## cURL puts an end to automated bug reports The cURL project, one of the Internet's most popular networking tools, has announced the suspension of its vulnerability reward program. The main reason is the surge in low-quality reports, in many cases generated by artificial intelligence systems. Daniel Stenberg, founder and lead developer of cURL, stated that the team is too small to handle the enormous amount of useless reports. The decision was made to protect the mental health of the engineers and ensure the survival of the project. ## Community Reactions The decision has sparked mixed reactions in the cURL user community. Some have expressed concern about the possible reduction in the tool's security, given that the bug bounty program represented an important control mechanism. Stenberg acknowledged the validity of these concerns but stressed that the team had no other choice. The increase in AI-generated "slop" is a growing problem for many open-source projects. The ability to automatically generate large amounts of data has led to an increase in background noise, making it more difficult for engineers to identify and fix real vulnerabilities.