GhostApproval, AI 코딩 도구의 심볼릭 링크 위험 노출. 확인된 사실을 유지하면서 제품, 인프라, 거버넌스 관점에서 현지 독자가 읽기 쉽게 정리했다.
무슨 일이 있었나
GhostApproval, AI 코딩 도구의 심볼릭 링크 위험 노출 is the current news peg. The verified record centers on these points:
- Wiz disclosed GhostApproval on July 8
- the attack abuses symlinks so an apparent project file can write outside the workspace
- affected research covered Amazon Q Developer, Claude Code, Augment, Cursor, Google Antigravity and Windsurf
- Cursor CVE-2026-50549 affected versions before 3.0, and AWS required Language Servers for AWS 1.69.0
왜 중요한가
더 큰 신호는 human approval is weak when the UI hides the resolved path and the agent follows filesystem indirection.
다음 관전점
다음 확인 지점은 default blocking of symlinks, resolved-path display, sensitive-file monitoring and isolated environments for unknown repos.
참고 자료:Wiz research, AWS advisory, SC Media, The Register, Cursor/GitHub CVE records, CocoLoop.