Death by a Thousand Prompts: Can Our Disclosure Standards Survive AI Slop?

Friday, April 10, 2026

11:00 AM - 11:25 AM

Krantas/Shore 213 (3rd building)

Speaker

Jarek Potiuk

Independent Open-Source Contributor and Advisor, Committer and PMC member of Apache Airflow, Member of the Apache Software Foundation, Security Committee Member of the Apache Software Foundation. Organizer of community-focused events, speaker.

Jarek is an Engineer with a broad experience in many subjects - Open-Source, Cloud, Mobile, Robotics, AI, Backend, Developer Experience, Security, but he also had a lot of non-engineering experience - building a Software House from scratch, being CTO, organizing big, international community events, technical sales support, pr and marketing advisory but also looking at legal aspects of security, licensing, branding and building open-source communities are all under his belt.

With the experience in very small and very big companies and everything in-between, Jarek found his place in the Open Source world, where his internal individual-contributor drive can be used to the uttermost of the potential.

Abstract

AI-generated "slop" is overwhelming vulnerability triage and burning out maintainers. This session focuses on building a unified framework to identify and "black-hole" synthetic noise at scale. We will discuss practical, cross-platform strategies to automate the rejection of low-signal reports and protect engineers from the unsustainable volume of AI-augmented disclosures.

Description

The infrastructure of vulnerability disclosure is under pressure. What happens when the cost of generating a “plausible-looking” vulnerability report drops to near zero? For professionals used to high-signal environments, the current era of AI-augmented reporting presents a unique threat to the sustainability of the security ecosystem. This session moves quickly through the history of triage to focus on the now:

The Triage Burnout: Why traditional “human-in-the-loop” models are failing against synthetic volume. Cross-Organizational Trends: A look at how different sectors are “black-holing” AI noise. A Call for Consensus: Discussing a unified framework for identifying and dismissing automated slop.

Join us for an interactive discussion aimed at drafting a better way forward. We’ll ask the hard questions: Should AI-generated reports be rejected by default? How do we coordinate this across 3rd-party platforms and independent maintainers?