Running Example

Document-Driven Implicit Payload Execution (DDIPE)

DDIPE embeds malicious logic within the legitimate technical structures of skill documentation — not as standalone behavioral instructions. The two embedding strategies exploit how coding agents treat documentation as authoritative reference for code synthesis.

Strategy 1: Code Example Poisoning

Strategy 2: Configuration Template Poisoning

Case Studies from Production Systems

Case Study 1: Universal Breach via Pip Configuration (479 Bytes)

Case Study 2: Conda Environment Poisoning — Model Divergence

Page updated

Google Sites

Report abuse