Phase 1: Reconnaissance
Connect to runtime WebSocket. Discover workspaces, tasks, git info.
Phase 2: RCE
Hijack terminal when agent runs. Inject command.
Leaked Data
Workspaces & Paths
—
Tasks
—
Git Info
—
Connect to runtime WebSocket. Discover workspaces, tasks, git info.
Hijack terminal when agent runs. Inject command.