Re: [PATCH v2 3/3] Documentation: security-bugs: clarify requirements for AI-assisted reports

Next message: Artem Shimko: "Re: [PATCH v2] mmc: sdhci-of-dwcmshc: add reset control support in suspend/resume"
Previous message: tip-bot2 for Thomas Gleixner: "[tip: sched/urgent] selftests/rseq: Expand for optimized RSEQ ABI v2"
In reply to: Willy Tarreau: "[PATCH v2 3/3] Documentation: security-bugs: clarify requirements for AI-assisted reports"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Leon Romanovsky

Date: Tue May 05 2026 - 10:14:53 EST

On Sun, May 03, 2026 at 01:35:06PM +0200, Willy Tarreau wrote:
> AI tools are increasingly used to assist in bug discovery. While these
> tools can identify valid issues, reports that are submitted without
> manual verification often lack context, contain speculative impact
> assessments, or include unnecessary formatting. Such reports increase
> triage effort, waste maintainers' time and may be ignored.
>
> Reports where the reporter has verified the issue and the proposed fix
> typically meet quality standards. This documentation outlines specific
> requirements for length, formatting, and impact evaluation to reduce
> the effort needed to deal with these reports.
>
> Cc: Greg KH <gregkh@xxxxxxxxxxxxxxxxxxx>
> Acked-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
> Signed-off-by: Willy Tarreau <w@xxxxxx>
> ---
> Documentation/process/security-bugs.rst | 55 +++++++++++++++++++++++++
> 1 file changed, 55 insertions(+)
>

Thanks,
Reviewed-by: Leon Romanovsky <leon@xxxxxxxxxx>