Techly NewsGet the app

Get the latest tech news

GitHub Copilot CLI downloads and executes malware


Vulnerabilities in the GitHub Copilot CLI expose users to the risk of arbitrary shell command execution via indirect prompt injection without any user approval. We demonstrate that malware can be downloaded from external servers and executed with no user interaction beyond the initial query to the Copilot CLI.

None

Get the Android app

Or read this on Hacker News

Read more on:

Photo of malware

malware

Photo of GitHub Copilot CLI

GitHub Copilot CLI

Related news:

News photo

Crims hit a $20M jackpot via malware-stuffed ATMs

News photo

Fake Job Recruiters Hid Malware In Developer Coding Challenges

News photo

Fake job recruiters hide malware in developer coding challenges

« Perplexity Announces 'Computer,' an AI Agent That Assigns Work To Other AI Agents
Croatia declared free of landmines after 31 years »