A self-orchestrating team of LLM agents has fully autonomously discovered more than 20 server-side vulnerabilities, including remote out-of-bounds writes in the Linux kernel’s ksmbd. The project used a “drunk” inference-time compute strategy to find mismatches between documentation and code across major targets like Docker, CUPS, and OpenSSL.