Exclusive Researchers who found the flaws scored beer money bounties and warn the problem is probably pervasive Security researchers hijacked three popular AI agents that integrate with GitHub Actions by using a new type of prompt injection attack to steal API keys and access tokens, and the vendors