惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

A
About on SuperTechFans
Cloudbric
Cloudbric
C
CERT Recently Published Vulnerability Notes
G
GRAHAM CLULEY
V
Vulnerabilities – Threatpost
C
Cisco Blogs
T
Tenable Blog
P
Privacy International News Feed
T
The Exploit Database - CXSecurity.com
I
Intezer
AWS News Blog
AWS News Blog
IT之家
IT之家
博客园 - 司徒正美
C
Cybersecurity and Infrastructure Security Agency CISA
博客园 - 【当耐特】
The Hacker News
The Hacker News
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Spread Privacy
Spread Privacy
S
SegmentFault 最新的问题
博客园 - Franky
人人都是产品经理
人人都是产品经理
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
V
Visual Studio Blog
C
CXSECURITY Database RSS Feed - CXSecurity.com
H
Hacker News: Front Page
Latest news
Latest news
Scott Helme
Scott Helme
腾讯CDC
宝玉的分享
宝玉的分享
大猫的无限游戏
大猫的无限游戏
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
A
Arctic Wolf
S
Securelist
雷峰网
雷峰网
The GitHub Blog
The GitHub Blog
Project Zero
Project Zero
Google DeepMind News
Google DeepMind News
P
Palo Alto Networks Blog
F
Fortinet All Blogs
Schneier on Security
Schneier on Security
云风的 BLOG
云风的 BLOG
Security Archives - TechRepublic
Security Archives - TechRepublic
The Last Watchdog
The Last Watchdog
WordPress大学
WordPress大学
MongoDB | Blog
MongoDB | Blog
L
LINUX DO - 最新话题
S
Schneier on Security
NISL@THU
NISL@THU
Jina AI
Jina AI
M
MIT News - Artificial intelligence

Hacker News - Newest: "AI"

