Mastodon Feed
Boosted by fromjason ("fromjason.xyz ❤️ 💻"):
pluralistic@mamot.fr ("Cory Doctorow") wrote:
This creates a new security vulnerability, "slopsquatting," in which a malicious actor creates a library with the expected name, which replicates the functionality of the real library, but also contains malicious code:
https://www.theregister.com/2025/04/12/ai%5Fcode%5Fsuggestions%5Fsabotage%5Fsupply%5Fchain/
23/