hahaha, a library we use (not maintain, entirely third-party dependency) got some spurious CVEs reported by an LLM tool. incredible.
this shit totally will put programmers out of business lmfao
I can't even tell what their results mean
like if im reading that right they let chatgpt read a bunch of github repos and see if it says if there's a null pointer exception
yeah im not convinced the cves are real either tbqh
The CVE system is already extremely broken and actively counterproductive to a responsible understanding of security.