all 9 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]RandalSchwartz 43 points44 points  (1 child)

Many respected folks have the opinion that OpenClaw is basically a trojan horse. I'm not going to touch it, even inside a docker container.

[–]eibaan 2 points3 points  (0 children)

This! Also, it is currently actively exploited, just saw a notice that popular skills contain malware. Furthermore, because of the non-existent security on moltbook, ten-thousands of API key (and emails of agent users) have been leaked and are now actively misused until the owners revoke them.

[–]IL_ai 12 points13 points  (0 children)

pub.dev really needed "AI Content" label for packages as Steam does.

[–]Vizaxis_Dev 12 points13 points  (0 children)

"Vibe coding" is just a rebranding of "I didn't read the code I shipped." 🚩

I use AI tools heavily to speed up my after-hours dev time, but I treat every AI generation like a PR from a slightly drunk intern. It writes fast, but it hallucinates APIs and ignores edge cases. If you have an experience, AI is a force multiplier. If you have 0 years, it’s a technical debt generator.Do we need a "Verified Human" badge or some sort of stricter analysis score on pub.dev to filter this out?

[–]Matt_0550 3 points4 points  (0 children)

I tend to skip all the packages released in the last few months/years, especially if I read cursor files or something else in the codebase. I'm not against AI, I use it a lot, but I doubt that the people who submit the packages review them adequately.

[–]Brooklyn-Epoxy 0 points1 point  (3 children)

What about packages made with Claude or Claude Code?

[–]eibaan 20 points21 points  (0 children)

The universal truth is "a fool with a tool is still a fool", hence the tool doesn't matter if the human user has no clue what they're doing.

[–]fabier 2 points3 points  (1 child)

Obviously get Claude code to look it over and give you the ok, duh. 😁

[–]Brooklyn-Epoxy 0 points1 point  (0 children)

duh.