"AI agents have fundamentally changed the threat model of AI model-based applications. By equipping these models with plugins (also called tools), your agents no longer just generate text; they now read files, search connected databases, run scripts, and perform other tasks to actively operate on your network.

Because of this, vulnerabilities in the AI layer are no longer just a content issue and are an execution risk. If an attacker can control the parameters passed into these plugins via prompt injection, the agent may be driven to perform actions beyond its intended use.

The AI model itself isn’t the issue as it’s behaving exactly as designed by parsing language into tool schemas. The vulnerability lies in how the framework and tools trust the parsed data.

To build powerful applications, developers rely heavily on frameworks like Semantic Kernel, LangChain, and CrewAI. These frameworks act as the operating system for AI agents, abstracting away complex model orchestration. But this convenience comes with a hidden cost: because these frameworks act as a ubiquitous foundational layer, a single vulnerability in how they map AI model outputs to system tools carries systemic risk.

As part of our mission to make AI systems more secure and eliminate new class of vulnerabilities, we’re launching a research series focused on identifying vulnerabilities in popular AI agent frameworks. Through responsible disclosure, we work with maintainers to ensure issues are addressed before sharing our findings with the community.

In this post, we share details on the vulnerabilities we discovered in Microsoft’s Semantic Kernel, along with the steps we took to address them and interactive way to try it yourself. Stay tuned for upcoming blogs where we’ll dive into similar vulnerabilities found in frameworks beyond the Microsoft ecosystem."

https://www.microsoft.com/en-us/security/blog/2026/05/07/prompts-become-shells-rce-vulnerabilities-ai-agent-frameworks/

#AI #GenerativeAI #AIAgents #AgenticAI #SemanticKernel #Microsoft

via #AIFoundry : Microsoft Agent Framework Reaches Release Candidate

https://ift.tt/K29Y7nv
#MicrosoftAgentFramework #ReleaseCandidate #GA #Foundry #AIFramework #AgentFramework #SemanticKernel #AutoGen #OpenSource #NET #Python #MultiLanguage #AzureOpenAI #MicrosoftFoundry #AI…

Migrate your Semantic Kernel and AutoGen projects to Microsoft Agent Framework Release Candidate

https://devblogs.microsoft.com/semantic-kernel/migrate-your-semantic-kernel-and-autogen-projects-to-microsoft-agent-framework-release-candidate/

#agentframework #dotnet #python #autogen #semantickernel #foundry #ai #agents

via @dotnet : Generative AI with Large Language Models in C# in 2026

https://ift.tt/ikxf7Ej
#GenerativeAI #LargeLanguageModels #CSharp #AI2026 #OpenAI #Microsoft #Azure #SemanticKernel #MachineLearning #AIExtensions #VectorDatabases #DotNet #AIInnovation #ChatGP…

100개 AI 에이전트를 제어하는 법: Microsoft의 실전 아키텍처 패턴

https://aisparkup.com/posts/6497

Microsoft Agent Framework 開発入門
https://qiita.com/matayuuu/items/e028904453dded34d18f?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items

#qiita #Microsoft #Azure #OpenAI #SemanticKernel #AutoGen