"mythos is too dangerous for the general public"

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 05:43:48 GMT

ahltorp@mastodon.nu — Wed, 10 Jun 2026 05:43:48 GMT

@ClickyMcTicker @drewdaniels @jenniferplusplus Curl is still getting a firehose of actual vulnerability reports (as reported by Daniel Stenberg) through normal channels, so it turns out Mythos is worse than these other tools people are using.

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 05:32:50 GMT

thibaultmol@en.osm.town — Wed, 10 Jun 2026 05:32:50 GMT

@jenniferplusplus but but but, it's fine. They fixed it. They made it more safe so that it can't do the things they were worried about.
And we all know that llm's famously can't be tricked into doing things they're not supposed to....

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 04:44:45 GMT

toriver@mas.to — Wed, 10 Jun 2026 04:44:45 GMT

@jenniferplusplus Yeah, it was marketing. In 2019 it was OpenAI that said GPT-2 was too powerful to be released.

Like how Elon is out there making it sound like SpaceX is going to recreate Star Trek right before the IPO. Pure bull.

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 04:19:26 GMT

clickymcticker@hachyderm.io — Wed, 10 Jun 2026 04:19:26 GMT

@drewdaniels @jenniferplusplus “This is only natural of course since the first tools we ran had many more and easier bugs to find. As we have fixed issues along the way, finding new ones are slowly becoming harder. “

I’m curious as to how well it would do at finding and highlighting those fixed bugs, perhaps on an old version of the repo.

Alas, overhyped like all things AI.

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 03:02:43 GMT

drewdaniels@mastodon.online — Wed, 10 Jun 2026 03:02:43 GMT

@jenniferplusplus I appreciate your posts about this.

Here’s an example of Mythos finding 1 security bug in Curl https://daniel.haxx.se/blog/2026/05/11/mythos-finds-a-curl-vulnerability/

I use this when people talk about how scary Mythos is. It’s a great detailed analysis.

This is a year of increased, real reported vulnerabilities. AI has played a part in that, though it’s not clear to me if it did more than encourage more people to look.

A related sad thing is hearing about useful tools like Coverity starting to get neglected.

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 02:43:56 GMT

jenniferplusplus@hachyderm.io — Wed, 10 Jun 2026 02:43:56 GMT

@mirth "great news! If it sucks, that was on purpose!"

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 02:42:45 GMT

jenniferplusplus@hachyderm.io — Wed, 10 Jun 2026 02:42:45 GMT

@atax1a calling for an industry-wide freeze on model training because all the slop companies are terrible at running a cartel and the only way they survive the year is to stop shoveling money into that particular incinerator but they all refuse to coordinate on it

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 02:40:08 GMT

mirth@mastodon.sdf.org — Wed, 10 Jun 2026 02:40:08 GMT

@jenniferplusplus From the bits I've read they've put an aggressive filter in front of the model not only for "safety" but also to make it downgrade requests that appear to be from other labs building models. Entirely self-serving, but somewhat consistent with their messaging.

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 02:38:47 GMT

atax1a@infosec.exchange — Wed, 10 Jun 2026 02:38:47 GMT

@jenniferplusplus calling for an industry wide freeze on model training because all of the slop companies are existentially cringe

Reply to "mythos is too dangerous for the general public" on Wed, 10 Jun 2026 02:36:58 GMT

jenniferplusplus@hachyderm.io — Wed, 10 Jun 2026 02:36:58 GMT

Oh, sorry, I forgot the part where, like, 5 days ago anthropic was calling for an industry-wide freeze on model training because these things are just too scawy 🫣