< BACK TO NEWS
importantSYS.SOURCE: The Hacker News2026-07-09T09:57:18+05:30

GhostApproval Symlink Vulnerability Allows Malicious Repos to Execute Code in AI Coding Assistants

#AI Security#Symlink Vulnerability#Code Injection#Software Vulnerability#Cybersecurity

A vulnerability named GhostApproval allows malicious repositories to execute code in AI coding assistants by exploiting symlink flaws, enabling unauthorized access to sensitive files. Affected tools include Amazon Q Developer, Anthropic's Claude Code, and others, with some vendors having released fixes while others dispute the issue's severity.

Researchers at Wiz found that a flaw in six popular AI coding assistants lets a booby-trapped code project quietly take control of a developer's computer. The assistant asks permission to edit one harmless-looking file, but the write lands on a sensitive one instead.

The affected tools are Amazon Q Developer, Anthropic's Claude Code, Augment, Cursor, Google Antigravity, and Windsurf.

Read original article

*** END OF TRANSMISSION ***

> META'S MUSE IMAGE AI TOOL UTILIZES PUBLIC INSTAGRAM CONTENT FOR GENERATED MEDIA> FOUNDING ACCOUNT EXECUTIVE POSITION AT AI-DRIVEN DEBT COLLECTION STARTUP COLLECTWISE> RUST-BASED POSTGRES IMPLEMENTATION ACHIEVES FULL REGRESSION TEST COMPLIANCE> DONKEY KONG'S ROLE IN NINTENDO'S RISE AND ATARI'S DECLINE> AI AGENTS DESIGNED FOR MALICIOUS CODE DETECTION VULNERABLE TO 'FRIENDLY FIRE' ATTACKS> SPIDER VENOM DEMONSTRATES SELECTIVE TOXICITY AGAINST VARROA MITES WITHOUT ADVERSE EFFECTS ON HONEYBEES> GHOSTAPPROVAL SYMLINK VULNERABILITY ALLOWS MALICIOUS REPOS TO EXECUTE CODE IN AI CODING ASSISTANTS> MALICIOUS 7-ZIP INSTALLERS EXPLOIT DEVICES AS RESIDENTIAL PROXY NODES> TRUECALLER CHALLENGES TRAI OVER ANTI-SPAM REGULATIONS IN INDIA> REMOTE ATTESTATION IN CYBERSECURITY: ENSURING HOST INTEGRITY THROUGH TPM> META'S MUSE IMAGE AI TOOL UTILIZES PUBLIC INSTAGRAM CONTENT FOR GENERATED MEDIA> FOUNDING ACCOUNT EXECUTIVE POSITION AT AI-DRIVEN DEBT COLLECTION STARTUP COLLECTWISE> RUST-BASED POSTGRES IMPLEMENTATION ACHIEVES FULL REGRESSION TEST COMPLIANCE> DONKEY KONG'S ROLE IN NINTENDO'S RISE AND ATARI'S DECLINE> AI AGENTS DESIGNED FOR MALICIOUS CODE DETECTION VULNERABLE TO 'FRIENDLY FIRE' ATTACKS> SPIDER VENOM DEMONSTRATES SELECTIVE TOXICITY AGAINST VARROA MITES WITHOUT ADVERSE EFFECTS ON HONEYBEES> GHOSTAPPROVAL SYMLINK VULNERABILITY ALLOWS MALICIOUS REPOS TO EXECUTE CODE IN AI CODING ASSISTANTS> MALICIOUS 7-ZIP INSTALLERS EXPLOIT DEVICES AS RESIDENTIAL PROXY NODES> TRUECALLER CHALLENGES TRAI OVER ANTI-SPAM REGULATIONS IN INDIA> REMOTE ATTESTATION IN CYBERSECURITY: ENSURING HOST INTEGRITY THROUGH TPM