Forum: The Wastelands BBS

AI hallucinates software packages - even if potentially poisonedwith malware

From rek2 hispagatos@rek2@hispagatos.org.invalid to alt.2600.madrid,alt.2600 on Tuesday, April 02, 2024 17:48:09

From Newsgroup: alt.2600

According to Bar Lanyado, security researcher at Lasso Security, one of the businesses
fooled by AI into incorporating the package is Alibaba, which at the time of writing still includes a pip command to download the
Python package huggingface-cli in its GraphTranslator installation instructions.

More on: https://www.theregister.com/2024/03/28/ai_bots_hallucinate_software_packages

Happy Hacking
ReK2
--
- {gemini,https}://{,rek2.}hispagatos.org - mastodon: @rek2@hispagatos.space
- [https|gemini]://2600.Madrid - https://hispagatos.space/@rek2
- https://keyoxide.org/A31C7CE19D9C58084EA42BA26C0B0D11E9303EC5
--- Synchronet 3.20a-Win32 NewsLink 1.114