Build Quality Checks With AI In Mind: Detecting Hallucinations and Fabricated Dependencies

What Changes When AI Writes Your Code

• Security vulnerabilities: studies show a large fraction of AI-generated solutions to common programming problems contain exploitable bugs, especially around input validation, authentication, and cryptography.
• Fabricated packages: language models sometimes recommend libraries or package names that do not exist in the ecosystem, opening the door for "typosquatting/slopsquatting" attacks if attackers later register those names.
• Hallucinated APIs and functions: models can invent methods, parameters, or configuration flags that look plausible but are absent from your actual SDKs or internal services.
• Requirement-conflicting logic: code that compiles and passes superficial tests but does the wrong thing compared to the original requirements (for example, mixing up `amountDue` and `amountPaid`).
• Unsafe defaults: use of insecure patterns such as broad CORS rules, permissive JWT validation, weak password policies, or debug logging of sensitive data.

Types of Hallucinations Your Gates Must Catch

• Logic hallucinations: wrong algorithms, missing edge-case handling, "happy-path only" code that breaks on real data.
• Mapping/type errors: incorrect assumptions about types or mappings between domain objects, leading to subtle data corruption.
• Naming confusion: variable or function names swapped or misused in ways that still compile but violate domain rules.
• Resource hallucinations: unbounded memory or CPU usage (for example, loading entire tables into memory), ignoring performance constraints.
• API / library hallucinations: calls to methods, endpoints, or configuration options that are not present in your versions of libraries or services.
• Security hallucinations: code that looks structured and "secure-ish" but quietly omits essential checks such as authorization, sanitisation, or rate limiting.

An AI-Aware CI/CD Quality Gate Architecture

• Pre-commit / local hooks — Enforce baseline formatting and linting. Optionally forbid direct committing of large AI-generated diffs without a short human-written summary of changes.
• Pull request quality gate — Add AI-specific checks on top of normal ones: standard checks (unit tests, coverage thresholds, style, conventional static analysis) plus AI-aware checks (detect unknown or non-existent packages, verify that all referenced APIs exist, flag changes that introduce new endpoints without tests).
• Deeper CI analysis — Run extended test suites and property-based tests for code touched by AI. Apply security scanners (SAST/DAST) with a focus on newly modified code paths. Analyse complexity and potential performance hotspots in AI-generated regions.
• Pattern and drift detection — Compare new code against established project patterns: architecture, error handling, logging. Flag code that diverges strongly from your usual idioms.
• Security and dependency gates — Require "no new high or critical vulnerabilities" from your security tooling on changed lines. Block builds if new dependencies are unapproved, unpinned, or from suspicious sources.
• Runtime monitoring and feedback — Track error rates, latency, and resource usage for endpoints recently modified by AI-assisted changes. Feed incidents back into prompts and quality rules to harden gates over time.

Concrete Checks to Add for AI-Generated Code

• Tests and coverage — Minimum coverage for new or changed lines (for example, ≥80%). Mandatory tests for all new public endpoints, background jobs, or exported functions.
• Security gates — No new high/critical findings from SAST or dependency scanners on changed code. Require manual review for AI-generated code that touches authentication, payments, admin features, or personal data.
• Dependency sanity checks — New packages must exist in the target registry, meet minimum popularity or maturity signals (downloads, stars, last publish date) unless explicitly whitelisted. Banned or risky packages (for example, known typosquats) fail the build immediately.
• API reality checks — Static analysis to ensure all invoked methods and endpoints exist in your codebase or documented SDK. Optional: restrict usage to an allowlist of approved APIs in sensitive areas.
• Pattern and performance checks — Enforce standard error-handling and logging wrappers. Flag newly added functions with unusually high complexity or obvious O(n²)/O(n³) patterns on large data paths.

Handling Hallucinations Explicitly in the Pipeline

• Execution-based verification — Don't rely on compilation alone. Run targeted tests that stress AI-generated code with edge cases, invalid inputs, and randomised data. Property-based tests are particularly effective at flushing out logic and mapping errors.
• Grounding with real context — When using AI to propose changes, supply real schemas, API specs, and configuration files as context. This reduces the chance of invented functions and parameters and makes it easier to detect when generated code deviates from reality.
• Hybrid static + AI analysis — Combine conventional static analysis with AI-based review. Static tools are good at data-flow and taint analysis; AI is good at reading intent and spotting higher-level requirement mismatches. Use both and require agreement on risk-critical code.
• Multi-model cross-checking — For important changes, have one model generate code and a different model review it. Areas where reviewers disagree or express low confidence can be flagged for human attention.
• Hallucination blacklists and rules — As you discover recurring hallucinated patterns—fake package names, made-up flags, made-up endpoints—encode them as explicit rules. Future appearances then cause an automatic build failure or at least a strong warning.

Making AI Quality Checks Developer-Friendly

• Explain the "why" for each failure — Error messages should show exactly which line or package violated which rule, and ideally link to documentation on how to fix or override it.
• Differentiate hard blocks from warnings — For new rules, start in "warning" mode to gather data and reduce frustration; promote to "blocking" only once signal-to-noise is acceptable.
• Allow documented overrides — Some AI-generated changes will be consciously risky or unusual. Provide a documented override mechanism (for example, a labelled comment plus a ticket link) so teams can proceed when appropriate while leaving an audit trail.
• Measure false positives and iterate — Track how often a gate blocks valid changes or forces unnecessary work. Adjust thresholds, refine rules, or narrow scope where needed.
• Expose AI-specific dashboards — Show how many issues were caught related to AI-generated code, how many vulnerabilities were avoided, and how often hallucinated dependencies were blocked. This builds confidence that the extra gates are worth the friction.

Example: Extending a Classic Build Gate for AI

• Run unit tests.
• Enforce minimum overall coverage.
• Run linters and formatters.

• New/changed code coverage: require a higher coverage threshold for new lines than for legacy code.
• Dependency check: fail if a new package is unknown, unapproved, or obviously suspicious.
• API reality check: scan for calls to functions or endpoints that don't exist in your codebase or official SDK versions.
• Security scan: require zero high/critical findings on changed files.
• Manual review label: if AI contributed more than N lines in a file (for example, detected via commit metadata or comments), require explicit human approval from a senior developer before merge.

Related Reading

• Write Better Code With AI — how to structure prompts for code generation that produces reviewable output
• AI Code Review: Tools and Verification — using AI to review code quality and security
• What Is Prompt Engineering? — foundational principles for reliable AI output