惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

T
Tenable Blog
Last Week in AI
Last Week in AI
P
Proofpoint News Feed
Engineering at Meta
Engineering at Meta
H
Help Net Security
F
Fortinet All Blogs
MyScale Blog
MyScale Blog
宝玉的分享
宝玉的分享
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
博客园 - 司徒正美
量子位
N
Netflix TechBlog - Medium
Apple Machine Learning Research
Apple Machine Learning Research
小众软件
小众软件
Recorded Future
Recorded Future
博客园 - 三生石上(FineUI控件)
Vercel News
Vercel News
aimingoo的专栏
aimingoo的专栏
I
InfoQ
Microsoft Security Blog
Microsoft Security Blog
Scott Helme
Scott Helme
The Last Watchdog
The Last Watchdog
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
IT之家
IT之家
AI
AI
WordPress大学
WordPress大学
Security Archives - TechRepublic
Security Archives - TechRepublic
Google Online Security Blog
Google Online Security Blog
U
Unit 42
V2EX - 技术
V2EX - 技术
MongoDB | Blog
MongoDB | Blog
Schneier on Security
Schneier on Security
博客园 - Franky
H
Heimdal Security Blog
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Jina AI
Jina AI
W
WeLiveSecurity
P
Privacy & Cybersecurity Law Blog
Cloudbric
Cloudbric
B
Blog RSS Feed
N
News | PayPal Newsroom
S
Securelist
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
I
Intezer
Hacker News - Newest:
Hacker News - Newest: "LLM"
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
博客园_首页
罗磊的独立博客
H
Hackread – Cybersecurity News, Data Breaches, AI and More
雷峰网
雷峰网

Taranis

Go has some tricks up its logging sleeve I am not one of the good ones. Euravox is not an AI-first company. Datacenters in space are a terrible, horrible, no good idea. Trans Masc Voice Training Tool So it's going to be about appearance? k-Hot Holographic Encoding So what happens now? Today is my last day at Google LLMs are a failure. A new AI winter is coming. Crawling the Queer Web Announcing transarchive.eu All Roads Lead to Hellsites Irish trans healthcare is astonishingly bad Why I Stopped Trusting the Cloud (and Built My Own) From Dream Job to Exile: Why I Left the US for Ireland as a Trans Person
Trusting Copilot Is Like Letting a Dog Drive Your Car
Taranis · 2025-04-29 · via Taranis
By Taranis in Tech

Turns out, letting an AI autocomplete your code is a bit like letting a caffeinated squirrel pack your parachute.

Trusting Copilot Is Like Letting a Dog Drive Your Car
Photo by Judy Beth Morris / Unsplash

I was working on a personal project over the weekend. Mostly the reason for this was not having used any of the current web front end technologies, or frankly any much since GWT was a thing way back when. I've been teaching myself Svelte and Sveltekit, because reasons.

I did my usual thing (these days) of setting up a Linux VM with Postgres, all the Svelte stuff, VSCODE and the usual dev tools and had at it. I've used a few AI code autocomplete tools in the past with mixed results – some are pretty good, I'm particularly impressed with the one built into Google's Colab environment. I used Tabnine a year or so ago on another personal project and quite liked it. So I turned on Copilot when the option came up installing VSCODE.

Um...

There's something not right about the UX. It's just somehow way too aggressive – I've been trying to figure it out, and I think it's just basically too fast. The Colab equivalent has a delay of a few hundred milliseconds before making a suggestion, which is plenty of time to type something or move the cursor or whatever. But Copilot is ridiculously fast, responding in probably less than 100ms. It also tends to suggest much larger blocks of code in one go.

I think maybe one in 10 of Copilot's suggestions were good. The rest were hallucinated nonsense, or misunderstandings of my code. Colab does a better job, I'm not sure what the percentage is, but it's certainly far higher, and the code it generates is often spookily good, and I found a useful speedup relative to my usual coding rate, mostly because I'm not looking up API docs so much.

But not so much Copilot. I'm getting to the turning it off point. That's OK, I don't really mind, it was an experiment anyway.

However, it did do one thing that messed me up. It managed to insert a line of code that looked completely plausible, and did it so fast that I didn't notice. I think I was cutting and pasting to move some code around, and it basically just added an extra include. Ordinarily this would have made the compiler barf, but in this instance, the code was actually syntactically correct, but it blew something up deep in the innards of Svelte, causing a 500 error with no log messages being generated.

Image from Ferris Bueller's Day Off: Cameron Goes Berserk

This was an absolute pig to debug. I didn't have any checked in versions close enough to bisect on, so I was down to the good old fashioned comment everything out until it stops blowing up then add things back until it goes bang approach. This worked, and turned up the weird line of code that Copilot gifted me.

import { arch } from 'os';

This is the blighter responsible – the commented out import. I didn't write that line of code, and definitely didn't consent to Copilot 'helping'.

I swear, Copilot is going to turn us all into paperclips and/or grey goo.