Worrying Framelink MCP security flaw could let hackers execute code remotely - here's how to stay safe

Now, security researchers found that figma-developer-mpc is vulnerable to a command injection flaw that allows threat actors ...
Ars Technica

Flaw in Gemini CLI coding tool could allow hackers to run nasty commands

Researchers needed less than 48 hours with Google’s new Gemini CLI coding agent to devise an exploit that made a default configuration of the tool surreptitiously exfiltrate sensitive data to an ...