A GitHub Issue Title Compromised 4,000 Developer Machines

Published by hadi on

A deep dive into “Clinejection”, where an attacker injected a prompt into a GitHub issue title, which an AI triage bot interpreted as an instruction. The resulting chain led to cache poisoning, credential theft, and a compromised npm package that silently installed a second AI agent on 4,000 developer machines.

Read more

Categories: PHP
Tags:

Related Posts

PHP

#[RouteParameter] Does Not Bind Your Model

Michael Dyrynda explains a subtle Laravel gotcha: #[RouteParameter] only reads the current route parameter value, it does not perform implicit model binding. Good reminder that the controller signature still matters when you expect a bound Read more…

PHP

Prompt-Injection Guardrails in Laravel: Defend the Tools, Not the Prompt

You can’t out-prompt an attacker — to the model, your system instructions and a malicious support ticket are the same text. So stop defending the prompt and lock down the boundaries you actually control: tools Read more…

PHP

More time to think

Matthias writes that AI has shifted more of software development from typing to thinking, reviewing, and iterating. Nice reflection on how agentic coding, parallel worktrees, and voice dictation can slow individual features down while still Read more…