Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

What’s new: Google has patched a vulnerability in its Antigravity IDE that allowed for prompt injection leading to arbitrary code execution. The flaw exploited insufficient input sanitization in the find_by_name tool, enabling attackers to bypass security constraints and execute malicious scripts without user interaction. The vulnerability was addressed on February 28, 2026, following responsible disclosure on January 7, 2026.

Who’s affected

Users of Google’s Antigravity IDE are affected by this vulnerability, particularly those utilizing the find_by_name tool for file searches. The flaw could also impact other AI-powered tools that process untrusted input and have access to execution capabilities.

What to do

• Update the Antigravity IDE to the latest version to mitigate the vulnerability.
• Review and enhance input validation practices in development environments to prevent similar vulnerabilities.
• Monitor for updates from other AI-powered tools for potential vulnerabilities related to prompt injection.

Sources

• The Hacker News