# code-injection

3 articlestagged with “code-injection”

Case Study: GitHub Copilot Code Injection

Analysis of prompt injection vulnerabilities in GitHub Copilot through malicious repository content.

case-studiescopilotcode-injectionsupply-chain

Prompt Injection via Code

Hiding prompt injection payloads in code artifacts — through comments, variable names, strings, docstrings, and file metadata — to attack AI coding tools and code-processing pipelines.

prompt-injectioncode-injectioncommentsvariable-namescode-processing

Intermediate

Code Injection via Markdown

Injecting executable payloads through markdown rendering in LLM outputs, exploiting the gap between text generation and content rendering in web-based LLM interfaces.

prompt-injectionmarkdowncode-injectionxssred-teamingintermediate

Intermediate