'Ghostcommit' hides prompt injection in images to fool AI agents, steal secrets

Read full story on BleepingComputer
Share
'Ghostcommit' hides prompt injection in images to fool AI agents, steal secrets
AI disclosure

Summary

A PNG hiding a prompt injection could steal your repo's secrets, researchers demonstrate. The technique, dubbed 'Ghostcommit,' slipped past AI code reviewers CodeRabbit and Bugbot, which never open image files at all, then convinced a coding agent to read a repo's .env and write every secret into the code as a list of numbers. [...]

Original reporting

Open original source
Read full article on BleepingComputer

Get the AFBytes Brief

Major stories, AI-assisted analysis, and what to watch next. Free, monthly, unsubscribe anytime.