Grok Build CLI Has Multiple Security Risks in Data Upload and Permissions, Slow Mist Warns on July 18

According to a security audit by Slow Mist published on July 18, Grok Build CLI contains multiple security vulnerabilities. The team found that the repository upload mechanism could transmit sensitive files such as .env files and RSA private keys via git bundle. Additionally, the cargo check command was incorrectly classified as a safe operation, which when combined with malicious AGENTS.md directives can trigger build.rs execution and enable remote code execution. The bypassPermissions parameter in .claude/settings.json can circumvent permission checks to execute tools without restrictions. Slow Mist noted that when AI coding agents over-trust project-level files, opening a project effectively grants shell access permissions.
Disclaimer: The information on this page may come from third-party sources and is for reference only. It does not represent the views or opinions of Gate and does not constitute any financial, investment, or legal advice. Virtual asset trading involves high risk. Please do not rely solely on the information on this page when making decisions. For details, see the Disclaimer.
Comment
0/400
No comments