I think we should consider enforcing some mechanism to prevent automatic, ai-induced dependency downloading to enable abusers to cause automatic execution of arbitrary code any time a user of AI updates any dependency graph.
NPM is currently getting abused frequently via this vector.
NPM has the unfortunate aspect that when you run npm install it will enable code execution of code provided by a third-party.
In the age of AI, a hacker could pose as a library useful for something, and do remote code execution via the ability to do something seemingly innocuous and very common in a workplace environment.
Corporate sabotagists could easily take advantage of this mechanism of compromise and infiltrate common corporate environments.
