Can you trust ChatGPT’s package recommendations?

vulcan.io

cross-posted to:
programming@programming.dev

Can you trust ChatGPT’s package recommendations?

vulcan.io

activepeople@kbin.social to

Programming@kbin.social · 1 year ago

cross-posted to:
programming@programming.dev

ChatGPT can offer coding solutions, but its tendency for hallucination presents attackers with an opportunity. Here's what we learned.

“* People ask LLMs to write code

LLMs recommend imports that don’t actually exist
Attackers work out what these imports’ names are, and create & upload them with malicious payloads
People using LLM-written code then auto-add malware themselves”

You must log in or register to comment.

Chat

Programming@kbin.social

programming@kbin.social

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !programming@kbin.social

This magazine is dedicated to discussions on programming languages, software development, and coding. Whether you are a beginner programmer or an experienced developer, this is the place for you. Here you can share your knowledge, ask questions, and engage in discussions on topics such as coding languages, software engineering, web development, and more. From the latest trends and frameworks to tips and tricks for debugging, this category covers a wide range of topics related to programming.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

1 user / day
1 user / week
1 user / month
6 users / 6 months
5 local subscribers
5 subscribers
101 Posts
196 Comments
Modlog

mods: