New GhostCommit Technique Hides Exploits in Images to Evade AI Code Reviewers
ID: 12575e12-66b3-5e2a-a25f-9ab6cc156a78
STIX ID: report--12575e12-66b3-5e2a-a25f-9ab6cc156a78
Feed Name: GBHackers
Researchers detail "GhostCommit," a technique that hides malicious instructions inside images included in pull requests so multimodal AI coding agents will read and follow them, potentially encoding and committing repository secrets (like .env contents) as integer tuples that evade text-based diff reviewers and traditional secret scanners; controlled tests showed multiple coding tools leaked seeded secrets, and recommended mitigations include treating non-text assets as instruction channels, enforcing human review of policy files, restricting agent access to secrets, and scanning encoded data.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
