Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

jacobian @jacob@social.jacobian.org

1/21/2026, 8:43:38 PM

Public

Bug Bounties have always been a sort of medium-value program. They do generate measurable security improvement, reliably — more than can be said for many security programs! — but they also cost a lot of time in triage, reproduction and communication. Historically the juice has been worth the squeeze, but with the rise of slop reports that’s no longer true. I suspect we’ll see a lot more bounty programs quietly (or loudly) end soon. https://cyberplace.social/@GossiTheDog/115934980914548808

Kevin Beaumont (@GossiTheDog@cyberplace.social)

Curl, one of the largest and widely used open source projects, is to stop bug bounty at the end of this month due to being overwhelmed by Generative AI slop bug bounty reports. https://github.com/curl/curl/pull/20312

cyberplace.social · Cyberplace

If you have a fediverse account, you can quote this note from your own instance. Search https://social.jacobian.org/users/jacob/statuses/115935033329971484 on your instance and quote it. (Note that quoting is not supported in Mastodon.)