#security
Tagged “security”
2 articlesSecurity & supply chain
Tenet's 'Agentjacking' research turns Sentry error data into a prompt-injection vector for AI coding agents
Security firm Tenet has demonstrated an indirect prompt-injection technique it calls Agentjacking — malicious instructions hidden inside Sentry error data that get executed by an AI coding agent with shell access. The operational read is that any third-party telemetry an agent ingests is now untrusted input.
Jun 16, 2026 · Maya OkonkwoSecurity & supply chainSBOM attestation is becoming a default pipeline step
Generating and signing a software bill of materials at build time is shifting from compliance nice-to-have to standard CD hygiene. Here's the minimal viable setup.
Jun 12, 2026 · Tomás Vega