• 0 Posts
  • 8 Comments
Joined 2 years ago
cake
Cake day: July 9th, 2023

help-circle

  • Could you let me know what sort of models you’re using? Everything I’ve tried has basically been so bad it was quicker and more reliable to to the job myself. Most of the models can barely write boilerplate code accurately and securely, let alone anything even moderately complex.

    I’ve tried to get them to analyse code too, and that’s hit and miss at best, even with small programs. I’d have no faith at all that they could handle anything larger; the answers they give would be confident and wrong, which is easy to spot with something small, but much harder to catch with a large, multi process system spread over a network. It’s hard enough for humans, who have actual context, understanding and domain knowledge, to do it well, and I’ve, personally, not seen any evidence that an LLM (which is what I’m assuming you’re referring to) could do anywhere near as well. I don’t doubt that they flag some issues, but without a comprehensive, human, review of the system architecture, implementation and code, you can’t be sure what they’ve missed, and if you’re going to do that anyway, you’ve done the job yourself!

    Having said that, I’ve no doubt that things will improve, programming languages have well defined syntaxes and so they should be some of the easiest types of text for an LLM to parse and build a context from. If that can be combined with enough domain knowledge, a description of the deployment environment and a model that’s actually trained for and tuned for code analysis and security auditing, it might be possible to get similar results to humans.


  • I’m unlikely to do a full code audit, unless something about it doesn’t pass the ‘sniff test’. I will often go over the main code flows, the issue tracker, mailing lists and comments, positive or negative, from users on other forums.

    I mean, if you’re not doing that, what are you doing, just installing it and using it??!? Where’s the fun in that? (I mean this at least semi seriously, you learn a lot about the software you’re running if you put in some effort to learn about it)


  • ‘AI’ as we currently know it, is terrible at this sort of task. It’s not capable of understanding the flow of the code in any meaningful way, and tends to raise entirely spurious issues (see the problems the curl author has with being overwhealmed for example). It also wont spot actually malicious code that’s been included with any sort of care, nor would it find intentional behaviour that would be harmful or counterproductive in the particular scenario you want to use the program.


  • No, you cannot meaningfully delete your posts or comments, but that’s not because of any issue with lemmy, but because you posted them publically. They will be archived and indexed in other services.

    It is always best to remember that all your activity here is public, and will be linked to your username. Given that, you may wish to minimise any personally identifying information you post, and use several accounts to split up your activities by topic.



  • I’m only going to do this very roughly, only for the transport and using US prices (as they’re easier to find), because the total cost of mining, transporting and dumping that much material is astronomical compared to the $70m budget. Even the transport cost alone are an order of magnitude higher.

    Soil has a density of between 1,200 and 1,700 kilograms or 2,645 and 3,747 pounds per cubic metre.

    I couldn’t easily find bulk rates for trunking soil, but bulk trucking rates for grain seem to be in the right area from what I can see. A truckload of up to 80,000lb costs somewhat over $6 per mile.

    Given the weight limit per truck, and taking a middling estimate of soil density of 3000lb/m^3 (rock would be heavier and so increase the cost), we can transport around 80000/3000=26m^3 per truck, at a cost of at least 615=$90, or $3.46 per m^3. Our budget for the whole operation was 75,000,000/(3,500,000100)=$0.20 per m^3.

    From those figures we can see that simply trucking the spoil fron the operation would be more than 15 times the cost of paying the landowners. That ignores all of the other costs. Local rates may be sonewhat cheaper, but probably not enough to make a serious difference, and you’d need to ship over 10 million truckloads of dirt, which would put massive strain on local infrastructure too.


  • If I read your measurements correctly, you’re talking about digging up over 350 million cubic metres of soil and rock, transporting them 15km and dumping them safely. Comparing that to the cost of paying the land owners gives you a budget of approximately $0.20 per cubic metre. Ignoring the digging costs, you’d have to check what your local rates for trucking bulk soil would be over that distance, but I suspect they’re more than that on their own.

    Then you have the rather signicicant issue of what to do with the literal mountain of soil and rock you need to dispose of. Just dumping it is going to cause pretty serious changes to the local environment, not least of which would be a new mountain.