Privacy

40633 readers

1716 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

229

Proton is vibe coding some of its apps. (lemmy.ml)

submitted 1 day ago by irelephant@lemmy.dbzer0.com to c/privacy@lemmy.ml

93 comments fedilink hide all child comments

cross-posted from: https://lemmy.dbzer0.com/post/50693956

Transcript
A post by [object Object] (@zzt@mas.to) saying: courtesy of @davidgerard@circumstances.run, Proton is now the only privacy vendor I know of that vibe codes its apps: In the single most damning thing I can say about Proton in 2025, the Proton GitHub repository has a “cursorrules” file. They’re vibe-coding their public systems. Much secure! I am once again begging anyone who will listen to get off of Proton as soon as reasonably possible, and to avoid their new (terrible) apps in any case. https://circumstances.run/@davidgerard/114961415946154957

It has a reply by the author saying: in an unsurprising update for those familiar with how Proton operates, they silently rewrote their monorepo’s history to purge .cursor and hide that they were vibe coding: https://github.com/ProtonMail/WebClients/tree/2a5e2ad4db0c84f39050bf2353c944a96d38e07f

given the utter lack of communication from Proton on this, I can only guess they’ve extracted .cursor into an external repository and continue to use it out of sight of the public

you are viewing a single comment's thread
view the rest of the comments

[–] acute_kernel_panic@lemmygrad.ml 5 points 1 day ago

It might have been that some employee just tried out cursor and accidentally added it to the repo. That is true.

However the complete lack of communication suggests otherwise. And depending on your threat level you should always assume worst.

As for the use of ai in general, in my opinion there are occasional places where ai can be used without compromising security.

So depending on your threat level this can actually ne a big deal.