Sensitive file editing guard bypass

## VS Code - Sensitive file editing guard bypass

A remote code execution vulnerability exists in VS Code Copilot Chat 0.32.4 and earlier versions where a prompt-injected agent mode chat could make edits to sensitive files such as `.vscode/settings.json`, bypassing the normal sensitivity check.

### Patches

The fix is available starting with **VS Code Copilot Chat 0.32.5**. The [fix](https://github.com/microsoft/vscode-copilot-chat/pull/1928/commits/705acfe2d3cff17aa70891a724c5dc7cfc91db1b) mitigates this attack by validating paths provided to edit tools.

### Workarounds

Avoid including untrusted input or context in your agent loop.

### References
* The patch for this can be found at https://github.com/microsoft/vscode-copilot-chat/pull/1928/commits/705acfe2d3cff17aa70891a724c5dc7cfc91db1b
* An advisory for this can be found at https://github.com/microsoft/vscode-copilot-chat/security/advisories/GHSA-pv7g-9595-vx6g

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Sensitive file editing guard bypass #276771

VS Code - Sensitive file editing guard bypass

Patches

Workarounds

References

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Sensitive file editing guard bypass #276771

Description

VS Code - Sensitive file editing guard bypass

Patches

Workarounds

References

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions