Linus Torvalds says the growing wave of AI Bug Reports is creating major problems for Linux developers and making security management increasingly difficult.
The Linux founder warned that duplicate reports generated with artificial intelligence tools are overwhelming security teams and adding unnecessary workload to the open-source ecosystem.
According to Torvalds, many people now use AI systems to scan Linux code for vulnerabilities. However, multiple users often discover and report the exact same issues using identical tools. That duplication, he says, is turning the Linux security reporting process into what he described as “unmanageable.”
AI Bug Reports Causing Frustration
In his latest kernel update, Torvalds criticized the growing number of AI-generated bug submissions that arrive without actual fixes or useful contributions attached.
He argued that simply reporting vulnerabilities already identified by automated AI tools adds little value when developers must still spend time reviewing repeated submissions.
Torvalds said many of the reports create “pointless churn” because reporters cannot easily see what others have already submitted on private security lists.
“If you found a bug using AI tools, the chances are somebody else found it too,” he reportedly stated.
The comments reflect rising tensions across the software industry as artificial intelligence becomes more involved in programming, cybersecurity and code analysis.
AI Tools Changing Cybersecurity Work
Artificial intelligence systems now play a growing role in software security testing.
Companies and researchers increasingly use AI-powered scanning tools to identify vulnerabilities, coding mistakes and system weaknesses much faster than traditional manual reviews.
Some major security discoveries have already involved AI-assisted analysis.
One example included the “Copy Fail” vulnerability, which reportedly affected nearly every Linux distribution and was uncovered with help from AI scanning systems.
Another flaw known as “Dirty Frag” also raised widespread concern within the Linux community.
Despite those successes, Torvalds believes developers must focus on quality rather than volume when using AI tools.
Linus Torvalds Wants Real Contributions
Torvalds made it clear that he does not oppose artificial intelligence itself.
Instead, he wants developers to use AI in more productive ways that improve software quality instead of increasing administrative burden.
He encouraged contributors to go beyond automated reports by reading documentation, creating patches and helping solve problems directly.
“If you actually want to add value, create a patch too,” he said.
Many open-source developers share similar concerns about AI-generated spam, duplicated findings and low-quality automated submissions flooding online projects.
The Bigger Debate Around AI Coding Tools
The controversy highlights a broader debate about how AI should fit into software development.
Supporters argue AI coding assistants and scanning tools can dramatically improve productivity, identify hidden vulnerabilities and speed up development cycles.
Critics worry the technology may encourage low-effort contributions, reduce deep technical understanding and overwhelm maintainers with unnecessary reports.
Open-source projects are especially vulnerable because many rely on small volunteer teams managing huge amounts of code and security requests.
As AI tools become more accessible, developers may need stricter systems to filter duplicate or low-value submissions.
Why This Matters
Artificial intelligence is rapidly transforming software development and cybersecurity. However, experts warn that poorly managed AI-generated content could create new challenges for developers and security teams.
What Happens Next
Linux maintainers and other open-source communities may introduce stricter guidelines around AI Bug Reports and automated submissions as artificial intelligence becomes more common in coding and vulnerability research.
