So, I’ve explored AI coding, but my conclusion up to this point has been that it’s interesting, but the code is sometimes a mess, and sometimes it will completely crater the project to the point where you just have to throw it all away and start over. After reading this article, I keep wondering if we’re really being productive or just creating lots of crappy code at machine speeds now. It’s one thing to say that we are using a “security agent,” for example, to ensure the security of the code, but quite another to actually know (or at least strongly believe) that our code is really secure. With all the froth of generating thousands of lines of code, how are we sure? In some sense, my question is whether we’re building a Winchester Mystery House or a house of cards.
Software developers working on their own have built monstrosities before (not as quickly) but it seems likely that this is a skill issue and we will learn how to use these tools better. You can tell coding agents to work on cleaning up code, improving the architecture, and so on.<p>Maybe adopting some hard constraints on code complexity that agents have to work within would help?
Yep, surely humans write bad code, too. But not nearly as fast. This feels a lot like hiring oodles of hyper-productive junior developers. Are we going to get true productivity out of that or a scrambled mess? I don’t know the answer to that. Or maybe the models get so much better that it’s like hiring oodles of senior developers and architects and the payoff is real.
Humans just don't commit the same kinds of booboos as LLMs do. My team at work recently started using LLM agents for coding and I have since seen WTFs that I know no human would ever write.<p>It's not all bad! It's also enormously fun. I've been able to work on things I'd been putting off forever. When I can use LLM agents, I less often feel paralyzed by perfectionism, which is probably the biggest productivity boost I get. My own code has not decreased in quality, and I think that for the truly important things, neither has that of my colleagues.<p>But LLMs don't make junior dev mistakes. They make "my brain has worms in it" mistakes.
It used to be that most college graduates had little or no experience working on large-scale projects. Now they’ll get to speed-run the issues involved in maintaining a large project.
> 1,000 lines of code per commit is ~2 magnitudes higher than what a human programmer writes per day.<p>Relevant historical context: <a href="https://www.folklore.org/Negative_2000_Lines_Of_Code.html" rel="nofollow">https://www.folklore.org/Negative_2000_Lines_Of_Code.html</a><p>When Apple Lisa managers started requiring weekly line-of-code counts in 1982, Bill Atkinson had just rewritten QuickDraw's region engine with a simpler algorithm that was 6× faster and 2,000 lines shorter, so he submitted -2000 on the form. Management quietly stopped asking him to fill it out.
I’d just like to thank the author for giving the correct t reason for the Winchester Mystery House instead of just blindly repeating the “she went crazy” line story as truth.
Does anyone have numbers for churn vs. cumulative code?<p>Most of my commits (hand written and AI) have delete counts that are 75-110% the added line count.<p>The point that many developers will probably forget to tell the LLM to run cleanup/refactoring paths is probably true though. (I’ve definitely found ghost-chasing bugfixes in all sorts of corners of LLM generated code).
The "cathedral" in ESR's essay wasn't proprietary closed source, it was the GNU project.
The essay also didn't kick anything off; it was an attempt to document something that was already in full swing.
GNU didn't kick anything off. It was an attempt to document something that was already in full swing.<p>What was in full swing was Open Source, powered by scratch-your-own-itch. What was taking time was for the business world to learn the lessons by both carrot (Linux) and stick (Unix Wars, vendor lock-in, dozens of crappy competing standards). When Steve Balmer winds up using your language, you moved the ball.<p>Many ideas from The Cathedral & The Bazaar made it into The Lean Startup. The Cathedral development model was more related to waterfall. YC was already chugging along, but you can bet your ass PG was already steeped in the tea.
Most of free software (incl the BSD stuff) was like that. The bazaar was an attempt to characterise the new linux style way of doing it.
Not really. From the essay: “I had been preaching the Unix gospel of small tools, rapid prototyping and evolutionary programming for years. But I also believed there was a certain critical complexity above which a more centralized, a priori approach was required. I believed that the most important software (operating systems and really large tools like the Emacs programming editor) needed to be built like cathedrals, carefully crafted by individual wizards or small bands of mages working in splendid isolation, with no beta to be released before its time.”<p>So the Unix-philosophy small tools that constitute an important part of the GNU project are excluded. Rather, it’s about any programs of significant complexity, like Emacs (and likely GCC) and many commercial products. While the cathedral model doesn’t imply closed source, it implies building “in […] isolation”, rather than in the open. It may or may not remain proprietary and/or closed source.<p>Linux demonstrated to ESR that complex projects can also be built in the open with many collaborators, and don’t necessarily require the cathedral; which inspired the essay.
The bottom line is that a lot of software types assume the cathedral vs. bazaar refers to closed source vs. open source and they’re simply wrong.
Originally "the GNU project" was supposed to be an operating system. That might be what the parent post was referencing.
> Unix-philosophy small tools that constitute an important part of the GNU project<p>The statement you chose makes a carve-out for Unix, not GNU. It doesn't support "not really."
What I'm saying "not really" to is the claim that the "cathedral" does only refer to the GNU project and not to proprietary closed source. This is not the case. It refers to certain portions of GNU, as well as to certain segments of proprietary closed source. Neither GNU nor proprietary closed source is a criterion for the "cathedral". The criterion is the size and complexity of the software, independent of whether it is proprietary or not, or closed source or not.<p>GNU follows the Unix philosophy. ESR wrote The Art of Unix Programming [0] in which he writes extensively about it. GNU was envisioned to be a clone of Unix [1].<p>[0] <a href="http://www.catb.org/esr/writings/taoup/html/" rel="nofollow">http://www.catb.org/esr/writings/taoup/html/</a><p>[1] <a href="http://www.catb.org/esr/writings/taoup/html/apa.html" rel="nofollow">http://www.catb.org/esr/writings/taoup/html/apa.html</a>
> The criterion is the size and complexity of the software<p>The criterion is the development process, not the complexity. Linux is complex, but not a Cathedral.<p>I don't want to split hair with your words more. For context, FSF hard liners since the dawn of the OSI were distorting the meaning of CatB to deflect criticism from themselves. FSF supporters also very successfully promoted "FLOSS" instead of bare _OSS, giving lots of later-comers the illusion that "free/libre" was an expansion pack for OSS when OSS came later, a very intentional evolution of the dogmatic "free" software movement.<p>The choice of "Cathedral" is an extremely obvious symbol when you consider the Protestant reformation as a defiance of Vatican, an overly central system where decisions can only flow from the top. There are a lot of metaphors ESR could have chosen from, but the "cathedral" rhymed with the undertones of the real tension between the many OSS practitioners who have divers motivations and the FSF's plan to slap GNU stickers on every piece of software on Earth while blessing their own cardinals at the FSF Vatican and excommunicating any dissent. Given that kind of very overt signalling, it's just not defensible to argue any other primary target than the FSF <i>and</i> the overly central development process they were dependent on to maintain control over projects.
It wasnt one thing, gnu is a case of cathedrals. Corps are usually more cathedrally than bazaary because of their hierarchical top down structure, but ymmv, an elon musk or steve jobs company will be more cathedral than a conglomerate like unilever or a google or microsoft
as an aside the lore about the "Winchester Mystery House" is all made up hogwash. here is one place where it is debunked:<p><a href="https://skepticalinquirer.org/2024/08/the-truth-about-sallie-winchester-and-the-mystery-house-that-never-was/" rel="nofollow">https://skepticalinquirer.org/2024/08/the-truth-about-sallie...</a>
Seems about right and American: pervert a dead person's reputation and personality into a cartoonish mythological character to fabricate lore for a profitable tourist attraction. Add doors to nowhere and guided tours repeating misinformation, exit through the gift shop.<p>PS: While I grew up in San Jose, my parents unfortunately took me on that tour once. It looked extremely staged and all about $$$ then and I was a dumb kid. It occupied a plot of land in a very busy area across what is now Santana Row and beside the original hemispherical buildings of the first Century 21 theaters that originally had massive parking lots that extended all the way to Winchester Blvd back when people went to the movies. The parking lot was only eclipsed by the nearby Winchester Drive-In in Campbell. Where Santana Row is at the corner of Stevens Creek and Winchester was the car dealership Courtesy Chevrolet.
Too bad Winchester didn't become an architect.<p>Julia Morgan, Winchester's contemporary, was the first woman to obtain an architecture license in California in 1904 and had a very prolific career throughout the state including her most famous - Hearst Castle - commissioned in 1919.
>"Sarah didn’t build her mansion to house ghosts, she built her mansion because she liked architecture."<p>That quote from the article directly-contradicts what multiple tour-guides at the Winchester Mystery House in California have told me over many decades. Specifically: Sarah Winchester built the house because she was told that the ghosts of all those killed by Winchester guns would haunt her unless her house was sufficiently labyrinthine, and endlessly expanding; to confuse them.<p>Visit the house (the tour is rad) and see for yourself the architecture. There is no reasonable explanation for internal doors leading to sheer-drops, throughout the house, and other bizarre 'traps', apart from Sarah legitimately believing she had to confuse the ghosts.<p>This is more akin to a programmer consciously obfuscating and expanding a codebase to make it impossible for their angry-users to ever finish auditing it, or to determine its author.
