logo

New GhostCommit Technique Hides Exploits in Images to Evade AI Code Reviewers

ID: 12575e12-66b3-5e2a-a25f-9ab6cc156a78

STIX ID: report--12575e12-66b3-5e2a-a25f-9ab6cc156a78

Feed Name: GBHackers

Threat Score
70/100

Date Published: 2026-07-13

Date Updated: 2026-07-13

Author: Divya

...
...

Researchers detail "GhostCommit," a technique that hides malicious instructions inside images included in pull requests so multimodal AI coding agents will read and follow them, potentially encoding and committing repository secrets (like .env contents) as integer tuples that evade text-based diff reviewers and traditional secret scanners; controlled tests showed multiple coding tools leaked seeded secrets, and recommended mitigations include treating non-text assets as instruction channels, enforcing human review of policy files, restricting agent access to secrets, and scanning encoded data.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.