Skip to main content
Editorial pencil sketch of a cracked glass containment box with a glowing terminal and server inside, lines of code escaping through the fractures
Surface
MIDWATER

Snowflake's Cortex AI Agent Executed Malicious Code Through a Boundary That Was Supposed to Stop It

VERIFIEDConfidence: 80%

A Snowflake Cortex AI agent asked to review a GitHub repository did exactly that — and in the process, executed code it was never supposed to run. According to Willison's reporting, PromptArmor embedded a prompt injection attack in a repository's README file. When a Cortex user directed the agent to...

Create an account to read this article

Sign up for a free account to get full access to in-depth AI coverage, analysis, and investigations.

Related

BRIEFSurface

Google's Lyria 3 Pro extends AI music from a jingle to an actual song

Google announced Lyria 3 Pro on March 25, 2026, raising its AI music generator's output limit from 30 seconds to 3 minutes — six times longer than the base model released five weeks ago. The upgrade also teaches the model how songs are structured. That combination moves Lyria from novelty into something closer to a production tool.

BRIEFSurface

OpenAI's next model is nearly ready, and Altman says it can move the economy

OpenAI has completed pre-training on a new model codenamed "Spud," which CEO Sam Altman described to employees as "very strong" and capable of meaningfully accelerating the economy. The release is expected within weeks. The announcement comes with a consequential governance shift: Altman is stepping back from direct oversight of safety and security teams to focus on fundraising and infrastructure.

SIGNALSurface

OpenAI shutters AI video generator Sora

OpenAI has shut down Sora, its AI video generation platform, discontinuing both the consumer app and developer API with no replacement or migration path announced.