bug-bounty519
xss287
rce175
google162
facebook137
microsoft133
exploit129
malware124
account-takeover118
bragging-post117
cve104
privilege-escalation95
open-source88
csrf87
authentication-bypass83
stored-xss75
phishing73
access-control69
ai-agents66
web-security64
reflected-xss63
apple61
writeup56
input-validation53
reverse-engineering53
sql-injection51
ssrf50
cross-site-scripting49
smart-contract48
defi48
api-security47
dos45
ethereum45
information-disclosure44
tool43
supply-chain43
privacy43
browser41
web-application39
cloudflare39
lfi38
burp-suite37
race-condition37
vulnerability-disclosure37
web337
automation36
opinion36
ai-security36
ctf36
oauth36
0
3/10
Richard Fontana discusses the 'exploitation paradox' in open source: how changing technological and social infrastructure creates new opportunities to exploit FOSS through loopholes (dual-licensing, SaaS loophole), leading to reactive legal fixes like the AGPL that often fail to solve the underlying problems and create new control points.
open-source
licensing
copyright
copyleft
gpl
agpl
dual-licensing
saas-loophole
legal-analysis
free-software
power-dynamics
contributor-agreements
clp
exploitation
Richard Fontana
Red Hat
IBM
CfgMgmtCamp
Free Software Foundation
Open Source Initiative
GPL
AGPL
Ansible
Foreman
LWN.net
Joe Brockmeier
0
2/10
A Python library maintainer relicensed chardet from LGPL to MIT using AI-assisted rewriting, sparking debate about whether LLM-generated code can circumvent copyleft obligations and fundamentally undermining software licensing economics. The dispute highlights unresolved legal questions about copyright ownership and human contribution in AI-generated code.
open-source
licensing
ai-generated-code
copyleft
gpl
lgpl
mit-license
clean-room-implementation
copyright
code-rewriting
llm
software-economics
policy
chardet
Dan Blanchard
Mark Pilgrim
Claude
Anthropic
GNU Lesser General Public License
MIT
JPlag
Armin Ronacher
Flask
Bruce Perens
Zoƫ Kooyman
Free Software Foundation
Thaler v. Perlmutter