AI can't read an investor deck AI as an attorney? Student uses ChatGPT, Gemini to sue UW over alleged racial discrimination Hacking MCP Servers in AI Systems – The Rug Pull: Tool Changes After Approval GitHub - MeepCastana/KubeezCut: Free Web based video editor GitHub - GenAI-Gurus/awesome-eu-ai-act: Curated tools, official sources, OSS, templates, and guides for EU AI Act compliance. Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Coming soon: 10 Things That Matter in AI Right Now DARPA built an AI to fact-check enemy weapons claims What explains heterogeneity in AI adoption? When AI Meets Muscle: Context-Aware Electrical Stimulation Promises a New Way to Guide Human Movements - Department of Computer Science AI Changed How We Build. It Did Not Change What Matters. Linux rules on using AI-generated code - Copilot is OK, but humans must take 'full responsibility for the… Meta spins up AI version of Mark Zuckerberg to engage with employees Code Mode: Let Your AI Write Programs, Not Just Call Tools | TanStack Blog GitHub - Delavalom/graft: Go framework for building AI agents. Type-safe tools, multi-provider (OpenAI, Anthropic, Gemini, Bedrock), zero vendor SDKs. India's TCS tops estimates, says new AI models did not dent services demand Gen Z's fading AI hype Strong feeling: we are in a folded AI reality GitHub - machinarii/total-recall-catalog: A reference catalog of latest knowledge retrieval, memory & RAG systems GitHub - mensfeld/code-on-incus: Give each AI agent its own isolated machine with root, Docker, and systemd. Active defense detects and stops threats automatically.. Quantization, LoRA, and the 8% Problem: Benchmarking Local LLMs for Production AI Iran war: We spoke to the man making Lego-style AI videos that experts say are powerful propaganda Powell, Bessent discussed Anthropic's Mythos AI cyber threat with major U.S. banks GitHub - immartian/bellamem: Persistent belief-graph memory for AI agents. Retrieves decisive context by importance — not recency, not RAG, not /compact. recursive-mode: The Repo-Native Operating System for AI Engineering After the attack on Sam Altman's home, will AI CEO's go on the offensive? The biggest advance in AI since the LLM Opus 4.6 vs GPT 5.4 One Prompt Unity World Generation Test “AI polls” are fake polls Client Challenge Can AI be a 'child of God'? Inside Anthropic's meeting with Christian leaders How to Switch AI Chatbots and Why You Might Want To GitHub - MattMessinger1/agentic_refund_guardrail: Safe refund policy layer for AI agents — Python + TypeScript. Same behavior, shared tests. Adam/papers/emergent_values_whitepaper.md at master · strangeadvancedmarketing/Adam Ask HN: How do you stop playing 20 questions with your AI coding tools How far can automation and AI support psychotherapy? - @theU GitHub - stagas/rtdiff: realtime git diff gui and AI-assisted commits A Mac Studio for Local AI — 6 Months Later A History of the Early Years of AI at the University of Edinburgh Why AI Coding Tools Still Feel Stuck on Localhost MSN AI Datacenters Are Becoming Strategic Targets twitter.com Penn Researchers Use AI to Surface Unreported GLP-1 Side Effects in Reddit Posts Show HN: MoodSense AI (ML and FastAPI and Gradio, Deployed on Hugging Face) Moodsense Ai - a Hugging Face Space by aman179102 AI models are terrible at betting on soccer—especially xAI Grok GitHub - xialeistudio/echoic GitHub - HimashaHerath/github-dev-wrapped: AI-powered weekly GitHub activity reports deployed to GitHub Pages GitHub - alejandrobalderas/claude-code-from-source: Architecture, patterns & internals of Anthropic's AI coding agent — reverse-engineered from source maps AI and Tech brief: Ireland ascendant GitHub - Titovilal/context0: Context0 - Never Surrender Training for a Marathon with an AI Coach: What Worked and What Didn't Cyber Pulse: Agentic Intel - Apps on Google Play I Built an AI PR Reviewer That Catches Bugs by Not Looking for Bugs Gen Z workers are so fearful AI will take their job they’re intentionally sabotaging their company’s AI rollout | Fortune How AI Is Reimagining the Game of Golf–For Both Players and Courses GitHub - nattergabriel/reseed: A CLI tool for managing and distributing agent skills across projects Is SVG the final frontier? My AI workflow evolved from prompts to a near-autonomous workflow MLSharp Help - 3DGS Viewer & Generator I put my cognitive field based AI's runtime on GitHub Is Numble the first AI-proof game? A3: Kubernetes for autonomous AI agent fleets | Emergent Principles Deepali Vyas ("The Elite Recruiter") GitHub - msmarkgu/RelayFreeLLM: A restful API designed to route user prompts to various AI model providers. Unionized ProPublica staff are on strike over AI, layoffs, and wages Unleashing the Advantage of Quantum AI We're heading for an AI-fueled 'dementia crisis,' brain scientist warns The AI-Assisted Breach of Mexico's Government Infrastructure [pdf] GitHub - stef41/lmscan: 🔍 Detect AI-generated text and fingerprint which LLM wrote it. Open-source GPTZero alternative. Zero dependencies, works offline. MSN GitHub - visionscaper/collabmem: Enabling long-term collaboration with Agentic AI - building up episodic and world model memory over time with in-context awareness We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs AI Code is Hollowing Out Open Source, and Maintainers are Looking the Other Way What leaked "SteamGPT" files could mean for the PC gaming platform's use of AI AI is the boss at this retail store. What could go wrong? GitHub - Wuzu11517/agentic-proxy: Local proxy meant to help reduce With Drones, Geophysics and ArtificiaI Intelligence, Researchers Prepare to Do Battle Against Land Mines A Single Operator, Two AI Platforms, Nine Government Agencies: The Full Technical Report 在 Steam 上购买 FriedrichAI: Offline AI 立省 10% GitHub - inevolin/resume-cli: Hit Claude usage limits? Resume any AI coding session elsewhere. Switch tools at zero friction. GitHub - atripati/ark: AI Runtime Kernel — a context operating system for AI agents. Eliminates tool bloat, loads only what’s needed, and gives LLMs their reasoning space back. How to Build a Secure AI PR Reviewer with Claude, GitHub Actions, and JavaScript This Startup Wants You to Pay Up to Talk With AI Versions of Human Experts Intel Arc Pro B70 Brings 32GB VRAM to Local AI for $949 WordPress 7.0: The Good, the AI, and the Still Missing AI on the couch: Anthropic gives Claude 20 hours of psychiatry IatroBench: Pre-Registered Evidence of Iatrogenic Harm from AI Safety Measures AI Agents Know About Supabase. They Don't Always Use It Right. The history and future of AI at Google, with Sundar Pichai Inside an AI‑enabled device code phishing campaign How Meta Used AI to Map Tribal Knowledge in Large-Scale Data Pipelines AI for Systems: Using LLMs to Optimize Database Query Execution Forecasting the Economic Effects of AI Introducing Tinker: Play with AI, bring your ideas to life AI sheds light on an ancient gaming mystery People really hate AI but not as much as Iran—or Democrats | Fortune What is an AI Product Engineer? Phoebe Gates wants her $185 million AI startup to succeed with 'no ties to my privilege or my last name': 'I have a chip on my shoulder' | Fortune
Stop trying to review AI's code faster: bet on rollback instead
sylvainkalac · 2026-05-06 · via Hacker News - Newest: "AI"

