Cybersecurity

6371 readers

22 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago

MODERATORS

kid

[email protected]

DeepSeek found to be sharing user data with TikTok parent company ByteDance (www.malwarebytes.com)

submitted 1 day ago by kid to c/cybersecurity

28 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 1 points 1 day ago (1 children)

Have you had any luck importing even a medium-sized codebase and doing reasoning on it? All of my experiments start to show subtle errors past 2k tokens, and at 5k tokens the errors become significant. Any attempt to ingest and process a decent-sized project (say 20k SLOC plus tooling/overhead/config) has been useless, even on models that "should" have a good-enough sized context window.

[–] [email protected] 1 points 1 day ago* (last edited 1 day ago)

My codebase is almost 1.2GB of raw python and go files no images. I think it's somewhere near 15k tokens for the python codebase and 22k for golang due to all the .mod and .io connectors to python libraries... it was a much bigger mess before if you can believe it.

What size model are you using? I'm getting pretty good results with R1 32b but these have been distilled to be experts in the languages of the codebases. I'm not using any general models for this.

Also it depends on the language you're targeting as well. Rust or Lisp have issues due to how much less they've been documented. I think golf type languages like brainfuck are impossible. It really comes down to how the language has been documented. Python gave me issues in the beginning until I specified 3.11 in my weights and distillation/training, and that definitely fixed a lot of the hallucinations I was getting from the model.

I think static typing languages that have consistent documentation would be the easiest for this. Now that I think of it, maybe getting a typescript expert would be something I could tool around with.

Edited for legibility and the fact that I just went and looked at my datasets again. Much bigger than I initially thought.