From: Xuan-Son Nguyen Date: Sun, 30 Nov 2025 21:51:34 +0000 (+0100) Subject: contributing: update guidelines for AI-generated code (#17625) X-Git-Tag: upstream/0.0.7446~234 X-Git-Url: https://git.djapps.eu/?a=commitdiff_plain;h=ff90508d68de51bc4c0a1d60d636b0501cb0f3b3;p=pkg%2Fggml%2Fsources%2Fllama.cpp contributing: update guidelines for AI-generated code (#17625) * contributing: update guidelines for AI-generated code * revise --- diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index b808fa31..875eb766 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -19,6 +19,7 @@ The project differentiates between 3 levels of contributors: - If your PR becomes stale, don't hesitate to ping the maintainers in the comments - Maintainers will rely on your insights and approval when making a final decision to approve and merge a PR - Consider adding yourself to [CODEOWNERS](CODEOWNERS) to indicate your availability for reviewing related PRs +- Using AI to generate PRs is permitted. However, you must (1) explicitly disclose how AI was used and (2) conduct a thorough manual review before publishing the PR. Note that trivial tab autocompletions do not require disclosure. # Pull requests (for maintainers) diff --git a/SECURITY.md b/SECURITY.md index 9749e95b..9c86ae91 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -65,4 +65,6 @@ However, If you have discovered a security vulnerability in this project, please Please disclose it as a private [security advisory](https://github.com/ggml-org/llama.cpp/security/advisories/new). +Please note that using AI to identify vulnerabilities and generate reports is permitted. However, you must (1) explicitly disclose how AI was used and (2) conduct a thorough manual review before submitting the report. + A team of volunteers on a reasonable-effort basis maintains this project. As such, please give us at least 90 days to work on a fix before public exposure.