Code injections through Git commit messages

18 points by cve

invlpg

In-band signalling is always a mistake. Always has been. It was a mistake back when unix decided everything was a file, and it's a mistake now with LLM agent contexts.

Student

Why does git pass the commit message to patch?

muemo

The commit message is part of the patch. That part just is ignored usually.

cve

Comment removed by author