Comment and Control: Hijacking Agentic Workflows via Context-Grounded Evolution

📰 ArXiv cs.AI

arXiv:2605.11229v1 Announce Type: cross Abstract: Automation platforms such as GitHub Actions and n8n are increasingly adopting so-called agentic workflows, which integrate Large Language Model (LLM) agents for tasks such as code review and data synchronization. While bringing convenience for developers, this integration exposes a new risk: An adversary may control and craft certain inputs, such as GitHub issue comments, to manipulate the LLM agent for unwanted actions, such as credential exfilt

Published 13 May 2026
Read full paper → ← Back to Reads