CyberSecurityNews

Linus Torvalds Says Linux Is Not Against AI Projects, Backs Responsible LLM Use


Linux creator Linus Torvalds has told kernel developers that the Linux project is not anti-AI, arguing that artificial intelligence and large language models should be judged on whether they provide practical technical value.

He emphasized that developers will not be forced to use AI tools, but opposition should not prevent others from using them responsibly.

Torvalds made the remarks in a Linux kernel mailing-list discussion involving concerns over AI-assisted code review and the growing use of LLM-based tools by maintainers.

The exchange followed debate around Sashiko, an AI code-review tool that has drawn attention within the kernel development community.

Linux Takes a Technology-First Approach

In his response, Torvalds said the Linux kernel is not an “anti-AI” project and described AI as another tool available to developers. He stated that a tool’s usefulness, not ideological support or fear of new technology, should determine its place in the development process.

The Linux maintainer acknowledged that AI can create friction, including additional workload for maintainers and unreliable output that may require scrutiny. However, he argued that the appropriate response is to improve workflows so that LLM tools help maintainers rather than create more review burden.

That distinction is significant for one of the world’s most consequential open-source software projects. Linux kernel code underpins servers, cloud infrastructure, embedded devices, enterprise platforms, networking equipment, and a large share of modern computing systems, making code quality and patch review critical priorities.

Torvalds did not announce a mandate requiring kernel developers to adopt AI coding assistants, automated review systems, or LLM-generated patches. Instead, his position is that contributors should retain the freedom to use such tools when they are beneficial, while other developers remain free not to use them.

He also made clear that maintainers should assess contributions based on technical merit. In practice, that means an AI-assisted patch should still be expected to meet Linux kernel standards for correctness, maintainability, testing, and human review before it can be accepted.

For cybersecurity professionals, this remains an essential safeguard. AI-generated code and automated reviews can potentially identify defects faster, but they can also introduce inaccurate fixes, insecure logic, hallucinated technical details, or patches that appear plausible without addressing the root cause. Human maintainers remain responsible for validating changes that could affect system stability and security.

Torvalds’ comments signal that AI-assisted development is likely to remain part of Linux kernel engineering discussions rather than being rejected outright.

The focus will be on whether the technology reduces maintainer effort and improves outcomes without weakening the project’s rigorous review culture.

 Strengthen Your SOC by Accelerating Threat Detection & Rapid Investigations. -> Integrate ANY.RUN With Your SOC Now.



Source link