{"data":{"id":"fe53c7ec-f3fa-4de5-b8ed-d13795f1851b","title":"GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents","summary":"Researchers discovered GhostApproval, a flaw in six AI coding assistants that exploits symlinks (shortcuts that point to different files on a computer) to trick developers into approving edits that secretly modify sensitive files like SSH login keys. The assistants show approval dialogs that name harmless files while actually writing to dangerous system files, bypassing informed consent even though developers think they are approving safe changes.","solution":"Three tools have shipped fixes: Amazon Q Developer (update to Language Server 1.69.0, which installs automatically for most users), Cursor (update to v3.0 via the extension manager), and Google Antigravity (update to the current version). For Augment and Windsurf, which have not yet released fixes, the source recommends: do not point them at repositories you do not trust. For Claude Code, the source states: update, and read the symlink warning before accepting any edits.","labels":["security"],"sourceUrl":"https://thehackernews.com/2026/07/ghostapproval-symlink-flaws-could-let.html","publishedAt":"2026-07-09T04:27:18.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"high","attackType":["supply_chain"],"issueType":"news","affectedPackages":null,"affectedVendors":["Amazon","Anthropic","Google"],"affectedVendorsRaw":["Amazon Q Developer","Anthropic Claude Code","Augment","Cursor","Google Antigravity","Windsurf"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":"2026-07-09T04:27:18.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["integrity","confidentiality"],"aiComponentTargeted":"agent","llmSpecific":true,"classifierConfidence":0.92,"researchCategory":null,"atlasIds":null}}