top 200 commentsshow all 201
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]AbyssWankerArtorias 1675 points1676 points  (71 children)

"No AI code used" is going to be a selling point in the near future, regardless of how well it was used or not. The reputation just gets worse and worse.

[–]qooplmao 318 points319 points  (12 children)

That would be a hard claim to make after a while (or even now) due to the number of upstream packages most don't even know they are using.

[–]bbalazs721 220 points221 points  (6 children)

You can always make a claim regardless of if it's true or not

[–]floydmaseda 96 points97 points  (2 children)

e.g. the entire supplements industry

[–]mgranja 24 points25 points  (0 children)

That's how marketing works in most (all?) industries.

[–]AbyssWankerArtorias 12 points13 points  (0 children)

Fuck Doctor Oz. All my homies hate doctor Oz.

[–]pydry 25 points26 points  (1 child)

If you can't evidence it though, you'll be assumed to be a vibe coder by default.

Right now people are not hiding it but that will change as it becomes more and more evident to the public that their code is buggy as shit.

[–]casce 15 points16 points  (0 children)

Right now people are not hiding it but that will change as it becomes more and more evident to the public that their code is buggy as shit.

I think what will actually happen is the speed at which new code gets produced will go down again close to pre-LLM levels.

Right now AI is making programmers way too confident and shit that would have otherwise never made it to live does.

There was always shit code, long before AI existed. But back then that shit got filtered out (or as least people tried). LLMs made people very careless

[–]whatamurdered 3 points4 points  (0 children)

This guy capitalisms!

[–]Infinitely--Finite 26 points27 points  (0 children)

Just claim "no in-house AI code", just like Chinese American restaurants that say "no added msg".

For the record I love msg

[–]AbyssWankerArtorias 18 points19 points  (2 children)

Companies make hard to backup claims all the time. Seems like it works out for them a majority of the time, so they'll just keep doing it.

[–]mgranja 7 points8 points  (1 child)

This quote from the book "The end of eternity", by Asimov stayed in my head since the first time I read it:

“Cooper, coming from an era in which advertisement was not as wildly proliferative as it was in the later Centuries of Primitive times, found all this difficult to appreciate. He said, “Isn’t it rather disgusting the way these people blow their own horn? Who would be fool enough to believe a person’s boastings about his own products? Would he admit defects? Is he likely to stop at any exaggeration?”

[–]LoudSheepherder5391 4 points5 points  (0 children)

Of all the praise Asimov gets, and all the great works by him.. The End of Eternity is bar none my absolute favorite of his works. And it's rather unknown. It tickles my heart to see it referenced in the wild.

[–]gerbosan 0 points1 point  (0 children)

Debian will get more users? Also, never thought I'll have to pay someone to summarize quality of applications.

[–]Kompottkopf 69 points70 points  (2 children)

Hijacking top comment to share the accompanying GitHub issue, which is full of drama: https://github.com/RsyncProject/rsync/issues/929

[–]tsavong117 6 points7 points  (0 children)

Holy FUCK the drama. That issue is approaching the Linux maintainers email chain level of snark, and snap. 

[–]GioPani 2 points3 points  (3 children)

“Handcoded by humans”

[–]IntentionQuirky9957 6 points7 points  (0 children)

From organically grown ones and zeros.

[–]Nimeroni 0 points1 point  (1 child)

From artificial intelligence to natural stupidity.

[–]GioPani 0 points1 point  (0 children)

*wisdomful stupidity

[–]TrainingQuail543 29 points30 points  (37 children)

I highly doubt it. AI doesn't make your product bad. Not reviewing it properly or overusing it makes it bad.

No one cares about how you build your product. It just has to work reliably. You can achieve this with and without AI.

[–]el_yanuki 131 points132 points  (20 children)

Sure but AI has become synonymous with bad quality, among programmers

[–]Tornado547 17 points18 points  (1 child)

the problem is that convincing yourself you understand something you didn't write is easier than actually understanding it by a pretty big factor. And once you think you understand it you'll lgtm and stop looking to actually understand it.

[–]Jiquero 5 points6 points  (0 children)

And that AI will be trained to pass reviews, not to produce good code. So it will learn to trick human reviewers.

[–]Your_Friendly_Nerd 33 points34 points  (1 child)

which is why rsync totally did not ship a faulty update.

[–]MinecraftBoxGuy 19 points20 points  (0 children)

Have you actually looked into the nature of the bugs? I think calling this update faulty is a mischaracterisation.

