For example if a device manufacturer provides drivers for linux, or a software developer has a version for Arch, but it's missing a pkg build or config file, most users simply won't be ably to figure out how to manually install it and CORE or Flathub probably don't have any official packages for it.
There are millions of such niche cases like this every day.
Let it be known that the first person to call it was actually Sam Altman when OpenAI's paper on AI Scaling Laws in 2020 subtly showed that the diminishing returns will stop showing improvement with infinite power, compute time, and data before 94% accuracy is reached.
Humans generally don't hallucinate libraries or documentation. If there is a bug or error on a human maintaine repo the human in charge will generally know what went wrong and how to fix it, the AI will just gaslight your ass because the AI has no idea.
No, humans make less mistakes. Less. That's the key here, statistical models are trained on human data so by pure logic can never, ever, under any circuimstance, reach 100% accuracy. With current understanding of LLMs with a focus on AI Scaling Laws, and more importantly of natural human language adaptation, they will never reach 94% accuracy with infinite power and infinite training. That's what the curve shows us in OpenAI's 2020 research paper on AI Scaling Laws and later Deepmind's paper correcting their math, that the diminishing returns will hit a limit far before convergence.
In addition to that, the AI also cannot detect subtle changes to established problems or any new unaccounted for variables, because they're a statistical model and not capable of actual thought. They also lack any sense of responsibility for their actions for the same reason.
You fucking sloppers always try to say "HuMAnS mAkE misTAKeS, TOO!" Yeah and the fucking slopbots are trained on those mistakes and make them again but worse.
My apologies but after talking with the team about finances the project got shelved. I am sorry if I got anybody's hopes up. I'll be sure to go check my email, now.
A few months before the windows incident they did the same thing to their Linux customers, so definitely can't blame that part on Windows. I think the real takeaway here is that bigger and more centralized is generally not better.
I bet something he didn't mention is he probably used a privacy distro on his personal device, and since Google no longer provides the Device Tree in ASOP it's left completely insecure, unable to update.
Crowdstrike as in the compant responsible for a global outage for machines using it including airports, hotels, fuelstations, banks, broadcasting, and manufacturing?
The company that accidentally made every impacted machine boot-loop because they accidentally added a whole bunch of empty lines of code to production?
I've proven the massive error and vulnerability rate of slopping, so until you can prove any other example was worse then the point stands. And Ox is very much a reliable source with the findings on the page regardless of if you can access the full study.
Yeah, it seems like these sort of problems aren't necesarily due to an insecure system like the AUR but moreso because of the target's publicity and popularity which is definitely the case with the rise of CachyOS.
I'm not real clear on if this is the case but you could try:
Have you installed or updated from the AUR before, such as with Yay? Specifically after June 5th? If so, check this list or the post above for a list of compromised packages. https://gr.ht/aur_pkg_list.txt
Maybe pacman -Q | grep atomic-lockfile because that appears to be what the threat actor is installing but I'm not really sure if that's how it works...?
EDIT: If you really want to play it safe then you could try yay -R $(pacman -Qmq) to remove every aur package and wait out the storm, just be careful to backup important files.
For example if a device manufacturer provides drivers for linux, or a software developer has a version for Arch, but it's missing a pkg build or config file, most users simply won't be ably to figure out how to manually install it and CORE or Flathub probably don't have any official packages for it.
There are millions of such niche cases like this every day.