Nycturne
Elite Member
- Joined
- Nov 12, 2021
- Posts
- 1,393
I think this bit from Doctrow is particularly relevant in light of the very recent (and almost successful) supply chain attack on OpenSSH.
Reading through the linked story this quote described, I had to pick up my jaw off the floor when it’s revealed that not only did a bunch of repos just start picking up this “typo-squatting” package the AI hallucinated, but Alibaba started referencing it in repo READMEs. And just to pour salt into the wound, the group that owned the official packages even started referencing it in their repo READMEs. It just seems nuts that we could very well be sleep walking into an era where attacks like these become even easier under the name of improved productivity.
The bit that describes my feelings about AI in programming better than I can, and why the above is such a concern:
Here's a fun AI story: a security researcher noticed that large companies' AI-authored source-code repeatedly referenced a nonexistent library (an AI "hallucination"), so he created a (defanged) malicious library with that name and uploaded it, and thousands of developers automatically downloaded and incorporated it as they compiled the code[…]
Reading through the linked story this quote described, I had to pick up my jaw off the floor when it’s revealed that not only did a bunch of repos just start picking up this “typo-squatting” package the AI hallucinated, but Alibaba started referencing it in repo READMEs. And just to pour salt into the wound, the group that owned the official packages even started referencing it in their repo READMEs. It just seems nuts that we could very well be sleep walking into an era where attacks like these become even easier under the name of improved productivity.
The bit that describes my feelings about AI in programming better than I can, and why the above is such a concern:
Automation centaurs are great: they relieve humans of drudgework and let them focus on the creative and satisfying parts of their jobs. That's how AI-assisted coding is pitched […]
But a hallucinating AI is a terrible co-pilot. It's just good enough to get the job done much of the time, but it also sneakily inserts booby-traps that are statistically guaranteed to look as plausible as the good code […]
This turns AI-"assisted" coders into reverse centaurs. The AI can churn out code at superhuman speed, and you, the human in the loop, must maintain perfect vigilance and attention as you review that code, spotting the cleverly disguised hooks for malicious code that the AI can't be prevented from inserting into its code.