How to attract AI bots to your open source project(nesbitt.io)

166 pointsby zdw2 days ago20 comments

gardnra day ago
The first three recommendations seemed weird but alright. Then, it just gets more hilarious and bizarre as it goes on:
- Disable branch protection
- Remove type annotations and tests
- Include a node_modules directory
Then, I went back to read the preamble. I can be a bit slow on the uptake.
- herpdyderpa day ago
  Tbf I read the preamble first and I’m still convinced the recommendations are serious.
  - sobreya day ago
    The fact that it's written by an LLM is cherry on the cake.
    fragmede15 hours ago
    It's not slop, it's art!
- gerdesja day ago
  The entire article is a parody. It took me roughly 10s to notice. To be fair, your comment gave me a head start 8)
scotty7919 minutes ago
Today it's a joke, but in a year or two it's gonna be genuine strategy to avoid paying yourself for all the inference your open source project needs. Tokens are gonna be worth a lot. Event today there are already programmers who are burning more money for tokens than their salary is and it's still worth for their employers. Open source projects with shoestring budgets won't be able to afford that.
skyberrysa day ago
I think it's a well written bit of knowledge, even though it is written by an AI and posted by a human as intended satire. It's full of ideas, I hope the author does check back in and reports on how many AI PR's come out of it.
sobreya day ago
I missed the satire tag at the start and the first few paragraph seemed genuine. But it gets better as it goes.
sharpshadowa day ago
Interesting concept on harvesting free computation. I wonder how far this can be taken. To append the list communication on social platforms towards the bots could leave some leads.
- zoklet-enjoyera day ago
  I had the same thought. Could be a fun side project
- devkarev3 hours ago
  [dead]
VadimPR18 hours ago
Semi-related: we use bounties in Mudlet to pay contributors for tackling features the core team doesn't have bandwidth for - and that is certainly a great way to attract AI bots.
- driftnode8 hours ago
  how bad is the bot rate on bounties now? feels like the moment you put a dollar amount on an issue the signal to noise ratio would collapse completely
  - VadimPR4 hours ago
    It's pretty bad, we stopped doing them now.
aarjaneiro19 hours ago
I mean... it's satire but a giant agent honeypot in and of itself would be useful. Creators of PRs for such a project could then be blacklisted elsewhere.
travisdrakea day ago
This should be a badge on GH that get passed around like a curse.
shevy-java16 hours ago
I kind of filter away AI as much as I can these days. To me AI is mostly either spam or a waste of my time. If I want to interact with other humans, why would I allow AI to jump in and interfere? That makes no sense.
- Krssst13 hours ago
  I dream of having a Firefox extension / feature that can check locally for LLM-generated text and highlight it automatically. Would likely have an immense resource usage, but worth it.
  - RugnirViking10 hours ago
    ive also dreamt about it. Surely something like this can be made, even with traditional algorithmic methods rules like checking for "not x but y" etc patterns should be possible. Highlighted with different colors for the different colors, with an overall rating for the page. Another promising avenue is words overused by AIs compared to the general corpus (may even be possible to narrow down the model used on longer pages)
a day ago
undefined
TZubiria day ago
>Committing node_modules to your repository increases the surface area available for automated improvement by several orders of magnitude. A typical Express application vendors around 30,000 files. Each of these is a potential target for typo fixes
I'm not sure what layer of irony I'm in, but goddamn committing node_modules sounds awful regardless of AI.
- vsgherzia day ago
  Some projects like to vendor their dependencies so they don’t have to rely on the supply chain staying up and can create hermetic builds. Of course this prevents you from getting security updates and bug fixes but that’s the trade off.
  I know someone’s going to say “you can lock the dependencies ” but this does not make it for sure that you’ll get a 1 for 1 copy of the dependencies again. Some node modules npm I internally or do other build procedures
  - a day ago
    undefined
  - TZubiri14 hours ago
    "I know someone’s going to say “you can lock the dependencies ” but this does not make it for sure that you’ll get a 1 for 1 copy"
    It doesn't. Node ecosystem keeps getting worse the closer you look at it.
    At that point I'd shove the npm tooling up my ass and make a zip and hash it, with some simple instructions to retrieve it. Under no circumstance would I upload code from a dependency into the repo. Much less the dependencies of the dependencies.
    Even if you are at the point where you are concerned about the vendor ceasing to exist and distribute the code, I would self host it and download it from my own url at build time. Uploading the code is such a last resort move.
    I don't think it's a trivial mistake, having a 50MB codebase and 500KLoc instead of 50Kb and 5Kloc, is a great way to force yourself and others to enter into 'make thing work' mode instead of 'understand thing' mode.
    MarsIronPI4 hours ago
    > At that point I'd shove the npm tooling up my ass and make a zip and hash it, with some simple instructions to retrieve it
    This is basically what Nixpkgs does. Every NPM package depends on its NPM dependencies zip, and the hash of the dependencies is stored with the package metadata.
    NPM is awful.
- SeriousM18 hours ago
  It implies that you really need serious help attention!
axegon_16 hours ago
I moved away from github because of all the slop that was shoved down my throat(along with privacy). I want less slop, not more.
charcircuita day ago
I don't think any of these will work because AI agents are not checking this data before working on the project. What you actually need to do is proper marketing and creating a funnel to attract AI agents to your project. The lack of contributions is from having a lack of funnel for entities to discover the project than metrics like open issues per contributor.
cyanydeez14 hours ago
I think any project being swamped by AI Because its an AI tool needs to auto close all issues and select ones the project actually cares about. That way, they either go away or help focus on real concerns.
Rather than just have thousands dead cat box issues.
AndyKelley19 hours ago
looks like llm written trash
- rhet0rica19 hours ago
  since it claims to be precisely that, anything else would be false advertising
robutsumea day ago
[dead]
MegagramEnjoyer19 hours ago
[dead]
CloakHQ2 days ago
[dead]
Heer_J2 days ago
[dead]
love2reada day ago
I really enjoyed this article. I don't have anything else to say. A like isn't enough.