A few months ago at Rootly, an AI agent helped us migrate from our old feature flag system to a fancier third-party provider. The work was the kind of tedious, repetitive configuration agents handle well: mapping flags between systems, running the cutover, double-checking the wiring. It did all of it.

It also flipped the wrong flag in the wrong system.

A feature silently broken for hours in staging before we caught it. The agent wasn't bad at config, it was great at config. It just didn't know which provider we were actually using at that moment in the migration. Perfect competence. Incomplete context.

No code review would have caught this. The code the agent wrote was correct. The diff was clean. The tests passed. The failure was that all of the correct code was running against the wrong system, in a window where the system's state was intentionally inconsistent. That's a different shape of bug from the ones code review was built to catch… and it's the shape AI is producing in volume now.

I recently sat a panel moderated by Ian Sinnott, MTS at Anthropic, alongside Zhen Lu, co-founder & CEO at Runpod, and Eran Kampf, VP of Engineering at Twingate (formerly, co-founder and CTO at monday.com). We discussed how AI is shifting engineering challenges and how each of us is dealing with them.

Most AI incidents are context bugs, not code bugs

Look at the named agent failures of the last quarter. PocketOS losing its Railway database to a Cursor agent in nine seconds, after a credential mismatch in staging. Meta's March SEV1, where an agent passed every IAM check but performed an action its delegating human never authorized. Amazon's Kiro deleting AWS production after inheriting an engineer's permissions. McKinsey's Lilli walking through 22 unauthenticated endpoints to exfiltrate 46.5 million chat messages.

These get framed as permissions failures. They're not, at least not primarily. They're targeting failures: the agent did the right action against the wrong artifact, often in a window where the system's state was meant to be inconsistent. Migrations are the worst case because the agent's notion of "context" is wrong by definition.

Zhen Lu, CEO of Runpod, put the underlying question bluntly during our panel. His version was customer-facing: "How bad of a day is your customer going to have if you push some crappy code to production and it brings down their stuff?" The answer, increasingly, is that the bad day doesn't come from the code being crappy. It comes from correct code running against an environment the agent didn't fully understand. Permissions controls don't catch that. Linting doesn't catch it. Code review barely gets a glimpse of it.

Reviewing faster doesn't catch context bugs

The constraint at Rootly has moved squarely to review. Over 80% of our pull requests have AI as the primary author. We layer AI-assisted review on top of that. Review is still the bottleneck. A human trying to read AI-written code at AI's writing speed isn't running a process: it's running a queue with a person at the front of it apologizing.

Eran put the broader version of this cleanly: before AI, the engineering team was throttled by how many engineers we have and how much code we can write, test, and deploy. That throttle is gone. Code output is some multiple of what it was. The constraint has moved from how fast you can write code to how confidently you can ship it.

The dominant industry response is to throw more AI at the review problem. CodeRabbit, Cursor's Bugbot, GitHub's Copilot Review, Greptile, Cognition's Devin Review, Sourcery, Qodo, PR-Agent — there's an active tool race for "review faster." I think it's the wrong abstraction.

CodeRabbit's own State of AI vs Human Code Generation report finds AI PRs ship roughly 1.7x more issues per PR and about 2x more error-handling gaps than human-authored ones. That's the case for more review. But review at the speed of AI authorship doesn't catch deep issues, it catches surface ones.

The deep issues, the ones that break customers, mostly look fine on the diff. They're failures of context, not failures of code. You don't catch them by reading faster.

What does work: production-side defenses

Intercom's team has been running an interesting version of this experiment publicly. 93% of their PRs are agent-driven, 19% auto-approved with no human reviewer, and downtime from breaking changes dropped 35% as deployment volume doubled.

They framed it as AI review. The more honest framing is what they actually built: a deployment posture that catches regressions in production, fast, instead of trying to catch them at the diff.

That's the bet we're making at Rootly. Tight CI/CD with real smoke tests against staging that mirrors prod. Anomaly detection on the SLIs that correlate with customer pain. Automated rollback triggered by error-budget burn, not by a human's judgment call. Progressive delivery on anything customer-facing, with kill switches at every stage.

