Miguel de Icaza ᯅ🍉Mar 5
We are doomed: https://grith.ai/blog/clinejection-when-your-ai-tool-installs-another
A GitHub Issue Title Compromised 4,000 Developer Machines

A prompt injection in a GitHub issue triggered a chain reaction that ended with 4,000 developers getting OpenClaw installed without consent. The attack composes well-understood vulnerabilities into something new: one AI tool bootstrapping another.

Show threadAlex RussellMar 5
@Migueldeicaza I'm gonna be saying "AI means read == execute" every day until an early grave, aren't I?
Show threadMu-AnMar 6
@slightlyoff would love a sticker
Show threadAlex Russell
@muan /cc @phae
Mar 6 at 12:48amWeb