Inedo
[🎥 New Video] AI-Generated Package Risks: Protecting Your Software Supply Chain with ProGet
AI coding assistants are helping developers write software faster than ever, but they can also introduce new supply chain risks. From hallucinated packages that don’t exist to malicious packages designed to imitate legitimate dependencies, AI-generated package recommendations can make it easier for risky components to find their way into development environments and production systems.
In this video, we explore the growing risks of AI-suggested packages, including slopsquatting and hallucinated dependencies, and why manual package review alone is often insufficient. We also demonstrate how a package approval workflow in ProGet helps teams review, control, and govern the packages entering their software supply chain, reducing the risk of malicious or non-compliant dependencies.
For more tutorials, product updates, and ProGet tips, be sure to subscribe to the Inedo YouTube channel for the latest videos from Inedo.