Mozilla warns of indirect prompt injection risk in AI coding agents

wpnews.pro

cd /news/ai-safety/mozilla-warns-of-indirect-prompt-inj… · home › topics › ai-safety › article

[ARTICLE · art-43392] src=helpnetsecurity.com ↗ pub=2026-06-29T10:48Z topic=ai-safety verified=true sentiment=↓ negative

Mozilla warns of indirect prompt injection risk in AI coding agents

Mozilla's Zero Day Investigative Network (0DIN) warned that a malicious GitHub repository can compromise a developer's machine via indirect prompt injection targeting AI coding agents like Claude Code, without containing any malicious code. The attack manipulates the AI agent into taking unauthorized harmful actions by presenting normal-looking setup instructions.

read1 min views1 publishedJun 29, 2026

A malicious GitHub repository can silently compromise a developer’s machine without containing a single line of malicious code, security researchers at Mozilla’s Zero Day Investigative Network (0DIN) warned. The attack The proof-of-concept attack targets AI-powered coding agents such as Claude Code, and uses indirect prompt injection to manipulate an AI agent into taking harmful actions the developer never explicitly authorized. The attack chain is as follows: The malicious repository presents normal-looking setup instructions in the … More

The post Mozilla warns of indirect prompt injection risk in AI coding agents appeared first on Help Net Security.

source & further reading

helpnetsecurity.com — original article GPT-5.6 gets better at cybersecurity DarkMoon: Open-source AI pentesting platform Sycophantic chatbots and the harms that build over many chats

~/api · this article 200

$curl api.wpnews.pro/v1/news/mozilla-warns-of-indirec…

Read original on helpnetsecurity.com → www.helpnetsecurity.com/2026/06/29/mozilla-warns…

mentioned entities

Mozilla

Zero Day Investigative Network

0DIN

GitHub

Claude Code

metadata

slugmozilla-warns-of-indirect-prompt-injection-risk-in-ai-coding-agents

topic#ai-safety

secondary3 topics

sentimentnegative

canonicalhelpnetsecurity.com

navigation

← prevDepartments told to prioritise n…

next →Elon Musk says SpaceX is putting…

── more in #ai-safety 4 stories · sorted by recency

the-decoder.com · 29 Jun · #ai-safety

Claude Code runs a GitHub repo's hidden malware without verification, giving attackers full control

bleepingcomputer.com · 27 Jun · #ai-safety

Clean GitHub repo tricks AI coding agents into running malware

github.com · 29 Jun · #ai-safety

Fame, an external memory and tool-safety gateway for local coding agents

dev.to · 29 Jun · #ai-safety

Building Stuff That Doesn't Leak Everyone's Data

── more on @mozilla 3 stories trending now

wpnews · 28 May · #ai-startups

[AINews] Cognition raises $1B in $26B Series D

wpnews · 5 Jun · #ai-agents

Miasma Worm Targets AI Coding Agents via GitHub Repos

wpnews · 28 May · #ai-startups

The Niche SaaS Opportunity Map 2026: Highly Demanded Subscribed Categories Beyond Mainstream

sponsored brought to you by zahid.host 4,200+ EU-deployed projects

reading about agents? ship yours in a single git push.

Run your AI side-project on zahid.host

EU-based hosting, git-push deploys, automatic HTTPS, no cold starts. Free tier with a custom domain — perfect for shipping the agent you just read about.

$git push zahid main

→ Live at https://your-agent.zahid.host ✓

Get free account → Pricing

from €0/mo · no card required