This phenomenon is called “hallucination of packages – when it suggests to use a third -party package that does not actually exist. The problem is that the attackers can use it and upload the malicious code to such a package. The user will then create malicious software without suspicion of anything and access his system.
Joe Preklen’s work, said that such mistakes appeared even when entering the most ordinary teams and programmers do not always notice the potential danger. Moreover, according to researchers, 97% of the developers already use productive AI in their work and are written today with the participation of nervous networks up to 30% of the code.
During the analysis, more than 2 million Python and JavaScript code were created with connections to libraries that do not exist more than 440 thousand. At the same time, the GPT models made such errors four times less than open alternatives.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
