BREAKING
GuardFall bypasses 10 of 11 AI agents
0
agents tested
0
bypassed
0
GitHub stars
How GuardFall slips past guards
1Guard reads raw string
2Bash quote removal
3r''m becomes rm
4Dangerous command runs
Attack hides in context, not prompts
Continue was the sole exception
Continuesafe
IDE mode default
0 of 21 cases allowed
12 destructive cases downgraded
Othersbypassed
Broken guards
No guard or sandbox opt-outs
Hermes, OpenCode, Goose
Calls grow for structural guards
AI NEWS BLITZ
Adversa AI just revealed a flaw that breaks shell guards in nearly every AI coding agent tested.