Digest · 10 stories · 18 sources
2026-07-05
Updated
Top stories
- YouTube Studio "Ask Studio" prompt injection leaks private video data A researcher reported that YouTube Studio's "Ask Studio" AI assistant treats video comment text as trusted input. An attacker posts a benign comment and later edits it to contain instructions, and when the creator uses a suggested Studio prompt the assistant follows those instructions. A demonstrated payload extracts private video titles from the creator's channel through a crafted link. Google declined to classify the finding as a security bug, saying it required social engineering, and held that position after a proof of concept.
- GPT-5.5 Codex reasoning token clustering correlates with degraded output A community analysis of Codex logs reports that GPT-5.5 Codex reasoning token counts cluster at fixed values (516, then 1034 and 1552, spaced about 518 apart) far more than other models. GPT-5.5 shows an exact-516 rate of 44.0% of runs at or above 516 tokens versus 1.3% for non-GPT-5.5 models, and the exact-516 share rose from 0.11% in February 2026 to 53.30% in May 2026. Runs that stop at exactly 516 reasoning tokens correlate with wrong answers on complex tasks. OpenAI has not responded on the issue.
- Zig moves package management out of the compiler into the build system A Zig devlog entry dated 2026-06-30 moves zig build, zig fetch, zig init, and zig libc from the compiler into a separate build-system "maker" process, and removes package fetching, the HTTP client, TLS and crypto, the Git protocol, and several compression formats from the compiler binary. The compiler shrinks from 14.1 to 13.5 MiB, --maker-opt becomes the ZIGDEBUGMAKER environment variable, and --zig-lib-dir becomes ZIGLIBDIR. The entry calls the change almost entirely non-breaking. Blockers before Zig 0.17.0 include the build-server protocol and watch-mode work.