'Ghostcommit' hides prompt injection in images to fool AI agents, steal secrets
BleepingComputer·2h·Media
A PNG hiding a prompt injection could steal your repo's secrets, researchers demonstrate. The technique, dubbed 'Ghostcommit,' slipped past AI code reviewers CodeRabbit and Bugbot, which never open image files at all, then convinced a coding agent to read a repo's .env and write every secret into the code as a list of numbers. [...]
Categories cybersecurity · government-security · data-protection
Original source / advisory ↗Published
7/11/2026, 9:03:57 AM
Fetched
7/11/2026, 9:19:33 AM
Trust
media · 60/100
Language
en