Hacker News new | ask | show | jobs
by Panzerschrek 15 days ago
As I understand one don't need to have AI agents or something similar to be pwned. It's enough to clone a repository using git, since it allows executing arbitrary hooks for post-checkout.
1 comments
Ferret7446 15 days ago
That's why cloning a git repo doesn't copy any hooks.

There are software/devs that make sane security choices, and then there's the ones that don't (usually the younger/more modern ones)

link