Slopsquatting

Slopsquatting image
The term slopsquatting was coined by PSF Developer-in-Residence Seth Larson and popularized in a recent post by Ecosyste.ms creator Andrew Nesbitt. It refers to the practice of registering a non-existent package name hallucinated by an LLM, in hopes that someone, guided by an AI assistant, will copy-paste and install it without realizing it’s fake.


It’s a twist on typosquatting: instead of relying on user mistakes, slopsquatting relies on AI mistakes.

Source: https://socket.dev/blog/slopsquatting-how-ai-hallucinations-are-fueling-a-new-class-of-supply-chain-attacks
Rosie Sherry
15th April 2025
Slopsquatting – when an LLM hallucinates a non-existent package name, and a bad actor registers it maliciously. The AI brother of typosquatting. 

Credit to Seth Larson for the name
Source: https://mastodon.social/@andrewnez/114302875075999244
Rosie Sherry
15th April 2025
Add Definition
RiskStorming image

RiskStorming

An educational tool to explore Risk Analysis and Quality Strategy building with the whole team.
Explore MoT
Castelo Branco Meetup image

Castelo Branco Meetup

Tue, 6 May
The Future of Testing in an Automated World: Embracing Continuous Learning and A
MoT Software Testing Essentials Certificate image
MoT Software Testing Essentials Certificate
Boost your career in software testing with the MoT Software Testing Essentials Certificate. Learn essential skills, from basic testing techniques to advanced risk analysis, crafted by industry experts. Early access available now at a discounted rate!
Leading with Quality
Leading with Quality
A one-day educational experience to help business lead with expanding quality engineering and testing practices.
This Week in Testing image
This Week in Testing
Debrief the week in Testing via a community radio show hosted by Simon Tomes and members of the community
Subscribe to our newsletter
We'll keep you up to date on all the testing trends.