@JustinDerrick@mstdn.ca @cstross@wandering.shop this is a sufficiently well-known problem that there is now an established class of software attacks that is based upon predicting fictitious library names likely to be generated by ChatGPT or other LLMs, then publishing libraries under those names containing malicious code.