Developer proves AI agents can be reprogrammed via new exploit

January 23, 2026

, By The New Stack

Developer proves AI agents can be reprogrammed via new exploit

Share via:

A new VS Code exploit can rewrite AI agents across all code repositories, an application security specialist demonstrated Thursday.

On Wednesday, the SANS Technology Institute reported on new zero-click exploit that only requires developers open the folder in affected editors. The VS Code exploit involves a malicious tasks.json file that silently runs inside code editors. It was originally identified by Oasis, along with a recommended mitigation developers could apply.

Within 24 hours, Isaac Lewis showed how the exploit can be used to…

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Previous News

Ex-Google engineers emerge from stealth with $5M to build AI learning engine for kids

Next News

US Crypto Bill Delayed as Senate Shifts Focus to Trump Housing Agenda

Popular

More Like this

Developer proves AI agents can be reprogrammed via new exploit

January 23, 2026

, Published By The New Stack

Developer proves AI agents can be reprogrammed via new exploit

A new VS Code exploit can rewrite AI agents across all code repositories, an application security specialist demonstrated Thursday.

On Wednesday, the SANS Technology Institute reported on new zero-click exploit that only requires developers open the folder in affected editors. The VS Code exploit involves a malicious tasks.json file that silently runs inside code editors. It was originally identified by Oasis, along with a recommended mitigation developers could apply.

Within 24 hours, Isaac Lewis showed how the exploit can be used to…

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Website Upgradation is going on for any glitch kindly connect at office@startupnews.fyi

Previous News

Ex-Google engineers emerge from stealth with $5M to build AI learning engine for kids

Next News

US Crypto Bill Delayed as Senate Shifts Focus to Trump Housing Agenda

More like this

Popular

Block title