Tag: coding environment
-
Embrace The Red: Hijacking Windsurf: How Prompt Injection Leaks Developer Secrets
Source URL: https://embracethered.com/blog/posts/2025/windsurf-data-exfiltration-vulnerabilities/ Source: Embrace The Red Title: Hijacking Windsurf: How Prompt Injection Leaks Developer Secrets Feedly Summary: This is the first post in a series exploring security vulnerabilities in Windsurf. If you are unfamiliar with Windsurf, it is a fork of VS Code and the coding agent is called Windsurf Cascade. The attack vectors…
-
The Register: VS Code previews chat checkpoints for unpicking careless talk
Source URL: https://www.theregister.com/2025/08/12/vs_code_previews_chat_checkpoints/ Source: The Register Title: VS Code previews chat checkpoints for unpicking careless talk Feedly Summary: Microsoft’s AI-centric code editor and IDE adds the ability to rollback misguided AI prompts The Microsoft Visual Studio Code (VS Code) team has rolled out version 1.103 with new features including GitHub Copilot chat checkpoints.… AI Summary…
-
Embrace The Red: Claude Code: Data Exfiltration with DNS Requests
Source URL: https://embracethered.com/blog/posts/2025/claude-code-exfiltration-via-dns-requests/ Source: Embrace The Red Title: Claude Code: Data Exfiltration with DNS Requests Feedly Summary: Today we cover Claude Code and a high severity vulnerability that Anthropic fixed in early June. The vulnerability allowed an attacker to hijack Claude Code via indirect prompt injection and leak sensitive information from the developer’s machine, e.g.…
-
Slashdot: Google Gemini Deletes User’s Files, Then Just Admits ‘I Have Failed You Completely and Catastrophically’
Source URL: https://developers.slashdot.org/story/25/07/26/0642239/google-gemini-deletes-users-files-then-just-admits-i-have-failed-you-completely-and-catastrophically?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Google Gemini Deletes User’s Files, Then Just Admits ‘I Have Failed You Completely and Catastrophically’ Feedly Summary: AI Summary and Description: Yes Summary: The reported incident involving Google Gemini’s coding agent highlights significant concerns about the reliability and safety of AI-driven coding tools, particularly in terms of data management…
-
Slashdot: Linux Kernel Could Soon Expose Every Line AI Helps Write
Source URL: https://linux.slashdot.org/story/25/07/25/1950226/linux-kernel-could-soon-expose-every-line-ai-helps-write?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Linux Kernel Could Soon Expose Every Line AI Helps Write Feedly Summary: AI Summary and Description: Yes Summary: Brian Fagioli reports on Sasha Levin’s proposed patch series for integrating AI coding assistants into the Linux kernel, which introduces key guidelines for managing AI-generated contributions. This effort highlights the growing…
-
Slashdot: Robinhood CEO Says Majority of Company’s New Code Written by AI
Source URL: https://developers.slashdot.org/story/25/07/17/1918220/robinhood-ceo-says-majority-of-companys-new-code-written-by-ai?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Robinhood CEO Says Majority of Company’s New Code Written by AI Feedly Summary: AI Summary and Description: Yes Summary: The text discusses Robinhood CEO Vlad Tenev’s comments on the significant reliance on AI in code generation at Robinhood. The emphasis on AI-generated code highlights a growing trend in the…
-
The Register: AI coding tools make developers slower but they think they’re faster, study finds
Source URL: https://www.theregister.com/2025/07/11/ai_code_tools_slow_down/ Source: The Register Title: AI coding tools make developers slower but they think they’re faster, study finds Feedly Summary: Predicted a 24% boost, but clocked a 19% drag Artificial intelligence coding tools are supposed to make software development faster, but researchers who tested these tools in a randomized, controlled trial found the…