Since I'm no longer nice, it wastes about 5 minutes of my time per email and at the moment it's just a couple per month, so it's not that bad (yet.)

The increase in people that delude themselves that they are cybersecurity experts because they made an AI persona is the most worrying aspect of this. Especially since at the same time they themselves don't understand how awfully bad the code is their AI personas spit out.

I had no idea this was even a thing until I read this blog, or like, I kinda imagined it, but didn’t really know. Developers are wasting precious time for no good reason. Now the innocent gotta pay for the guilty! 

0xbitcoiner

We also received AI slop as responsible disclosures on Github

Death by a Thousand Slops | cURL and libcurl

Can attest to the problem: two of my security mailing lists have received slop-only in 2025 thus far. The first few I was nice to the senders, but not anymore.