{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiejqeng356nprh5v34v7jhka5p7jk5kjzr427bjikffsamnezqydq",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mk42upnqakr2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreidohtxjoiz73o6zwlrg2yqwhx6kiybm6v753ciho3wlrjaj37f5cy"
    },
    "mimeType": "image/webp",
    "size": 24118
  },
  "path": "/github-comments-can-hijack-claude-code-gemini-cli-and-copilot-to-steal-ci-secrets/",
  "publishedAt": "2026-04-22T10:56:12.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "GitHub comments can hijack Claude Code, Gemini CLI, and Copilot to steal CI secrets",
    "VPN Central"
  ],
  "textContent": "A newly disclosed prompt injection attack shows how GitHub pull request titles, issue bodies, and issue comments can hijack AI coding agents and make them leak API keys and tokens from CI/CD environments. Researcher Aonan Guan calls the technique “Comment and Control,” and public reporting says it affected Anthropic’s Claude Code Security Review, Google’s Gemini […]\n\nThe post GitHub comments can hijack Claude Code, Gemini CLI, and Copilot to steal CI secrets appeared first on VPN Central.",
  "title": "GitHub comments can hijack Claude Code, Gemini CLI, and Copilot to steal CI secrets"
}