slopsquatting - Robuta Search

https://dev.to/depscope/i-benchmarked-10-llms-on-slopsquatting-up-to-87-installed-fake-packages-51e2 I benchmarked 10 LLMs on slopsquatting — up to 87% installed fake packages - DEV Community Apr 24, 2026 - 10 LLMs × 30 hallucinated npm/PyPI/Cargo/Go/Composer packages × 2 conditions. Baseline up to 87%, with DepScope MCP wired in: 2 hits across 299 classified runs... packages dev benchmarked 10 llms slopsquatting https://mastodon.social/@andrewnez/114302875075999244 Andrew Nesbitt: "Slopsquatting – when an LLM hallucinates a non-ex…" - Mastodon Slopsquatting – when an LLM hallucinates a non-existent package name, and a bad actor registers it maliciously. The AI brother of typosquatting. Credit to... andrew nesbitt slopsquatting llm hallucinates non https://www.contrastsecurity.com/security-influencers/slopsquatting-attacks-how-ai-phantom-dependencies-create-security-risks Slopsquatting Attacks: How AI Phantom Dependencies Create Security Risks Oct 21, 2025 - Slopsquatting exploits AI-generated phantom dependencies to inject malicious code. Learn how attackers target AI coding patterns and protect your supply chain. security risks slopsquatting attacks ai phantom