Hi Team, Nowadays a really hot topic in all Apache Projects is AI and I wanted to kick off a discussion around a new SPIP.I've been putting together. With the sheer volume of contributions we handle, relying entirely on PR templates and manual review to filter out AI-generated slop is just burning out maintainers. We've seen other projects like curl and Airflow get completely hammered by this stuff lately, and I think we need a hard technical defense.
I'm proposing the Automated Integrity Validation (AIV) Gate. Basically, it's a local CI job that parses the AST of a PR (using Python, jAST, and tree-sitter-scala) to catch submissions that are mostly empty scaffolding or violate our specific design rules (like missing.stop() calls or using Await.result). To keep our pipeline completely secure from CI supply chain attacks, this runs 100% locally in our dev/ directory;zero external API calls. If the tooling ever messes up or a committer needs to force a hotfix, you can just bypass it instantly with a GPG-signed commit containing '/aiv skip'. I think the safest way to roll this out without disrupting anyone's workflow is starting it in a non-blocking "Shadow Mode" just to gather data and tune the thresholds. I've attached the full SPIP draft below which dives into all the technical weeds, the rollout plan, and a FAQ. Would love to hear your thoughts! https://docs.google.com/document/d/1-PCSq0PT_B45MbXVxkJ_E3GUHvK-8VV6WxQjKSGEh9o/edit?tab=t.0#heading=h.e8ahm4jtqclh -- Regards, Viquar Khan *Linkedin *-https://www.linkedin.com/in/vaquar-khan-b695577/ *Book *- https://us.amazon.com/stores/Vaquar-Khan/author/B0DMJCG9W6?ref=ap_rdr&shoppingPortalEnabled=true *GitBook*-https://vaquarkhan.github.io/microservices-recipes-a-free-gitbook/ *Stack *-https://stackoverflow.com/users/4812170/vaquar-khan *github*-https://github.com/vaquarkhan/aiv-integrity-gate
