AI’s next phase is not smarter chat — it’s controlled systems
A security researcher disclosed a pull-based prompt-injection attack called HalluSquatting that targets coding assistants and agentic tools including Cursor, Gemini CLI, Windsurf, and GitHub Copilot. …