Tag
The US issued an export control on the Mythos and Fable models, and suddenly jailbreaks and indirect prompt injection are board-level topics. The technical threat didn't change. The audience did. Here is what that means for the agent running on your machine.
A White House report shows Anthropic's Fable model declining a security review prompt, then complying when the same task is reworded. The trust boundary is inside the model, and that breaks the assumptions every agent harness makes.
A patched flaw in Vercel's AI SDK let attackers forge tool approvals from client history. The bug is fixed. The assumption that produced it is everywhere.
A patched flaw in Baileys, the library powering countless WhatsApp agents, let anyone inject fake messages, corrupt synced state, and rewrite conversation history. If your agent acts on chat content, this is your trust boundary breaking.
CVE-2026-9277 lets a single newline character turn one shell command into two inside your agent's sandbox. If your agent shells out to do its job, treat this as a trust-boundary failure and patch the dependency now.
