Bugcrowd policy changes to address “AI slop” submissions

Bugcrowd is addressing the issue of "sloptimism," a trend where AI agents and automated tools are used to flood their platform with low-quality, speculative vulnerability reports lacking in validation and context. These practices, driven by both AI-assisted novice researchers and organizations improperly training AI systems, have led to a significant increase in submission volume, straining Bugcrowd's triage teams and degrading the overall quality of findings. To combat this, Bugcrowd is implementing stricter submission policies, including permanent bans for submission farming, suspensions for accounts with repeated invalid reports, and identity verification to ensure accountability. These measures aim to maintain the integrity and quality of vulnerability submissions while encouraging validated and meaningful research, and Bugcrowd is open to feedback from the community to refine these policies further.