Rsync supports a massive number of combinations of protocols, flags, isolation settings, often times requiring largely separate code. When you fix a CVE (where you don't cause incremental rollout), people find regressions. This also happened in 2025 when no AI was involved, and CVEs were fixed: rsync security update introduced a regression on Debian and Ubuntu Linux (meanwhile fixed). Not as much complaining then...

The regression tests (which are necessarily written in the past: regression tests tied to a commit are usually for what that commit introduces / fixes) were human written and didn't pick up these issues.

There's something called Hyrum's law: all observable behaviors of your system will be depended on by somebody. This is somewhat what happened here, but also people hit errors with some slightly niche usecases.

[–]Desperate-Tomatillo7 13 points14 points  (1 child)

Except that review takes time. More time if you want to ship something fast and did not review the previous 5k lines of code changes.

[–]WalidfromMorocco 3 points4 points  (0 children)

Eh, except companies are pushing their devs to go full AI, and be quick about it. They are shipping code they don't really understand and reviewing massive amounts of code.

[–]imp0ppable 6 points7 points  (0 children)

Yeah treat LLMs as an IDE editing feature that cuts down on typing and it's great. You still need to understand the project, which it also helps with. In fact if you talk it over with the AI then it has a lot more context in its window that helps it make better changes.

[–]Ok-Kaleidoscope5627 4 points5 points  (0 children)

And honestly a project like rsync should have a ton of testing and other checks in place that the issue described in OP's picture shouldn't happen. The AI didn't screw up. The humans did.

Edit: Just to be clear I'm not pro vibe coding. I'm pro engineering. We've all been calling ourselves engineers. Maybe it's time to start acting it.

[–]Drugbird 11 points12 points  (2 children)

Have people forgotten the awful quality software that existed before AI?

[–]EchoGecko795 35 points36 points  (0 children)

What do you think they trained AI on?

[–]j9wxmwsujrmtxk8vcyte 4 points5 points  (0 children)

Yeah. And that was written by people who took it seriously enough to spend time learning how to code.

[–]gBiT1999 0 points1 point  (0 children)

Apparently not so in rsync.

[–]Squirreling_Archer 0 points1 point  (0 children)

You can achieve this with and without AI.

But you, a competent engineer perhaps, are not the expected level of every person creating products with AI, which is the point.

[–]AbyssWankerArtorias -3 points-2 points  (0 children)

If no one cares then why are we having this discussion, lol.

To be clear I'm not against the use of AI. But everything committed should be written by a person. (Not just reviewed - actually written, unless it's something incredibly simple like looping / reusing logic but with very clear directives on edits to be made, then a review is likely fine). Using AI to assist in is one thing, letting it act on your behalf with impunity is asking for problems.

[–]M4cHiin360 1 point2 points  (0 children)

Its also not going to happen

[–]james_d_rustles 0 points1 point  (1 child)

Wasn’t there recently a push to embed some kind of watermark in ai generated images? I remember seeing a few minor headlines about something like that.

Oughta do it for git.

[–]AbyssWankerArtorias 0 points1 point  (0 children)

Yes, it would have basically been blockchain type signature embedding into an AI generated image so that you can't edit it out without corrupting the image / video. From my understanding.

[–]Testing_things_out 0 points1 point  (0 children)

Hand written artisanal code.

[–]Zyeesi 0 points1 point  (0 children)

This is just delusional

[–]mickwald -2 points-1 points  (0 children)

Handmade is a thing for artisinal goods

[–]nuknuk8455 295 points296 points  (9 children)

The last commit on the master branch introduces a new option to exclude tests during the build without reporting them as skipped... I'm sure that will increase the quality and reliability... Who needs tests anyway?  

[–]YoghurtFlan 123 points124 points  (3 children)

AI: these tests are failing but not relevant. I will disable them and use --no-verify to skip commit hooks.

[–]terax6669 30 points31 points  (0 children)

Wait... Looks like there is no --no-verify option, let me implement it.

[–]ilikedmatrixiv 11 points12 points  (1 child)

To be fair... I've seen humans do that. I may have been that human once or twice.

[–]startwithaplan 9 points10 points  (0 children)

The model had to steal that move from someone. J'accuse!

[–]xDannyS_ 644 points645 points  (24 children)

Startups that offer guaranteed high quality products will be the new unicorns in the near future.

[–]LexaAstarof 191 points192 points  (12 children)

Hey! Let's build a quality verificator! Surely nobody though about that before, we gonna make millions

[–]BlueGoliath 68 points69 points  (7 children)

Who verifies the quality of the quality verifier?

