Agents
SymJack and TrustFall: New Symlink-Hijack and RCE Chains Hit Six AI Coding Agents
Microsoft researchers detail a June surge of agentic-coding vulnerabilities including SymJack, a symlink-hijack RCE affecting six AI coding agents, and TrustFall, which impacts Claude Code, Cursor, Gemini CLI, and GitHub Copilot. These join Semantic Kernel prompt-injection-to-host-RCE flaws as evidence that local coding agents are now a prime attack surface. Builders running coding agents should audit filesystem and symlink handling immediately.
↳ Follow the thread