---
title: "AI coding agents can be tricked into installing malware via 'clean' GitHub repositories"
date: 2026-06-28
source: http://www.bing.com/news/apiclick.aspx?ref=FexRss&aid=&tid=6a4178f452f94047bd3741bf9b7587ed&url=https%3a%2f%2fwww.msn.com%2fen-gb%2ftechnology%2fartificial-intelligence%2fai-coding-agents-can-be-tricked-into-installing-malware-via-clean-github-repositories%2far-AA26JMbf&c=10798921401777773671&mkt=en-ww
description: "Three levels of indirection, all with seemingly innocuous steps, will catch a bot off-guard."
---

# AI coding agents can be tricked into installing malware via 'clean' GitHub repositories

Three levels of indirection, all with seemingly innocuous steps, will catch a bot off-guard.

*Published: 2026-06-28*