Security researchers demonstrated how simple prompt injections can trick GitHub's AI agent into exposing private repository contents. The vulnerability is real and, as the authors note, likely exists in many AI-powered coding tools. If you're using AI agents with access to private code, this is a wake-up call.
HN discussion.