< ciso
brief />
Tag Banner

All news with #autogen tag

4 articles

Microsoft fixes AutoGen Studio flaw enabling code execution

🛡️ Microsoft patched a vulnerability chain named AutoJack in AutoGen Studio that could allow a visiting webpage to coerce a developer’s AI agent into executing arbitrary commands on the host. AutoGen Studio is the graphical interface for Microsoft’s open-source AutoGen framework for multi-agent AI systems; the flaw was fixed during development and never shipped in a PyPI release. The issue affected developers who built from the main GitHub branch in a limited window and allowed attacker-supplied commands to be launched with the developer’s account privileges. Microsoft urges running AutoGen Studio only as a developer prototype in isolated, low-privilege environments and avoiding exposure to untrusted content.
read more →

AutoJack exploit chains AI agent to local code execution

🔒 Microsoft researchers disclosed AutoJack, an exploit chain that lets an AI browsing agent load a malicious web page which then reaches a privileged local service and spawns processes on the host. The issue resides in AutoGen Studio's MCP WebSocket handler, present only in two pre-release PyPI builds (0.4.3.dev1 and dev2). A vanilla pip install (0.4.2.2) is not affected; fixes are merged to GitHub main but not yet released on PyPI.
read more →

AutoJack vulnerability in AutoGen Studio patched

🛡️ Ongoing research found an exploit chain in AutoGen Studio that allowed untrusted web content rendered by a browsing agent to reach a local Model Context Protocol (MCP) WebSocket and spawn arbitrary processes on the host. Microsoft’s team reported the issue and maintainers hardened the main branch in commit b047730; the vulnerable MCP WebSocket surface was never included in the PyPI release. The advisory explains the attack chain, remediation steps, and developer guidance to avoid localhost trust-boundary risks.
read more →

Agent Factory: From Prototype to Production with Foundry

🔧 Azure AI Foundry aims to accelerate the path from IDE prototypes to enterprise-grade AI agents. It emphasizes local-first prototyping, a single, consistent Model Inference API, and one-click deployment from VS Code and GitHub so developer code runs unchanged in production. Foundry supports popular frameworks like Semantic Kernel and AutoGen, embraces open protocols (MCP, A2A), and supplies prebuilt connectors, observability, and enterprise guardrails to scale agents securely.
read more →