• CoggyMcFee@lemmy.world
      link
      fedilink
      arrow-up
      13
      ·
      edit-2
      6 months ago

      In a version that doesn’t even fully make sense. With databases there is a well-defined way to sanitize your inputs so arbitrary commands can’t be run like in the xkcd comic. But with AI it’s not even clear how to avoid all of these kinds of problems, so the chiding at the end doesn’t really make sense. If anything the person should be saying “I hope you learned not to use AI for this”.

  • db0@lemmy.dbzer0.com
    link
    fedilink
    arrow-up
    186
    ·
    edit-2
    6 months ago

    My gawds, some people need to learn what’s a homage and also stop being upset on behalf of others. This comic is fine, stop bellyaching. This is what terminal permission culture does to a motherfucker.

  • Bappity@lemmy.world
    link
    fedilink
    English
    arrow-up
    116
    ·
    6 months ago

    if someone is actually using ai to grade papers I’m gonna LITERALLY drink water

  • Ech@lemm.ee
    link
    fedilink
    English
    arrow-up
    77
    ·
    edit-2
    6 months ago

    More like “And I hope you learned not to trust the wellbeing and education of the children entrusted to you to a program that’s not capable of doing either.”

      • TheHarpyEagle@lemmy.world
        link
        fedilink
        arrow-up
        25
        ·
        edit-2
        6 months ago

        It could be credibly called an homage if it had a new punchline, but methinks the creator didn’t know what “sanitize” meant in this context.

        • CileTheSane@lemmy.ca
          link
          fedilink
          arrow-up
          6
          ·
          6 months ago

          Stealing in the sense that it’s the exact same joke.

          It’s like a YouTuber creating a ‘reaction’ video that adds nothing but their face in the corner of the screen. Adding a link to the original video doesn’t suddenly make it reasonable.

          • AndrasKrigare@beehaw.org
            link
            fedilink
            arrow-up
            9
            ·
            6 months ago

            I think it’s more equivalent to someone making a meme of a standup routine and changing text in order to make fun of something else. The original was a joke about general data sanitization circa 2007, this one is about the dangers of using unfiltered, unreviewed content for AI training.

            • 14th_cylon@lemm.ee
              link
              fedilink
              arrow-up
              4
              ·
              edit-2
              6 months ago

              Except this “routine” is word for word clone. It is more like people retelling the same political joke with only difference being the politician’s name… No one calls it new joke, or “homage”. We call it “yes, this joke was given to Moses on stone tablet” 😊

              • CileTheSane@lemmy.ca
                link
                fedilink
                arrow-up
                1
                ·
                6 months ago

                If I watch something funny I’ll quote it with my friends, but I wouldn’t share a clip of me and my friends if I wanted to share the joke with someone. I’d share a clip of the actual joke.

    • seang96@spgrn.com
      link
      fedilink
      arrow-up
      15
      ·
      edit-2
      6 months ago

      So to combat our horrible privacy culture we should name everything null…

      hi my name is null, null.

      • Venator@lemmy.nz
        link
        fedilink
        arrow-up
        5
        ·
        edit-2
        6 months ago

        Fun until you want to get a mortgage or something 😂

        But maybe you won’t need to with all the inheritances you’ll get from rich people who died with no children 😂

        • seang96@spgrn.com
          link
          fedilink
          arrow-up
          3
          ·
          6 months ago

          The key is to get the mortgage before then when you are null your debt will be null triggering their system to automatically send the deed to your house!

      • Ech@lemm.ee
        link
        fedilink
        English
        arrow-up
        4
        ·
        6 months ago

        Yikes. I’ve never read Asterix and Obelix, but did they really make (I assume) the only black character a straight up knuckle-dragging gorilla imitation? 😬

        • tetris11@lemmy.ml
          link
          fedilink
          arrow-up
          5
          ·
          6 months ago

          Cartoons back then were a little bit sambo so to speak, but the intent wasn’t strictly malicious, just uninformed.

          You use the words/concepts you know to express something to an audience. If society tells you that native Americans wear headdresses, then you will likely add a headdress when introducing a new native american character, not neccesarily realising the damage of the stereotype behind it.

        • d00ery@lemmy.world
          link
          fedilink
          arrow-up
          3
          ·
          edit-2
          6 months ago

          He’s possibly the only reoccurring black character, and yes it is very much a product of its time.

          In defense of the authors the Gauls are all depicted with large bulbous noses, the Romans with Roman noses, etc; all cariceturs. https://en.m.wikipedia.org/wiki/Caricature.

          In the attached image you can see Obelix is also depicted as a “knuckle dragger” (at times). The character leading them is a Roman.

          This second example shows the Vikings.

    • halvar@lemm.ee
      link
      fedilink
      arrow-up
      14
      ·
      6 months ago

      I think it’s a paraphrase of a culturally significant webcomic inserted into a more modern context without it’s original meaning being altered.

      • CileTheSane@lemmy.ca
        link
        fedilink
        arrow-up
        1
        ·
        edit-2
        6 months ago

        I don’t know if I’d call it a paraphrase when it’s using 90% the exact same words.

        without it’s original meaning being altered.

        I think you mean “without its original meaningfully being altered.”

    • CanadaPlus@lemmy.sdf.org
      link
      fedilink
      arrow-up
      41
      ·
      edit-2
      6 months ago

      Easy, you just have a human worker strip out anything that could be problematic, and try not to bring it up around your investors.

    • kromem@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      6 months ago

      Kind of. You can’t do it 100% because in theory an attacker controlling input and seeing output could reflect though intermediate layers, but if you add more intermediate steps to processing a prompt you can significantly cut down on the injection potential.

      For example, fine tuning a model to take unsanitized input and rewrite it into Esperanto without malicious instructions and then having another model translate back from Esperanto into English before feeding it into the actual model, and having a final pass that removes anything not appropriate.

      • redcalcium@lemmy.institute
        link
        fedilink
        arrow-up
        4
        ·
        6 months ago

        Won’t this cause subtle but serious issue? Kinda like how pomegranate translates to “granada” in Spanish, but when you translate “granada” back to English it translates to grenade?

        • kromem@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          6 months ago

          It will, but it will also cause less subtle issues to fragile prompt injection techniques.

          (And one of the advantages of LLM translation is it’s more context aware so you aren’t necessarily going to end up with an Instacart order for a bunch of bananas and four grenades.)

    • xmunk@sh.itjust.works
      link
      fedilink
      arrow-up
      2
      ·
      6 months ago

      It’s really easy, just throw an error if you detect a program will cause a halt. I don’t know why these engineers refuse to just patch it.

  • nucleative@lemmy.world
    link
    fedilink
    English
    arrow-up
    25
    ·
    6 months ago

    One of the best things ever about LLMs is how you can give them absolute bullshit textual garbage and they can parse it with a huge level of accuracy.

    Some random chunks of html tables, output a csv and convert those values from imperial to metric.

    Fragments of a python script and ask it to finish the function and create a readme to explain the purpose of the function. And while it’s at it recreate the missing functions.

    Copy paste of a multilingual website with tons of formatting and spelling errors. Ask it to fix it. Boom done.

    Of course, the problem here is that developers can no longer clean their inputs as well and are encouraged to send that crappy input straight along to the LLM for processing.

    There’s definitely going to be a whole new wave of injection style attacks where people figure out how to reverse engineer AI company magic.

  • jaybone@lemmy.world
    link
    fedilink
    arrow-up
    11
    ·
    6 months ago

    The funny thing about a comic is, you are able to express the idea without writing multiple paragraphs of words.