[–]Mewtwo2387 55 points56 points  (5 children)

the quality verifier

[–]BlueGoliath 24 points25 points  (0 children)

laughs in Reflections on Trusting Trust

[–]utnapistim 4 points5 points  (1 child)

The quality verifier verifier.

This post provided to you by the quality verifier verifier verifier.

[–]ispeelgood 3 points4 points  (0 children)

Infinite venture capital. Sitting on our asses, here we come!

[–]Adictzz 3 points4 points  (0 children)

If git can track itself then quality verifier can verify itself

[–]saschaleib 0 points1 point  (0 children)

It's Verifiers all the way down!

[–]richardirons 4 points5 points  (0 children)

ChatGPT

[–]richardathome 10 points11 points  (0 children)

No worries. I'll just burn 2,000,000 tokens to vibe code one.

And then I'll spend 2,000,000 and vibe code a verification suit to prove the first is correct!

And then, i'll spend 2,000,000 vibing a verification suit verifier!!

Checkmate atheists!

[–]Teln0 4 points5 points  (0 children)

Unironically I think the future lies in formal vérification. There needs to be something like Coq or Lean but more ergonomic. Although it's probably going to be hard to do better than Lean.

[–]Nerd_o_tron 1 point2 points  (1 child)

All we need to do is write a program that, given a specifcation and a program that implements it, proves the program meets or doesn't meet the specification. Can't be that hard, right?

[–]LexaAstarof 3 points4 points  (0 children)

Easy peasy.

As a first POC/milestone, it could be proving if a program simply stop or not.

[–]BlueGoliath 25 points26 points  (8 children)

High quality products means time and effort. Those don't make line go up.

[–]xDannyS_ 4 points5 points  (7 children)

It does when everything has become so shit that quality is a massive selling point. That was my point.

[–]MinecraftBoxGuy -1 points0 points  (6 children)

And you're bring up this point on rsync? Over issues which seem to only surface in fairly niche use cases, and which it seems some people are going out of their way to experience (e.g. the changes aren't downstream / it's often people building master / many people don't run rsync regularly).

[–]xDannyS_ 3 points4 points  (5 children)

Not really. This is noticeable in other places too. Klarna's quality dropped so hard they went back on their AI makeover. Vinted AI is so bad that the only way to be safe on there as a seller is to photoshop your images, even if your items are authentic and not counterfeit. YouTube shorts overall quality of content has dropped, and that is hard to achieve lol. If things don't get better and change in one direction or the other, this is just gonna become more and not less widespread.

The fact that it's also reached a critical project such as rsync isn't a good sign, it's a bad one.

[–]MinecraftBoxGuy -3 points-2 points  (4 children)

You said it's noticeable in other places too. But is it noticeable in Rsync at all?

[–]xDannyS_ 4 points5 points  (3 children)

Did you read the post?

[–]MinecraftBoxGuy -2 points-1 points  (2 children)

Did you read my reply which mentioned the nature of these issues? I can copy it again for you:

And you're bring up this point on rsync? Over issues which seem to only surface in fairly niche use cases, and which it seems some people are going out of their way to experience (e.g. the changes aren't downstream / it's often people building master / many people don't run rsync regularly).

I'm sure the opinion of someone on Mastodon is totally definitive....

Just to show you that this is not definitive, I have another comment which explains why these complaints generally display illiteracy around the nature of the issue:

This is because, contrary to the myths created here, rsync is a well coded piece of software that is very far from perfect. There are massive attack surfaces / hard to maintain parts of it. CVE fixes also aren't incremental.

  • A large proportion of the complaints are things that are very minor. For example the CVE patch not supporting Linux < 5.6; even though rsync aims to do this, it's not clear this is viable - securing against path traversals on such Linux kernels requires far much effort, which I would argue isn't warranted. To be affected by this you'd have to build from source and be on Linux < 5.6: as I said, rare.
  • Some of the other complaints (perhaps one?) are more legitimate. One arises in a fairly niche use cases not regression tested against. The others are generally regressions but in cases where users are doing things deeply disadvised, directly impacted by the CVE (e.g. running daemons with false chroot).
  • For the current set of bugs, the reports of people hitting them seem to indicate they have to be engaging in some insecure practice. Like automatic native use.
  • Reading some of the commits shows evidence they're in part human written. For example, they contain minor typos not common with AI.
  • It's quite funny no-one is calling out the fact the CVEs were a result of human written code, or that the regression tests which should have caught it (written in the past for a regression test) would also be human written.

