Definition
A named real-world attack where an AI coding assistant gets tricked into leaking SSH keys via a poisoned ticket.
A 2025 indirect-prompt-injection attack chain documented by Zenity Labs in which adversarial instructions embedded in Jira tickets cause MCP-connected coding agents to exfiltrate credentials.