zlacker

[parent] [thread] 3 comments
1. buovja+(OP)[view] [source] 2026-02-08 20:10:06
One solution is to have a screensharing call with the contributor and have them explain their patch. We have already caught a couple of scammers who were applying for a FOSS internship this way. If they have not yet submitted anything non-trivial, they could showcase personal projects in the same way.

FOSS has turned into an exercise in scammer hunting.

replies(1): >>swords+N7
2. swords+N7[view] [source] 2026-02-08 21:07:06
>>buovja+(OP)
I'm not sure if I follow, are the PRs legitimate and they are just being made to buff their resume, or are PRs malicious?
replies(2): >>Fogest+tn >>buovja+zc1
◧◩
3. Fogest+tn[view] [source] [discussion] 2026-02-08 23:00:42
>>swords+N7
They are becoming AI slop more and more likely in an attempt to buff their resumes by making it look like they contribute to a bunch of open source. Basically low effort low quality submissions for silly things that just waste maintainers time.
◧◩
4. buovja+zc1[view] [source] [discussion] 2026-02-09 07:47:55
>>swords+N7
The patches are not malicious, but the submitters are unable to explain them. We require submitting a non-trivial patch in order for someone to be considered for a FOSS internship. As there is money involved, this attracts scammers now more than ever.
[go to top]