Open-source project Tldraw announces suspension of accepting external contributions due to overwhelming AI-generated junk code. Such “AI Slop” severely drains maintainers’ energy, and the community is exploring the establishment of reputation systems or escrow mechanisms to address this issue.
Overwhelmed by AI-generated content, open-source project Tldraw suspends external PRs
A popular open-source web drawing project on GitHub with over 40,000 stars, Tldraw, recently announced that it will suspend accepting pull requests (PRs) from external contributors.
Developer steveruizok pointed out that, like many open-source projects on GitHub, the team has recently observed a significant increase in contributions generated entirely by AI tools. Although some submissions are correct in form, most lack complete context, misunderstand the codebase, and the submitters rarely participate in discussions afterward.
steveruizok emphasized that an open PR represents a commitment from maintainers, meaning the contribution will be carefully reviewed and seriously considered for inclusion. To keep this promise meaningful, the team must implement stricter filtering.
Currently, Tldraw’s policy is to close all external PRs first, only reopening those that are genuinely considered. This is in the best interest of the project and code quality. Although it’s regrettable to close public contributions, steveruizok stated that they will only consider reopening once GitHub introduces better management tools.
Curl and OCaml also affected, AI Slop rampant
The decision to suspend pull requests at Tldraw is just one recent example of AI Slop (AI garbage) impacting the open-source community. Similar discussions have been heating up on Reddit and Hacker News forums.
A Reddit discussion pointed out that, Daniel Stenberg, maintainer of the well-known transfer tool Curl, revealed that the project is suffering from AI-generated erroneous reports being used in a “DDoS attack.” Approximately 20% of submissions in 2025 are AI garbage content, severely consuming volunteer maintainers’ time.
Additionally, OCaml maintainers have rejected a 13,000-line pull request generated by AI, citing that reviewing AI-produced code is more laborious than manually written code, and a flood of low-quality PRs could lead to system crashes.
Discussions on Hacker News focus on issues with GitHub’s mechanisms.
Some users believe that making PR counts prominent on the page encourages a culture of submitting for the sake of data.
The current dilemma with generative AI in open-source communities stems from many inexperienced developers using AI tools to generate worthless code, expecting maintainers to merge quickly. This behavior is damaging the collaborative trust within open-source communities.
Possible solutions: whitelist or reputation systems
In response to the harassment of garbage code (Shitcode) in open-source communities, Bitcoin developer Bryan Bishop (kanzure) responded on Tldraw’s GitHub page that he had proposed to the Bitcoin Core development team to “privatize” the development process, shifting to a model limited to invited members or requiring whitelist inclusion to post comments and PRs.
Although this might violate the spirit of Bitcoin’s openness, Bryan Bishop believes that it can effectively reduce noise and useless debates caused by non-contributors, allowing developers to focus on the technical aspects and prevent valuable attention from being diverted by malicious or invalid interactions.
Besides privatization, software engineer Steve Rodrigue also suggests establishing cross-project contributor reputation systems, verifying account value through trust networks.
Another developer is working on a blockchain-based “Stake-to-PR” protocol, requiring submitters to pay a small deposit, which is forfeited if the content is deemed AI garbage, and fully refunded if it is a valid contribution. The goal is to raise the barrier to curb AI abuse.
Further reading:
AI content flood! Web3 Dictionary names “Slop” as the 2025 Word of the Year, sparking heated discussions in the tech community
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Pi Network Scam Alert as Fake 2FA Links Target Users
A wave of scams is targeting Pi Network users during the Second Migration phase, with fake 2FA links tricking individuals into sharing wallet passphrases. Scammers exploit user urgency, leading to unauthorized wallet access. Users must prioritize security and only interact through official channels to protect their funds.
Coinfomania1h ago
Michael Saylor once again compared STRC to money market funds, sparking a retail frenzy.
Strategy company founder Michael Saylor compared his stock STRC to a money market fund on CNBC, drawing attention. STRC has a dividend of up to 11.5%, but it is not a true money market fund and carries high risks. Despite the SEC stating that its risks are significant, Saylor still attracts a large number of retail investors, and analysts remind that caution is needed to distinguish between them.
GateNews2h ago
LiteLLM Hacker Poisoning Incident: 500,000 Credentials Leaked, Cryptocurrency Wallets at Risk of Being Stolen, How to Check if You've Been Affected?
LiteLLM recently suffered a supply chain attack, resulting in the leak of hundreds of GB of data and 500,000 account credentials. The attackers exploited a vulnerability in GitHub's CI/CD to steal Trivy access credentials, subsequently inserting malicious code. This incident highlights the importance of supply chain security, and developers should enhance permission management and monitoring.
区块客2h ago
NPR Host Hacked by Crypto Scammers - U.Today
NPR host Scott Simon's X account was hijacked by cryptocurrency scammers, prompting a warning from colleague Steve Inskeep. The account has been locked to prevent further scams, highlighting a growing trend of targeting prominent journalists for fraud.
UToday2h ago
Distributed Capital's Shen Bo announces details of the $42 million in assets stolen in 2022.
Distributed Capital's Shen Bo announced the details of the asset theft incident on the X platform that occurred on November 10, 2022, involving $42 million in assets. The theft took place between 12:46 AM and 1:02 AM EST, using a Trust Wallet hot wallet on an iPhone 12 Pro Max. The victims include multiple ETH, BTC, and TRON addresses.
GateNews3h ago
The White House app is suspected of location tracking! Privacy risks and security vulnerabilities spark controversy.
The new official application launched by the U.S. government has drawn attention, with issues of data collection and privacy risks becoming the focus of discussion. Developers and researchers have pointed out that the app may access user locations and record online activities, presenting potential security hazards. Users' concerns about data transparency and privacy protection have subsequently increased.
GateNews3h ago
