Eigent maakt willekeurige code-uitvoering mogelijk via pull_request_target CI Workflow

The impact of CVE-2026-22869 is severe due to the potential for arbitrary code execution. An attacker who can create pull requests with repository write access can inject malicious code into the CI workflow. This code will then be executed during the build process, granting the attacker a foothold within the system. Potential consequences include credential theft (access tokens, API keys), unauthorized code modifications, the creation of malicious releases, and potentially even lateral movement within the organization if the CI environment has access to other sensitive resources. This vulnerability shares similarities with other CI/CD pipeline compromise attacks, highlighting the importance of secure workflow configurations.

Organizations using Eigent in their development workflows, particularly those relying on pull request-based contributions, are at risk. Teams with lax access controls granting repository write permissions to a large number of users are especially vulnerable. Shared hosting environments where multiple projects share the same repository are also at increased risk.

• windows / supply-chain: Monitor PowerShell execution logs for suspicious commands related to the CI workflow. Use Windows Defender to scan the .github/workflows/ci.yml file for malicious code.

Get-Process -Name 'powershell' | Where-Object {$_.CPU -gt 10} | Select-Object ProcessID, CommandLine

• linux / server: Examine system logs (journalctl) for unusual processes or commands executed during CI builds. Check for unauthorized modifications to the .github/workflows/ci.yml file using file integrity monitoring tools.

journalctl -u eigent-ci | grep -i error

• generic web: Monitor repository access logs for unusual activity from users with repository write permissions. Review the .github/workflows/ci.yml file for any suspicious code or commands.

1. 2026-01-13Disclosure

   disclosure

1. Gereserveerd2026-01-12
2. Gepubliceerd2026-01-13
3. Gewijzigd2026-01-14
4. EPSS bijgewerkt2026-03-23

The primary mitigation for CVE-2026-22869 is to upgrade to a patched version of Eigent that addresses the vulnerable CI workflow. Until a patch is available, consider temporarily disabling or restricting pull request-based contributions to the repository. Implement stricter access controls to limit the number of users with repository write permissions. Review and harden the CI workflow configuration, ensuring that untrusted code from pull requests is not directly executed. Consider using code scanning tools to detect malicious code in pull requests before they are merged. After upgrading, verify the integrity of the CI workflow by manually triggering a build and inspecting the logs for any unexpected behavior.