LLM-produced code could make us much more vulnerable to supply-chain attacks

Newly published research shows AI-generated computer code is rife with references to non-existent third-party libraries, creating a golden opportunity for supply-chain attacks that poison legitimate programs with malicious packages that can steal data, plant backdoors, and carry out other nefarious actions.