Roxane Fischer
@roxanefis.bsky.social
Tracking the latest news in DevOps and cloud infra
Building your new on-call engineer @ http://anyshift.io
Building your new on-call engineer @ http://anyshift.io
How a single malicious GitHub issue can turn your AI coding assistant into a data thief 👀
The latest MCP story details how prompt injection attacks, combined with overly broad #GitHub tokens, led to real breaches: stolen salaries, private project leaks, triggered by a "check open issues" request.
The latest MCP story details how prompt injection attacks, combined with overly broad #GitHub tokens, led to real breaches: stolen salaries, private project leaks, triggered by a "check open issues" request.
August 16, 2025 at 9:36 PM
How a single malicious GitHub issue can turn your AI coding assistant into a data thief 👀
The latest MCP story details how prompt injection attacks, combined with overly broad #GitHub tokens, led to real breaches: stolen salaries, private project leaks, triggered by a "check open issues" request.
The latest MCP story details how prompt injection attacks, combined with overly broad #GitHub tokens, led to real breaches: stolen salaries, private project leaks, triggered by a "check open issues" request.