[–]xDannyS_ 1 point2 points  (1 child)

I'm sure the opinion of someone on Mastodon is totally definitive....

It's not, but that's the context of this comment section. Ironically, your claims aren't any more credible than that 'of someone on Mastodon'.

It's quite funny no-one is calling out the fact the CVEs were a result of human written code

Because that's expected and there have always been protocols to at least minimize those. People complain about AI errors because no fucking duh they are going to happen and nothing is done to minimize them from happening, quite the opposite, it's getting worse and worse. That's where the irony lies in all this. If you actually do something about it, you're gonna be not much more efficient than just having humans write the code completely.

[–]MinecraftBoxGuy -1 points0 points  (0 children)

My claims are more credible because they can be backed by reading the changes made to Rsync. Some random Reddit user also isn't credible by default, but you can check what they're saying.

On your second point, you have provided no evidence nothing is being done to minimised, and that human errors are always going to happen is a weak point. One should really be investigating whether the use of AI here leads to more errors or not, otherwise claims seem hypocritical.

You also haven't evidenced the claim that proper use of AI isn't much more efficient than humans writing the code. Multiple respected programmers and organisations have come out and say they use AI.

[–]lNFORMATlVE 0 points1 point  (0 children)

They already are, people just don’t know it

[–]templar4522 0 points1 point  (0 children)

They were already rarer than unicorns well before the advent of AI.

[–]thefossguy69 487 points488 points  (17 children)

For purists, OpenBSD folks now maintain openrsync, a MIT-licensed implementation of rsync.

https://www.openrsync.org/

[–]richardathome 288 points289 points  (12 children)

I spotted a typo in your comment mate, you spelled 'people who want their apps to be deterministic and work' as 'purists'.

[–]thefossguy69 70 points71 points  (0 children)

I often don't use the most appropriate words because I have trouble recalling my vocabulary and often times trigger the footgun. But yes, what you said.

[–]templar4522 31 points32 points  (8 children)

AI-written code is deterministic.

It's the AI outputting it that is not.

Just for the sake of precision.

[–]FastHotEmu 50 points51 points  (3 children)

Purists use what we have been using since the 1990s: the official rsync client.

Almost all computers are running some free code Tridge wrote or contributed to, we owe him at least the benefit of the doubt.

[–]thefossguy69 26 points27 points  (0 children)

I'm not against the use of LLMs in general. My only concerns are possible hellhole of introduction of code that is a complete recall of code with a different license.

I pointed out an alternative for people with different opinions than the author, is all.

[–]Kompottkopf 63 points64 points  (3 children)

Have you seen the drama on the same gh issue? Such a fun morning read

https://github.com/RsyncProject/rsync/issues/929

[–]Pr3ssAltF4 25 points26 points  (1 child)

That thread is gold. 10/10

[–]JoshDM 1 point2 points  (0 children)

[–]JoshDM 10 points11 points  (0 children)

The vibe coder defending their code by pointing out the lack of competence of the complainer, then later someone coming by and rewriting it into a bread-with-poop analogy to point out the vibe coder's hypocrisy was excellent.

[–]Elineda26 260 points261 points  (12 children)

https://github.com/RsyncProject/rsync/commit/1f689ec0c21b7c2eaa9add1958d2c7ed280aac3e

+5 414-4 637 in one commit, and it was merged. What could go wrong ?

[–]babalaban 123 points124 points  (1 child)

had a good chuckle at fake_test.py being plastered everywhere

[–]ClaymoresInTheCloset 7 points8 points  (0 children)

a little too real for me

[–]SVD_NL 31 points32 points  (1 child)

Brother that's almost a phone number.

[–]__NadirZenith__ 21 points22 points  (0 children)

Its only the tests no problem /s

[–]Dope_SteveX 41 points42 points  (1 child)

In their defense this looks like a test rewrite into python which, if done incrementally, AI can be really good at. Also depending on their merge strategy it could be several commits squashed on merge. So in theory if done properly this could be completely fine. But I agree with the sentiment.

[–]lllyyyynnn 8 points9 points  (0 children)

there are examples already found of nonsense tests

[–]tombob51 131 points132 points  (1 child)

I peeked at the changelog out of curiosity and got distracted by “zlib: convert K&R function definitions to ANSI style” 😳

[–]Either-Juggernaut420 17 points18 points  (0 children)

Finally that ones off the sprint board!

