Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments
highnewsLLM-Specific
security
Source: SecurityWeekApril 16, 2026
Summary
Researchers discovered a vulnerability called 'Comment and Control' that affects multiple AI coding assistants, including Claude Code, Gemini CLI, and GitHub Copilot Agents. The attack works by hiding malicious instructions in code comments, which the AI systems then follow as if they were legitimate user requests. This is a type of prompt injection (tricking an AI by hiding instructions in its input) that specifically targets AI tools designed to help developers write code.
Classification
Attack Type
Prompt Injection
Attack SophisticationModerate
Impact (CIA+S)
integrityconfidentiality
Affected Vendors
AnthropicGoogleMicrosoft
Related Issues
Monthly digest — independent AI security research
Original source: https://www.securityweek.com/claude-code-gemini-cli-github-copilot-agents-vulnerable-to-prompt-injection-via-comments/
First tracked: April 16, 2026 at 08:00 AM
Classified by LLM (prompt v3) · confidence: 92%