Loading video...

Video Failed to Load

There was a problem loading this video. This could be due to a temporary network issue or the video might be unavailable.

💥 Remote Code Execution in GitHub Copilot (CVE-2025-53773) 👉 Prompt injection exploit writes to Copilot config file and puts it into YOLO mode, then we get immediate RCE 🔥 Bypasses all user approvals 🛡️ Patch is out today. Update before someone else does it for you

Johann Rehberger

8,997 subscribers

117,493 views • 9 months ago •via X (Twitter)

Science & Technology News & Politics Education

Anya Rossi• Live Now

Private livecam show

0 Comments

No comments available

Comments from the original post will appear here

Related Videos

🔥Arbitrary Code Execution in AWS Kiro with Indirect Prompt Injection Multiple ways actually... 1) Write to settings.json to put Kiro into YOLO mode by adding: "kiroAgent.trustedCommands": ["*"] -> immediate arbitrary OS command execution without user approval 2) Write to kiro's mcp.json file to add a fake mcp server that runs arbitrary python code -> immediate arbitrary code execution AWS fixed the issues quickly, but no CVE issued. If you use Kiro make sure to run the latest version, before someone else updates it for you.

🔥Arbitrary Code Execution in AWS Kiro with Indirect Prompt Injection Multiple ways actually... 1) Write to settings.json to put Kiro into YOLO mode by adding: "kiroAgent.trustedCommands": ["*"] -> immediate arbitrary OS command execution without user approval 2) Write to kiro's mcp.json file to add a fake mcp server that runs arbitrary python code -> immediate arbitrary code execution AWS fixed the issues quickly, but no CVE issued. If you use Kiro make sure to run the latest version, before someone else updates it for you.

Johann Rehberger

12,632 views • 9 months ago

Secure your code against SQL injection! 🛡️ GitHub Copilot can help you write safer SQL queries and avoid vulnerabilities. ✅ Learn how and get more security best practices with Copilot here. ⬇️

Secure your code against SQL injection! 🛡️ GitHub Copilot can help you write safer SQL queries and avoid vulnerabilities. ✅ Learn how and get more security best practices with Copilot here. ⬇️

GitHub

27,520 views • 1 year ago

Agent mode (preview) is here for GitHub Copilot in Visual Studio Code! In agent mode in Copilot Edits, Copilot will iterate on its own output, execute terminal commands, react to terminal output, check itself for mistakes and even self-heal from runtime errors. Try it today in VS Code Insiders:

Agent mode (preview) is here for GitHub Copilot in Visual Studio Code! In agent mode in Copilot Edits, Copilot will iterate on its own output, execute terminal commands, react to terminal output, check itself for mistakes and even self-heal from runtime errors. Try it today in VS Code Insiders:

Visual Studio Code

256,275 views • 1 year ago

🆕 OpenAI Developers GPT-5.4 is now generally available and rolling out in GitHub Copilot. Early testing shows ➡️ It consistently hits high rates of success ➡️ Enhanced logical reasoning and task execution for intricate processes Try it out in Visual Studio Code or Copilot CLI.

🆕 OpenAI Developers GPT-5.4 is now generally available and rolling out in GitHub Copilot. Early testing shows ➡️ It consistently hits high rates of success ➡️ Enhanced logical reasoning and task execution for intricate processes Try it out in Visual Studio Code or Copilot CLI.

GitHub

145,798 views • 3 months ago

GitHub Copilot lets you define custom instructions (yes, even in Hindi! 🎉) to get tailored responses in Copilot Chat in VS Code ✨ Aapke rules, aapki coding! 😎 Try it out 👉

GitHub Copilot lets you define custom instructions (yes, even in Hindi! 🎉) to get tailored responses in Copilot Chat in VS Code ✨ Aapke rules, aapki coding! 😎 Try it out 👉

GitHubIndia

40,535 views • 1 year ago

🚀 This is so powerful! The GitHub Pull Requests Visual Studio Code extension now lets you talk about PRs and Issues using GitHub Copilot. 🤖 Get Copilot 👉 And try it now

🚀 This is so powerful! The GitHub Pull Requests Visual Studio Code extension now lets you talk about PRs and Issues using GitHub Copilot. 🤖 Get Copilot 👉 And try it now

João Moreno

15,529 views • 1 year ago

The GitHub Copilot SDK is here 🙌 You can take the same Copilot agentic core that powers GitHub Copilot CLI and embed it in any application, with just a few lines of code.

The GitHub Copilot SDK is here 🙌 You can take the same Copilot agentic core that powers GitHub Copilot CLI and embed it in any application, with just a few lines of code.

