<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Ai-Tooling on CuraSec</title><link>https://curasec.metacog.co.kr/tags/ai-tooling/</link><description>Recent content in Ai-Tooling on CuraSec</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Sun, 12 Jul 2026 11:56:34 +0000</lastBuildDate><atom:link href="https://curasec.metacog.co.kr/tags/ai-tooling/index.xml" rel="self" type="application/rss+xml"/><item><title>GitHub Copilot RCE via Prompt Injection (CVE-2025-53773)</title><link>https://curasec.metacog.co.kr/insights/2026-07-12-github-copilot-remote-code-execution-via-prompt-injection-cv/</link><pubDate>Sun, 12 Jul 2026 11:56:34 +0000</pubDate><guid>https://curasec.metacog.co.kr/insights/2026-07-12-github-copilot-remote-code-execution-via-prompt-injection-cv/</guid><description>&lt;ul>
&lt;li>&lt;strong>Engineer — Plan:&lt;/strong> GitHub Copilot is broadly deployed on developer workstations; a public PoC exists for this RCE-via-prompt-injection path, but EPSS is 0.03 and it is not KEV-listed. Check for an available Copilot update and audit whether your pipelines or editors process untrusted file content through Copilot without sandboxing.&lt;/li>
&lt;li>&lt;strong>SOC/IR — Learn:&lt;/strong> Prompt injection as an RCE delivery mechanism in AI coding assistants is a novel developer-endpoint attack class worth adding to your threat model, but the summary provides no IOCs or ATT&amp;amp;CK-mappable TTPs to act on for detection tuning today.&lt;/li>
&lt;li>&lt;strong>Leader — Plan:&lt;/strong> If your organization deploys GitHub Copilot to developers (very common), a demonstrated RCE path represents a developer-workstation supply-chain risk; confirm with engineering whether a patched version is available and assess exposure this quarter before exploitation pressure rises.&lt;/li>
&lt;li>&lt;strong>Signals:&lt;/strong> CVE-2025-53773 — CISA KEV: not listed, EPSS 0.03, public PoC on GitHub&lt;/li>
&lt;/ul></description></item></channel></rss>