
'Ghostcommit' Attack Hides Prompt Injections in Images to Trick AI Coding Agents
Researchers showed how a malicious PNG can smuggle hidden instructions past AI code reviewers and coax a coding agent into leaking repository secrets.

Festus Folo
Managing Editor, Africa · Lagos
A newly demonstrated attack technique shows how images embedded in software repositories can carry hidden instructions capable of manipulating AI-powered development tools into exposing sensitive data. The method, named "Ghostcommit," highlights an emerging class of security risks as automated coding assistants become more deeply integrated into software development workflows worldwide.
How the Attack Works
According to reporting by BleepingComputer, researchers demonstrated that a PNG image file could be used to conceal a prompt injection — hidden text designed to alter the behavior of an AI system that processes it. In the demonstration, the concealed instructions were able to influence an AI coding agent, ultimately directing it to read a repository's file, which commonly stores credentials and other confidential configuration values.
Keep reading
Australia Flags Global Campaign Exploiting Vulnerable CMS Platforms
The Australian Cyber Security Centre has warned that attackers are targeting content management systems and plugins worldwide, a threat with implications for organizations across Europe and Africa.
One newsletter, two continents
The Bridge brings you the tech, startups, and leaders moving between Africa and Europe — one sharp email each morning. No spam, unsubscribe anytime.








