Diamond Member ThaHaka 0 Posted Thursday at 04:27 AM Diamond Member Share Posted Thursday at 04:27 AM This is the hidden content, please Sign In or Sign Up Researchers at Wiz found that a flaw in six popular AI coding assistants lets a booby-trapped code project quietly take control of a developer's computer. The assistant asks permission to edit one harmless-looking file, but the write lands on a sensitive one instead. The affected tools are This is the hidden content, please Sign In or Sign Up Q Developer, Anthropic's Claude Code, Augment, Cursor, This is the hidden content, please Sign In or Sign Up Antigravity, and Windsurf. This is the hidden content, please Sign In or Sign Up 0 Quote Link to comment https://hopzone.eu/forums/topic/320889-h4ckn3wsghostapproval-symlink-flaws-could-let-malicious-repos-run-code-in-ai-coding-agents/ Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.