GitHub

299,554 views • 4 months ago

🚨Breaking: Microsoft just dropped major updates - GitHub now has Copilot Agent Mode - MCP support rolling out to all VS Code users - New GitHub Copilot Pro+ Plan Vibe coding with GitHub Copilot. 1/3 🧵 Video Source : GitHub YT

🚨Breaking: Microsoft just dropped major updates - GitHub now has Copilot Agent Mode - MCP support rolling out to all VS Code users - New GitHub Copilot Pro+ Plan Vibe coding with GitHub Copilot. 1/3 🧵 Video Source : GitHub YT

AshutoshShrivastava

349,333 views • 1 year ago

Watch how we built Conway's Game of Life with GitHub Copilot and Visual Studio Code. 👀 P.S. - You can try it yourself with GitHub Copilot Free. ⬇️

Watch how we built Conway's Game of Life with GitHub Copilot and Visual Studio Code. 👀 P.S. - You can try it yourself with GitHub Copilot Free. ⬇️

GitHub

136,118 views • 1 year ago

Copilot Mode in Edge is your intelligent browsing companion — reading tabs, taking action, and turning your history into helpful storylines. Download Copilot and try it today:

Copilot Mode in Edge is your intelligent browsing companion — reading tabs, taking action, and turning your history into helpful storylines. Download Copilot and try it today:

Microsoft Copilot

48,980 views • 7 months ago

GitHub Copilot can review your code and generate tests for you in VS Code, and you can customize how it does this magic with targeted Custom Instructions...

GitHub Copilot can review your code and generate tests for you in VS Code, and you can customize how it does this magic with targeted Custom Instructions...

Visual Studio Code

82,442 views • 1 year ago

Say hello to the new free tier for GitHub Copilot in VS Code 👋 Get started today ⬇️

Say hello to the new free tier for GitHub Copilot in VS Code 👋 Get started today ⬇️

GitHub

49,589 views • 1 year ago

⚠️ Update for CVE-2024-21413 💣 Managed & confirmed Microsoft Outlook Remote Code Execution (RCE) but won't publish details (yet).

⚠️ Update for CVE-2024-21413 💣 Managed & confirmed Microsoft Outlook Remote Code Execution (RCE) but won't publish details (yet).

Alex

175,891 views • 2 years ago

🆕 Anthropic's Claude Opus 4.7 is now generally available and rolling out in GitHub Copilot. Early testing shows ➡️ It has stronger multi-step task performance and more reliable agentic execution ➡️ Meaningful improvement in long-horizon reasoning and complex workflows Try it out in Visual Studio Code or Copilot CLI.

🆕 Anthropic's Claude Opus 4.7 is now generally available and rolling out in GitHub Copilot. Early testing shows ➡️ It has stronger multi-step task performance and more reliable agentic execution ➡️ Meaningful improvement in long-horizon reasoning and complex workflows Try it out in Visual Studio Code or Copilot CLI.

GitHub

259,072 views • 1 month ago

The newly added remote feature of GitHub Copilot CLI Changelog is coming to Visual Studio Code Nice work Pierce Boggan :-) "github. copilot. chat.cli.remote.enabled": true

The newly added remote feature of GitHub Copilot CLI Changelog is coming to Visual Studio Code Nice work Pierce Boggan :-) "github. copilot. chat.cli.remote.enabled": true

Oren Melamed

12,251 views • 1 month ago

✨ Anthropic's Claude Sonnet 4.6 is now generally available and rolling out in GitHub Copilot. Early testing shows ➡️ It excels on agentic coding ➡️ It is particularly successful in search operations Try it out in Visual Studio Code or Copilot CLI.

✨ Anthropic's Claude Sonnet 4.6 is now generally available and rolling out in GitHub Copilot. Early testing shows ➡️ It excels on agentic coding ➡️ It is particularly successful in search operations Try it out in Visual Studio Code or Copilot CLI.

GitHub

164,049 views • 3 months ago

📣 now works with GitHub Copilot chat! You can also filter development prompts with a new toggle 🥳 A big P.S.: I collaborated with the GitHub Copilot team on this, and they added a prompt injection feature to Copilot Chat for — it was the best pair-programming experience I’ve ever had! 🥹

📣 now works with GitHub Copilot chat! You can also filter development prompts with a new toggle 🥳 A big P.S.: I collaborated with the GitHub Copilot team on this, and they added a prompt injection feature to Copilot Chat for — it was the best pair-programming experience I’ve ever had! 🥹

fatih kadir akın

63,640 views • 1 year ago

GitHub Copilot just got an upgrade 🤖 Agent mode is now available in preview and Copilot Edits is generally available, both in Visual Studio Code. Plus you can check out a sneak peek at our SWE agent 👀

GitHub Copilot just got an upgrade 🤖 Agent mode is now available in preview and Copilot Edits is generally available, both in Visual Studio Code. Plus you can check out a sneak peek at our SWE agent 👀

GitHub

110,497 views • 1 year ago