#prompt-injection

Tenet's 'Agentjacking' research turns Sentry error data into a prompt-injection vector for AI coding agents

Security firm Tenet has demonstrated an indirect prompt-injection technique it calls Agentjacking — malicious instructions hidden inside Sentry error data that get executed by an AI coding agent with shell access. The operational read is that any third-party telemetry an agent ingests is now untrusted input.