A new prompt injection attack, 'Comment and Control,' allows hackers to exploit AI code security agents using malicious GitHub comments, exposing sensitive credentials. Researchers warn the flaw is systemic, affecting leading tools like Claude Code, Gemini CLI, and GitHub Copilot.