Publications

72 Results / Page 1 of 8

OWASP ASI05 Unexpected Code Execution guide

todayJune 30, 2026

close

Agentic AI Security + Research Omer Ben Simon

GuardFall: a universal shell injection vulnerability in open-source AI agents

AI coding assistants run shell commands with your full account authority, but their security filters are fundamentally flawed. Meet GuardFall: a vulnerability where 30-year-old shell injection tricks bypass modern safeguards. Read the full survey of 11 popular open-source agents to see if your tools are exposed, and learn the architectural ...