Rogue Agent, a vulnerability in Google Cloud Dialogflow CX, allowed attackers to control agents and exfiltrate sensitive data.
Noma Labs tricked GitHub's AI agent into leaking private repositories with a crafted issue. The prompt-injection flaw, GitLost, has no code fix.
Cavern agents were observed in the wild using DLL sideloading, NativeAOT modules, AppDomain unloading, and low VirusTotal ...
These third-party projects greatly expand the ways agents and LLMs can draw on facts, documents, and conversations to deliver ...
Attackers are actively exploiting path traversal and SQL injection in Langflow, LangGraph, and LangChain — below where your security tools look.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV) catalog, ...
Critical flaws affecting core components and extensions in PostgreSQL and MariaDB could allow remote code execution. The bugs, some over 20 years old, have now been patched. Open-source databases are ...
The missing npm audit for AI agents. Security scanner for MCP-connected AI agent pipelines. Finds misconfigurations, hardcoded secrets, tool poisoning, rug pulls, trust boundary violations, and ...
A curated corpus of real-world security incidents, attack techniques, CVEs, frameworks, and defensive tools for autonomous AI agents. From zero-click Copilot exfiltration to AI-powered C2 channels — ...
This index is your gateway to discovering AI technologies and related topics. On each technology page, you'll find tutorials, upcoming hackathons, frameworks, and boilerplates to help you get started.