#agents-md | Brooks McMillin

Poisoning the Safety Net: Attacking AI Code Review Pipelines

May 19, 2026 24 min read

Four months after writing about defense in depth for LLM-assisted development, I went back and tried to attack every layer of my own stack. The obvious attacks are caught by 2026 models. The class isn't closed; the cover stories got better.

#security #AI #LLM #code-review #prompt-injection #ci-cd #agents-md #MCP

Read article →