AIBearisharXiv – CS AI · Apr 67/10
🧠
Supply-Chain Poisoning Attacks Against LLM Coding Agent Skill Ecosystems
Researchers discovered Document-Driven Implicit Payload Execution (DDIPE), a supply-chain attack method that embeds malicious code in LLM coding agent skill documentation. The attack achieves 11.6% to 33.5% bypass rates across multiple frameworks, with 2.5% evading both detection and security alignment measures.