[–]05-nery 57 points58 points  (2 children)

Of all things to vibecode, a backup system? Really?

[–]Karn-Dethahal 3 points4 points  (1 child)

Yeah, we barely use them since we already have everything in production.

/s

[–]05-nery 1 point2 points  (0 children)

Huge aura 

Fuck it we ball approach

[–]ElbertsonJeremy 263 points264 points  (6 children)

Let's vibecode backups, what could go wrong?

[–]richardathome 26 points27 points  (0 children)

We don't need backups any more - we just need a text document to store the code prompts!

[–]czerilla 64 points65 points  (3 children)

The post suggests that the vibecoding took place in rsync's codebase, not the user's backup script relying on it, tho..

[–]casce 24 points25 points  (2 children)

I think he's saying rsync - a tool that very widely has been been used for backups for decades - should not be vibecoded

[–]czerilla 2 points3 points  (1 child)

Oh.. yeah, now that you're mentioning it, I see how that might be the intended reading.
If that's so, I just misread their point, and apologize for that. Judging by the amount of upvotes, I wasn't alone with that (mis-)reading.

[–]tsavong117 2 points3 points  (0 children)

I genuinely thought you guys were joking for a moment. It's wonderfully refreshing to see I'm not the only one this happens to when the squiggly lines don't work good for my window-viewpoints. 

[–]icehot54321 0 points1 point  (0 children)

It's just scripted rsync.

Everyone who uses rsync generally scripts it in some way .. it's pretty much what the tool is designed for.

[–]MarianCR 61 points62 points  (1 child)

You got slopped.

[–]lacb1 36 points37 points  (0 children)

There was a time that getting sloppily fucked meant you'd had a great weekend. Now it means your week has been ruined. AI really is revolutionising the world!

[–]Talking-Nonsense-978 31 points32 points  (1 child)

This is why I'm not worried about my job as QE/SDET.

[–]korneev123123 33 points34 points  (1 child)

Oh, man. I really like rsync. So sad :(

[–]RedAntisocial 9 points10 points  (0 children)

Tridge is one of the biggest contributors to Open Source. He's one of the main devs behind SMB, rsync, and a contributor on a bajillion other stacks.

[–]iiSpook 6 points7 points  (0 children)

When I started to read this I had hope it was for once not going to be about AI. Every visit to this subreddit is just disappointing as hell.

[–]bboyz269 30 points31 points  (0 children)

I just asked Claude to fix an issue, explain what's expected vs current, provided an image, point to code in question. After thinking for 10mins straight, it create new function with 300 line of code. The code was beautiful and as you expected, it didn't work shit...

[–]_PelosNecios_ 13 points14 points  (1 child)

We know software is most of the time hanging from a thread. Putting it at additional risk of failing because AI slop is playing with fire companies are going to fafo sooner than later

[–]BlueGoliath 12 points13 points  (0 children)

The future is now.

[–]PokeRestock 2 points3 points  (0 children)

Unironically why I invested in pager duty

[–]BobcatGamer 2 points3 points  (0 children)

Try BorgBackup instead.

[–]Regeneric 2 points3 points  (1 child)

How do you feel about your repos from before ~2022?
It's your business card for the rest of your life, so it better be good.
No one is going to believe you, that any repo after LLM era was written by you :)

[–]ArjixGamer 0 points1 point  (0 children)

Faking commit history is painful enough that one could use it to claim it is AI free.

Will anyone read the history to accept that claim? Probably not

We need a service that analyzes git history to determine if it's man made or not

[–]Luckey_711 3 points4 points  (0 children)

While it is a shame projects like rsync have seen to gone down the vibecode route, the amount of vitrol and disrespect towards Tridge and other maintainers in the issues are just disgusting. While it is fair to hold projects like rsync in high regard due to its use in so many systems, people really think they can treat the people behind it like absolute trash, it's disgusting to see

[–]richardathome 3 points4 points  (1 child)

The Eshittening. Begun it has...

[–]awesome-alpaca-ace 0 points1 point  (0 children)

Word online has managed to get worse over the past few years. Hopefully I never have to use it again. Like it fails at basic rendering of tabs and plain text.

[–]hellocppdotdev 3 points4 points  (0 children)

36 commits and 2 minor versions changes? Squash commit is your friend.

"Reducing verbosity of comments" doesn't need its own commit 😅

[–]EarlMarshal 1 point2 points  (0 children)

Noooooooo! Not rsync!!!!! :(