@Aonan Guan

mentions 1 type Person feed RSS

22:49

2026-06-02

dev.to

ai-safety

Comment and Control: a GitHub comment hijacks Claude Code in CI

A security researcher demonstrated that a GitHub PR title, issue body, or comment can serve as a prompt injection to hijack Claude Code, Gemini CLI, and GitHub Copilot running in GitHub Actions, causi…

// co-occurs with top 7 entities

Anthropic 1 Claude Code 1 Google 1 Gemini CLI 1 GitHub Copilot 1 Johns Hopkins 1 CVSS 1