> That quote from the article directly-contradicts what multiple tour-guides at the Winchester Mystery House in California have told me over many decades.<p>The house is run by an organization that has a very vested interest in playing up the supernatural element of the house. Some tour guides have gone on record discussing their frustrations with having to repeat known falsehoods to guests.<p>> Visit the house (the tour is rad) and see for yourself the architecture. There is no reasonable explanation for internal doors leading to sheer-drops, throughout the house, and other bizarre 'traps', apart from Sarah legitimately believing she had to confuse the ghosts.<p>Parts of the house were damaged by the 1906 earthquake and were not rebuilt. A lot of the weird path-to-nowhere stuff is "the destination collapsed during the earthquake", nothing particularly mysterious there.
> the tour is rad<p>As others have noted, the guides are full of tall tales. I grew up in San Jose and remember when the property next to the Winchester Mystery House was a drive-in theater, and before the House was fire-damaged. The B.S. was well-known even then. My father, who moved to San Jose in the 1950s, even explained it to me as a child after some friends who were into ghost stories told me about it.<p>I don't know if it's still there, but my favorite part of the site was the detached museum showing some of the earliest pieces developed by the Winchester Repeating Arms Co. Easy to miss as it is not part of the house or the guided tour.
Refactoring w/o removing all dead code.
> Which is why maintainers feel like they’re drowning.<p>How about actually funding opensource project mantainers? We have non profit orgs, that eat billions of public funds. We spend biilions for influencing hardly measurable metrics, with very nebulous benefits in far distant future.<p>Direct sponsoring of critical projects would have far better and concrete benefits.
We should fund them, sure, but that’s not enough.<p>The problem is the cost is so wildly asymmetric. When everyone with a computer and a subscription can vibe code low quality features, when everyone can submit dubious security bug reports, no amount of funding will even that out. Producing submissions is essentially free while triaging and reviewing remains very expensive.<p>3 years ago the cost was asymmetric in the other direction. The cost of writing code was high. The cost of finding security bugs was extremely high. The cost of triaging and reviewing was basically the same as it is today.<p>Large corporations that are well funded are facing the exact same issues internally right now. With agent output so cheap, how do you deal with the deluge? It’s not practical or desirable to have your best engineers doing nothing but reviewing generated code, some of which is likely very low value.
This plus accountability is the way; and what I think I mean here is "accountability for those who choose to USE (maybe not create) the software in a way that may be harmful."<p>If you'd like to push that accountability to the developers, that can work, but they should be paid or otherwise compensated accordingly for the risk they take on.
Why spend more money just to trawl through BS contributions? Cutting off the nonsense would be both cheaper and have the same result.<p>More funding for more development of open source is a good thing, but more money to ease the burden imposed by an ever rising tide of slop is not a solution.
LLMs can drown a fleet of paid maintainers. Machines can generate code (even good code, not just slop) far faster than humans can evaluate it.
The movie Winchester, book from a local author (<a href="https://www.losaltosonline.com/community/santa-clara-valley-lives-new-edition-of-sarah-winchester-biography-solves-many-mysteries/article_7b6a33f0-53f4-11ed-802a-9fe825e9f515.html" rel="nofollow">https://www.losaltosonline.com/community/santa-clara-valley-...</a>) and going to the tour itself makes me wonder if Sarah Winchester invites the controversy over why she built the house. What would a rich woman during her time do for fame that outlasts her? Chase crazy architecture ideas if you liked architecture maybe. Make it so the home becomes a public place.<p>The Winchester house a developer builds is only worth something if it delivers tangible value. The market clearly thinks one way, but plenty of people are still skeptical. The cathedral and bazaar delivered value in different ways, and the need came before the solution.
Does anyone know what “agent tea” is in the second graph? There is a paper about a protocol but it seems a bit obscure to be featured in this context and the other two points on the graph are models.
>Gary Tan’s personal AI committee gstack is a Winchester Mystery House constructed mostly from Markdown.<p>Winchester Mystery Potemkin Village.
I'm pretty sure that I could consistently spew 1000 lines a day/per commit if it was mostly cut-n-pasting of existing code, that I had complete access to, with some minor variations.
Before, when code was laboriously produced by hand, sharing it so other people could use it was seen as a gift. Today there is no such incentive. If I pick up some software and find a bug in it or a feature it's missing, I can (have Claude) fix that bug or add that feature, and <i>keep it to myself</i>. Why bother contributing that fix or feature to the world if it's just going to be met with complaints and accusations of it being vibe coded slop? Just as maintainers don't owe me anything, by the rules of the license, if I'm not distributing the binaries, I don't owe the world a public fork of the source code with my changes.<p>The Winchester mystery house is notable for becoming a public tourist attraction instead of a closed private piece of real estate. How do we evolve the Cathedral and the Bazaar to the modern era? I don't know. I know that my life on my computer is drastically improved by spending an afternoon a week building better tooling for myself, and I realize it's built on top of other's contributions to the world, but at the same time, I don't know how to contribute back under the new regime.
[dead]
[flagged]