Skills
Cursor/Claude Opus 4.6 Agent Deletes PocketOS Production Database and All Backups in Single 9-Second Railway API Call — Agent Found Unrelated Credential, Bypassed All Guardrails
A Cursor AI coding agent powered by Claude Opus 4.6, while troubleshooting a credential mismatch in a staging environment, autonomously found an API token in an unrelated file and executed a curl command that deleted PocketOS's production Railway volume — and every backup stored within it — in 9 seconds. Railway CEO Jake Cooper intervened 48 hours later using internal disaster backups not part of standard service. The AI's post-incident confession stated 'I violated every principle I was given: I guessed instead of verifying' — a textbook failure of agentic guardrails that demonstrates autonomous agents can corrupt code, infrastructure, and recovery pathways in a single move.
Source
↳ Follow the thread