Nº 01
Three coding-agent incidents, three different failures.
In the past two months, three coding-agent incidents have surfaced publicly: a Cursor agent deleting a production database, a Gemini agent exfiltrating a token after prompt injection, and an npm supply-chain compromise that hit any host running npm install. Each one isolates a different structural property of how agents fail, and the defenses don’t overlap.