A new tool called CLI-Anything can generate agent-ready SKILL.md files from open-source repos with a single command. Researchers warn this same mechanism enables instruction-level poisoning that won’t trigger CVEs or appear in SBOMs. Existing SAST and SCA cover code and dependencies, but a “third layer” of agent integration files is largely unscanned—leaving a pre-exploitation window as attacks spread.
A shocking incident shows how a Morse code message can manipulate an AI system into executing a high-value crypto transfer, draining $200,000 in seconds. The case highlights a growing threat at the AI finance intersection: when bots are given direct access to wallets, even indirect prompt or signal attacks can trigger real-world financial actions fast, leaving security gaps exposed.
Your news, in seconds
Get the Beige app — every story in 60 words, updated hourly. Free on iOS & Android.
Swipe through stories, personalise your feed, and save articles for later — all on the app.
