Technology

58142 readers

4356 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS

[email protected]

199

AI bots hallucinate software packages and devs download them (www.theregister.com)

submitted 5 months ago by [email protected] to c/[email protected]

12 comments fedilink hide all child comments

Several big businesses have published source code that incorporates a software package previously hallucinated by generative AI.

Not only that but someone, having spotted this reoccurring hallucination, had turned that made-up dependency into a real one, which was subsequently downloaded and installed thousands of times by developers as a result of the AI's bad advice, we've learned. If the package was laced with actual malware, rather than being a benign test, the results could have been disastrous.

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 22 points 5 months ago (1 children)

And someone recently told me the Xz exploit doesn't matter because no developer is stupid enough to install beta releases to prod systems lol.

Laziness and/or low skills leads to a lot of IT failures.

[–] [email protected] 1 points 5 months ago

Another way of looking at it; If there exist a release then it will be deployed to prod.