The AI recommended making the storage bucket public, or setting cloud file storage to "anyone with the link." When challenged, it justified this by saying every company does it.
这里存在一个逻辑谬误,即诉诸普遍性谬误(apppeal to popularity)。AI声称'每家公司都这么做'并不能证明这是安全的做法。这混淆了普遍做法与安全实践之间的区别。改进方法应该是提供具体的、基于证据的安全标准,而不是依赖行业普遍行为作为安全依据。