Linux kernel maintainer reports sudden shift in AI-generated bug report quality
Greg Kroah-Hartman, a long-term Linux kernel maintainer, reports a significant change in AI-generated bug reports for the Linux kernel. About a month ago, reports transitioned from what he calls 'AI slop'—obviously wrong or low-quality security reports—to legitimate, useful findings.
The inflection point
Kroah-Hartman notes that 'something happened a month ago, and the world switched. Now we have real reports.' This shift isn't limited to the Linux kernel—he says all open source projects are seeing similar legitimate AI-generated reports. Security teams across major open source projects are informally discussing this change, with everyone experiencing the same transition.
Impact on different projects
The Linux kernel team, being larger and more distributed, can handle the increased volume of reports. Kroah-Hartman states: 'For the kernel, we can handle it. We're a much larger team, very distributed, and our increase is real – and it's not slowing down.' However, he implies smaller projects have less capacity to absorb this sudden flood of plausible AI-generated bug reports.
AI's current role in kernel development
AI is currently showing up more as a reviewer and assistant than as a full author of Linux kernel code, though that line is starting to blur. Kroah-Hartman conducted his own experiment with AI-generated patches: 'I did a really stupid prompt. I said, 'Give me this,' and it spit out 60: 'Here's 60 problems I found, and here's the fixes for them.' About one-third were wrong, but they still pointed out a relatively real problem, and two-thirds of the patches were right.'
He notes that even the working patches still needed human cleanup, better changelogs, and integration work. For 'simple little error conditions, properly detecting error conditions,' AI could already generate dozens of usable patches today.
Tooling response
The increase in AI-generated reports has spurred integration of AI into the kernel's review infrastructure. A key tool is Sashiko, originally developed at Google and now donated to the Linux Foundation. Kroah-Hartman says: 'We need to be able to have an easy way to review some of these patches that come in ways that cut down on our load.' The tool is 'out there, running on almost all kernel patches' and publicly visible, with integration into review tools underway.
📖 Read the full source: HN AI Agents
👀 See Also
Anthropic Acquires Stainless for $300M+ — Now Owns Dominant MCP Server Generator
Anthropic bought SDK generator Stainless for $300M+. Stainless generates most production MCP servers from OpenAPI specs. The hosted product is winding down; new signups stopped Monday.
PS3 Emulator Devs Ask Devs to Stop Submitting AI-Generated PRs
RPCS3 maintainers have publicly requested users stop submitting pull requests generated by AI code agents, citing low quality and maintenance burden.
Maryland Residents Hit with $2B Grid Upgrade for Out-of-State AI Data Centers — State Files FERC Complaint
Maryland's Office of People's Counsel filed a FERC complaint against PJM Interconnection, which allocated $2 billion of a $22 billion grid upgrade to Maryland customers — costing residential users ~$345 each, primarily to benefit out-of-state AI data centers.
Taalas' HC1: Accelerating AI Inference with Custom Silicon
Taalas unveils the HC1 platform, providing the world's fastest, low-cost AI inference using model-specific hardware design. Achieves 17K tokens/sec on Llama 3.1 8B.