AI tool poisoning exposes a major flaw in enterprise agent security
via github.com
Short excerpt below. Read at the original source.
AI agents choose tools from shared registries by matching natural-language descriptions. But no human is verifying whether those descriptions are true. I discovered this gap when I filed Issue #141 in the CoSAI secure-ai-tooling repository. I assumed it would be treated as a single risk entry. The repository maintainer saw it differently and split my […]