OpenBSD Privilege Escalation, GitHub AI Agent Leaks, & CDN Supply Chain Risks

Today's Highlights

This week's top security news features a critical use-after-free vulnerability in OpenBSD, a novel prompt injection attack leading to private repo leaks from GitHub's AI agent, and an unusual case of obfuscated bash scripts delivered via a CDN on consumer products.

OpenBSD has a use-after-free allowing local privilege escalation to root (Hacker News)

Source: https://nvd.nist.gov/vuln/detail/cve-2026-57589