The Wonders of AI: We Are Retiring Our Bug Bounty Program

Turso has decided to retire its bug bounty program, which offered $1,000 for bugs that could lead to data corruption, due to an overwhelming influx of low-quality submissions largely driven by automation tools and AI. The program, initially launched to ensure high reliability in their rewriting of SQLite, proved effective until it became a target for spam submissions that consumed significant resources without yielding valuable results. Contributors initially helped improve Turso's testing systems, but the ease with which automated systems could generate low-effort submissions led to a flood of unproductive proposals. Turso has chosen to eliminate the financial incentive to maintain the openness of their platform while encouraging meaningful contributions, acknowledging the need for new strategies in open-source governance in the face of AI-driven challenges.