Detect AI-hallucinated packages before you install them.
Project description
slopcheck
Detect AI-hallucinated packages before you install them.
When your AI coding assistant suggests flask-gpt-helper or easy-requests, those packages probably don't exist. But someone might register them as malware before you notice. That's slopsquatting.
slopcheck catches it first.
Install
pip install slopcheck
Or one-liner if you're in a hurry:
Mac/Linux:
curl -fsSL https://raw.githubusercontent.com/0xToxSec/slopcheck/main/install.sh | bash
Windows (PowerShell):
irm https://raw.githubusercontent.com/0xToxSec/slopcheck/main/install.ps1 | iex
Usage
Scan your project
# Auto-detect dependency files in current directory
slopcheck .
# Scan a specific file
slopcheck requirements.txt
Safe install (check first, install if clean)
# Instead of: pip install flask requests sketchy-package
slopcheck install flask requests sketchy-package
# Auto-detects ecosystem from your project (package.json = npm, etc.)
# Or force it:
slopcheck install express lodash --ecosystem npm
# Install suspicious packages anyway (slop is ALWAYS blocked):
slopcheck install some-package --force
Slop gets blocked. Always. Suspicious packages get skipped unless you pass --force. Clean packages install normally through your real package manager.
Auto-fix (remove slop from your files)
# Scan and auto-remove hallucinated packages
slopcheck . --fix
# Fix a specific file
slopcheck requirements.txt --fix
SLOP packages get commented out with # [slopcheck] removed: so you can see what was killed. JSON files (package.json, Pipfile.lock) get the keys deleted.
Set up git hook (one command)
slopcheck init
That's it. Now slopcheck runs before every commit. If slop is found, the commit is blocked. Run slopcheck . --fix to clean up, then commit again.
Check a single package
slopcheck flask-gpt-helper --pkg pypi
slopcheck react-ai-utils --pkg npm
slopcheck easy-http --pkg crates.io
slopcheck github.com/fake/module --pkg go
Output
[SLOP] flask-gpt-helper (pypi)
> Package 'flask-gpt-helper' does not exist on pypi. Your AI made it up.
> Name ends with '-helper' -- classic LLM naming pattern
[SLOP] reqeusts (pypi)
> Package 'reqeusts' does not exist on pypi. Your AI made it up.
? Did you mean: requests
[SUS] easy-requests (pypi)
> Name starts with 'easy-' -- classic LLM naming pattern. Package exists but the name screams 'LLM bait'.
[OK] requests (pypi)
JSON output (for CI)
slopcheck requirements.txt --json
What it detects
- Non-existent packages -- the #1 signal. If it's not on the registry, your AI made it up.
- Brand new packages -- created in the last 7 days? Probably registered to trap you.
- Low downloads -- under 100 downloads means nobody uses it.
- Hallucination patterns -- LLMs love naming packages
{popular-lib}-{ai|gpt|helper|utils}. We check for these patterns. - Typosquats -- Levenshtein distance check against popular packages with "did you mean?" suggestions.
- Missing repo links -- legitimate packages almost always link to source code.
Supported ecosystems
| Ecosystem | Dependency files | Registry |
|---|---|---|
| PyPI | requirements.txt, pyproject.toml, Pipfile, Pipfile.lock |
pypi.org |
| npm | package.json |
npmjs.org |
| crates.io | Cargo.toml |
crates.io |
| Go | go.mod |
proxy.golang.org |
Exit codes
| Code | Meaning |
|---|---|
| 0 | Clean -- all packages check out |
| 1 | Suspicious -- some packages deserve a second look |
| 2 | Slop detected -- hallucinated or dangerously new packages found |
Options
slopcheck [target] [options]
target Directory, file, or package name (default: .)
--pkg ECOSYSTEM Check single package (pypi, npm, crates.io, go)
--workers N Parallel registry checks (default: 10)
--json JSON output for CI pipelines
--fix Auto-remove SLOP packages from dependency files
GitHub Action
Add this to your repo at .github/workflows/slopcheck.yml and every PR that touches dependency files gets scanned automatically:
name: slopcheck
on:
pull_request:
paths:
- 'requirements*.txt'
- 'pyproject.toml'
- 'Pipfile'
- 'package.json'
- 'Cargo.toml'
- 'go.mod'
jobs:
slopcheck:
runs-on: ubuntu-latest
permissions:
pull-requests: write
steps:
- uses: actions/checkout@v4
- uses: 0xToxSec/slopcheck@main
with:
path: '.'
fail-on: 'slop'
If slop is found, the action fails the check and drops a comment on the PR with the full report. Set fail-on: 'sus' to be stricter.
License
MIT
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file slopcheck-0.4.0.tar.gz.
File metadata
- Download URL: slopcheck-0.4.0.tar.gz
- Upload date:
- Size: 19.8 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e926fd74c6ceaa6eb160315278437520dc4f8642e489eb156c3e755fadb3c6f8
|
|
| MD5 |
8238fcb6120d7cf577fe0e70deeabf4c
|
|
| BLAKE2b-256 |
0b2fa1e7f078da19678f1cff3cc0bd598ae9497ba11e33ed9e1a6d9211431fbc
|
File details
Details for the file slopcheck-0.4.0-py3-none-any.whl.
File metadata
- Download URL: slopcheck-0.4.0-py3-none-any.whl
- Upload date:
- Size: 19.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
21e62c50b01411546c7dd3d3d41ce1da837b6e92ccf453ad5bbcf8be1c3d9c8a
|
|
| MD5 |
8c43985f890340a1e3cbad7ad44bf114
|
|
| BLAKE2b-256 |
003a97e3494faa0cd17130e8fb967824623cde8331f2be050c346a076c9eb992
|
