ADVERTISEMENT

AI agents have hard brakes to stop them from nuking your drive – but they don’t work

AI agents are blocked from running “rm -rf /” and wiping your drive. But “r’’m -rf /” is fine, even though it does the same thing.

drive, storage, AI

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
Jul 2, 2026 3 min read
Key takeaways:
“Decades-old shell bypasses (quote removal, $IFS, command substitution, base64-to-sh, destructive argv flags) systematically defeat the guards of today’s most popular open-source AI agents,”
the research about the vulnerability class dubbed GuardFail.
ADVERTISEMENT

AI agents failed in different ways

Check if your data has been leaked

Find out if your email, phone number or related personal information might have fallen into the wrong hands.
18,611,353,922
Breached accounts
36,030
Breached websites
guardfall shell injection ai coding agents 3 e1782815808862
ADVERTISEMENT