AI News AI资讯 2h ago Updated 1h ago 更新于 1小时前 49

Ethereum deploys AI agents to hunt bugs, discovers libp2p vulnerability 以太坊部署AI代理搜寻漏洞,发现libp2p漏洞

The Ethereum Foundation’s Protocol Security team successfully identified a remotely triggerable panic in libp2p’s gossipsub (CVE-2026-34219) using coordinated AI agents. The primary challenge in AI-driven security auditing is not bug generation, but the rigorous triage of "confident-sounding noise" and false positives produced by AI models. The workflow utilizes specialized AI roles (Recon, Hunting, Gap-filling, Validation) coordinated via version control, requiring self-contained reproducers fo 以太坊基金会协议安全团队通过协调多个AI代理,成功发现并修复了libp2p gossipsub组件中一个可远程触发的恐慌漏洞(CVE-2026-34219)。 AI代理被分配侦察、狩猎、填补空白和验证等特定角色,通过版本控制系统进行去中心化协作,而非依赖中央协调器。 核心挑战在于“信号与噪声”的筛选,AI生成的候选结果多为误报或重复项,真正的价值在于建立严格的验证流程以过滤“自信但无用”的输出。 发现的关键不在于AI能多快找到Bug,而在于如何自动且高效地剔除错误假设,确保每个有效发现都包含能在生产代码中复现故障的自包含工件。 这一实践标志着AI安全审计的重心从“发现漏洞”转向“验证结果”,强

75
Hot 热度
70
Quality 质量
65
Impact 影响力

Analysis 深度分析

TL;DR

  • The Ethereum Foundation’s Protocol Security team successfully identified a remotely triggerable panic in libp2p’s gossipsub (CVE-2026-34219) using coordinated AI agents.
  • The primary challenge in AI-driven security auditing is not bug generation, but the rigorous triage of "confident-sounding noise" and false positives produced by AI models.
  • The workflow utilizes specialized AI roles (Recon, Hunting, Gap-filling, Validation) coordinated via version control, requiring self-contained reproducers for any finding to be validated.
  • Human judgment remains essential for filtering results, as AI agents excel at code analysis but struggle with complex, multi-step bug sequences.
  • This shift necessitates new structural standards for Web3, including formal agent identity (EIP-8004) and payment protocols (x402), alongside expanded bug bounties.

Why It Matters

This case study demonstrates a paradigm shift in cybersecurity where the bottleneck moves from vulnerability discovery to result validation, highlighting that AI generates high volumes of data but requires significant human oversight to distinguish signal from noise. For AI practitioners and security researchers, it underscores the critical need for robust triage mechanisms and automated verification pipelines when deploying autonomous agents for complex tasks. Furthermore, it signals the industry's move toward structured, autonomous AI operations in decentralized networks, necessitating new standards for agent identity and economic interaction.

Technical Details

  • Vulnerability Discovered: A remotely-triggerable panic in libp2p's gossipsub protocol, fixed as CVE-2026-34219, affecting Ethereum consensus clients.
  • Agent Architecture: Four distinct roles operate in parallel without a central coordinator: Recon (hypothesis generation), Hunting (code path tracing and reproducer building), Gap-filling (coverage tracking and next hypotheses), and Validation (independent re-checking).
  • Verification Standard: A candidate is only accepted as a finding if it includes a self-contained artifact that reproduces the failure against production code, ensuring reproducibility by third parties.
  • False Positive Filtering: The system must automatically filter three common AI errors: panics exclusive to debug builds, artificial internal value construction, and formal proofs that do not constrain actual runtime behavior.
  • Coordination Mechanism: Agents coordinate their work through version control systems rather than a centralized command structure, allowing for distributed yet synchronized efforts.

Industry Insight

Security teams must invest heavily in triage infrastructure and automated validation pipelines, as the cost of processing AI-generated findings will likely outweigh the cost of generating them. Organizations should develop formal standards for AI agent identity and autonomous payments to manage the increasing role of non-human actors in critical infrastructure. Finally, while AI accelerates the breadth of code analysis, human expertise remains indispensable for contextual judgment, particularly in identifying subtle, multi-step vulnerabilities that AI models currently miss.

TL;DR

  • 以太坊基金会协议安全团队通过协调多个AI代理,成功发现并修复了libp2p gossipsub组件中一个可远程触发的恐慌漏洞(CVE-2026-34219)。
  • AI代理被分配侦察、狩猎、填补空白和验证等特定角色,通过版本控制系统进行去中心化协作,而非依赖中央协调器。
  • 核心挑战在于“信号与噪声”的筛选,AI生成的候选结果多为误报或重复项,真正的价值在于建立严格的验证流程以过滤“自信但无用”的输出。
  • 发现的关键不在于AI能多快找到Bug,而在于如何自动且高效地剔除错误假设,确保每个有效发现都包含能在生产代码中复现故障的自包含工件。
  • 这一实践标志着AI安全审计的重心从“发现漏洞”转向“验证结果”,强调了人类判断在最终确认中的不可替代性。

为什么值得看

这篇文章揭示了AI在网络安全领域应用范式的重大转变:生成能力已不再是瓶颈,可信度验证成为核心难点。对于AI从业者和安全专家而言,它提供了构建自动化AI代理工作流、设计严格验证管道以及理解人机协作新模式的宝贵实战经验。

技术解析

  • 去中心化代理协作架构:以太坊基金会运行多个并行AI代理,通过版本控制系统协调工作,无中央协调器。代理角色分工明确,包括将攻击面转化为假设的Recon、追踪代码路径的Hunting、编写后续假设的Gap-filling以及独立复查的Validation。
  • 严格的验证标准:只有包含“自包含工件”(self-contained artifact)的候选项才被视为有效发现。该工件必须能在未参与编写的第三方环境中,针对真实代码复现故障,从而排除仅在调试构建中触发或人为构造内部值的虚假报告。
  • 常见误报类型识别:团队总结了三种典型的AI误报模式:仅存在于调试构建中的恐慌、通过非真实输入方式手动构建内部值的复现器、以及未能约束实际关注行为的形式化证明语句。
  • 自动化过滤机制:鉴于AI生成无用版本的速度与真实版本相当且同样自信,系统必须采用自动化检查来快速拒绝错误结果,依靠难以辩驳的证据支持真实发现,而非依赖人工初步筛选所有输出。

行业启示

  • 安全重心转移:AI安全审计的核心瓶颈已从“发现漏洞”转移到“验证漏洞”。组织需要建立更强大的自动化验证管道和信任评估机制,以应对AI生成的高噪声输出。
  • Web3基础设施标准化:随着AI代理能力的提升,行业需推动结构性标准,如代理身份注册(EIP-8004)、自主微支付(x402)以及纵深防御框架,以支持大规模、自动化的AI代理协作与安全交互。
  • 人机协作的新定义:尽管AI在代码分析和假设生成上表现优异,但在处理跨步骤复杂逻辑和最终确认真实性方面仍显不足。人类专家的判断力仍是确保发现真实性的“秘密酱料”,未来工作流应侧重于利用AI扩大搜索范围,由人类聚焦于高价值结果的验证。

Disclaimer: The above content is generated by AI and is for reference only. 免责声明:以上内容由 AI 生成,仅供参考。

Agent Agent Security 安全 Open Source 开源