BSD’s Cannot Ignore LLMs
Raúl Cuza
rac at conpocococo.org
Wed Apr 8 15:18:04 EDT 2026
BSD projects cannot ignore LLMs because people using them are not ignoring BSDs.
https://red.anthropic.com/2026/mythos-preview/ targets OpenBSD for the resale value of finding a vulnerability on “an operating system known primarily for security.”
This article is effectively an advertisement for the unreleased next model from an AI company, but that doesn’t reduce the seriousness of the problem emerging for ALL maintainers of software, open or otherwise.
The number of people who will be able to find vulnerabilities and build exploits is growing as LLMs progress. BSD project’s must adjust to the speed reacting to these findings will require.
The number of people who can patch vulnerabilities will also grow, if projects can accept their patches.
- r
More information about the talk
mailing list