30% of all package recommendations from ChatGPT for python and js we're hallucinations. And that presents a real opportunity to sneak malware into your project.
I saw Bar Lanyado present this research as a talk at #BSidesSg on Friday. It was scary, and yet another reminder for us developers not to let AI chew our food for us.