GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents
- Posted on July 9, 2026
- By The Hacker News
- 0 Views
- 1 min read
GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents
Wiz says GhostApproval abuses symlinks so AI coding agents write to SSH keys or shell startup files while showing benign paths.