only to very quickly realise that we're more than just monkeys with typewriters.
To be fair.. If this guy would have hired a dev team, the same thing could happen.
load more comments
(2 replies)
load more comments
(2 replies)
If I were leojr94, I’d be mad as hell about this impersonator soiling the good name of leojr94—most users probably don’t even notice the underscore.
2 days, LMAO
hahahahahahahahahahahaha
But I thought vibe coding was good actually 😂
Vibe coding is a hilarious term for this too. As if it's not just letting AI write your code.
Reminds me of the days before ai assistants where people copy pasted code from forums and then you’d get quesitions like “I found this code and I know what every line does except this ‘for( int i = 0; i < 10; i ++)’ part. Is this someone using an unsupported expression?”
I’m less knowledgeable than the OOP about this. What’s the code you quoted do?
for( int i = 0; i < 10; i ++)
This reads as "assign an integer to the variable I and put a 0 in that spot. Do the following code, and once completed add 1 to I. Repeat until I reaches 10."
Int I = 0 initiates I, tells the compiler it's an integer (whole number) and assigns 0 to it all at once.
I ++ can be written a few ways, but they all say "add 1 to I"
I < 10 tells it to stop at 10
For tells it to loop, and starts a block which is what will actually be looping
Edits: A couple of clarifications
@[email protected] posted a detailed explanation of what it’s doing, but just to chime in that it’s an extremely basic part of programming. Probably a first week of class if not first day of class thing that would be taught. I haven’t done anything that could be considered programming since 2002 and took my first class as an elective in high school in 2000 but still recognize it.
It's a standard formatted for-loop. It's creating the integer variable i, and setting it to zero. The second part is saying "do this while i is less than 10", and the last part is saying what to do after the loop runs once -‐ increment i by 1. Under this would be the actual stuff you want to be doing in that loop. Assuming nothing in the rest of the code is manipulating i, it'll do this 10 times and then move on
I would also add that usually i will be used inside the code block to index locations within whatever data structures need to be accessed. Keeping track of how many times the loop has run has more utility than just making sure something is repeated 10 times.
It’s a for loop. Super basic code structure.
load more comments
(6 replies)
Is the implication that he made a super insecure program and left the token for his AI thing in the code as well? Or is he actually being hacked because others are coping?
Doesn't really matter. The important bit is he has no idea either. (It's likely the former and he's blaming the weirdos trying to get in)
He told them which AI he used to make the entire codebase. I'd bet it's way easier to RE the "make a full SaaS suite" prompt than it is to RE the code itself once it's compiled.
Someone probably poked around with the AI until they found a way to abuse his SaaS
AI writes shitty code that's full of security holes, and Leo here has probably taken zero steps to further secure his code. He broadcasts his AI written software and its open season for hackers.
load more comments
(1 replies)
Nobody knows. Literally nobody, including him, because he doesn't understand the code!
Nah the people doing the pro bono pen testing know. At least for the frontend side and maybe some of the backend.
But the things doing the testing could be bots instead of human actors, so it may very well be that no human does in fact know.
Thought so too, but nah. Unless that bot is very intelligent and can read and humorously respond to social media posts by settings its fake domain.
Good point! Thanks for pointing that out.
load more comments
(2 replies)
rofl!
load more comments
(1 replies)
load more comments
(1 replies)
Bonus points if the attackers use ai to script their attacks, too. We can fully automate the SaaS cycle!
That is the real dead Internet theory: everything from production to malicious actors to end users are all ai scripts wasting electricity and hardware resources for the benefit of no human.
Seems like a fitting end to the internet, imo. Or the recipe for the Singularity.
This is the opposite of the singularity
It is a singularity, in the sense that it is an infinitely escalating level of suck.
load more comments
(2 replies)
Not only internet. Soon everybody will use AI for everything. Lawyers will use AI in court on both sides. AI will fight against AI.
load more comments
(5 replies)
load more comments
(1 replies)
load more comments
(3 replies)
load more comments
(1 replies)
"If you don't have organic intelligence at home, store-bought is fine." - leo (probably)
Two days later...