The thesis is that the marginal engineering hour is better spent on those primitives than on a faster review queue.

You don't catch the regression at the diff. You catch it within minutes of deploy and revert before customers feel it. It's early. I won't claim it works yet. But the math on reading every PR thoroughly stopped working a year ago, and the longer we pretend otherwise, the more review becomes ritual.

Your tests have the same blind spot

Zhen flagged that AI-written tests are one of the most underhyped use cases right now. Given decent guidance, an LLM is a strong first-pass test author, and you can run a much wider automated test surface than you'd ever staff humans to write. Net positive. I agree.

But there's a problem in that picture I underestimated for too long. If the agent writing the implementation also writes the tests, the tests pass when they shouldn't, because the agent and the tests share the same broken mental model. The targeting bug that broke production won't be flagged by a test the same agent wrote, because both the test and the implementation believe the same wrong thing about the world.

CodeRabbit's report sees this indirectly: agents write tests around the new (broken) shape, and CI goes green. Russinovich and Hanselman's April 2026 piece in Communications of the ACM names it more directly. Agents "implement special-case hacks that pass tests but fail in production," because the test author and the implementation author are the same agent with the same context.

The structural fix is to ensure they don't share context. Use a separate agent with a deliberately different prompt: one explicitly looking for what could break the implementation, not what would prove it works.

Adversarial test generation, not confirmatory test generation. Any CI suite where the tests share a brain with the code is, at best, marking its own homework.

Even with rollback, you need to know which agent did it

Eran's frame is Zero Trust. "You don't trust the actor, you verify the actions." That gets harder, not easier, when actions arrive at machine speed. Sandboxing, just-in-time access, third-party policy enforcement at the gateway: these stop being security hygiene and start being a precondition for letting agents touch anything in production.

There's a related problem he surfaced that's been bothering me since.

Agents currently act as the human running them. There is no per-agent identity. When an agent does something stupid, the audit log says the human did it. NIST's AI Agent Standards Initiative launched in February with agent identity as a core pillar.

The IETF has a draft on agent audit-trail formats. KubeCon EU 2026's platform-engineering day spent serious airtime on SPIFFE/SPIRE-for-agents, kagent, and Solo.io's agentgateway. OWASP published an MCP Top 10. The substrate is moving.

Fast rollback gets you out of the incident. It does not tell you which agent, or which engineer's agent, caused it. Attribution breaks. Paging logic breaks. Audit trails on incident channels degrade. Gravitee's 2026 survey reports only 21.9% of organizations treat agents as identity-bearing entities. Kiteworks reports 60% can't terminate a misbehaving agent and 33% lack any audit trail. Those numbers are bad in their own right. They're catastrophic the first time you try to write an incident retrospective and discover you can't reconstruct what happened.

The model isn't the leverage, the harness is

Almost every AI failure I've seen this year, mine included, has the same shape underneath.

The model did what it was told, against a world it had an incomplete picture of. The defenses that catch that aren't faster reviews or smarter prompts. They're production-side: rollback paths, anomaly detection, adversarial tests, identity boundaries, kill switches at the gateway.

That harness is platform-engineering work. CI hooks. Sandboxes. JIT scopes. Per-agent attribution. Feature-flag systems with sane defaults. Observability on the SLIs that matter. None of it is glamorous. All of it is the difference between an agent that ships value and an agent that lands a team on Hacker News for the wrong reason.

There's a corollary worth saying out loud. When you can ship anything, choosing what to ship becomes the constraint. Eran put it well: "I can load the product with tons of features, but it won't help customers or grow the organization."

The same logic applies one layer down. When an agent can do anything in your infrastructure, choosing what to let it do is the constraint. Both versions of that question used to be answered by implementation cost. Now they're answered by judgment about what should exist, and by the wrapping that keeps the answer honest.

Stop fearing mistakes, build to absorb them

That's the era of engineering we're in now. The bug class we used to ship — wrong syntax, hallucinated APIs, off-by-one errors — was a writing problem, and writing is what code review was good at catching.

The bug class we ship now is a context problem, and context is what production-like smoke tests catch, robust tooling around production to instantly get back on your feet. The teams that figure this out fastest won't be the ones with the latest models. They'll be the ones who stopped trying to prevent every possible mistake at the diff and started building the infrastructure to absorb if it slipped anywhere else.