x402wardenhttps://457e884c.x402warden-blog.pages.dev/Recent content on x402wardenHugoen-us<link>https://457e884c.x402warden-blog.pages.dev/research/coinbase-agentkit-prompt-injection/</link><pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate><guid>https://457e884c.x402warden-blog.pages.dev/research/coinbase-agentkit-prompt-injection/</guid><description><h1 id="coinbase-agentkit-prompt-injection-wallet-drain-infinite-approvals-and-agent-level-rce">Coinbase AgentKit Prompt Injection: Wallet Drain, Infinite Approvals, and Agent-Level RCE</h1> <p><strong>Reported 13 days after Coinbase launched Agentic Wallets. Validated by Coinbase. Demonstrated on-chain.</strong> <strong>Published:</strong> April 11, 2026 <strong>CVE status:</strong> Pending assignment</p> <p>Coinbase AgentKit is developer infrastructure for building AI agents with direct access to wallets, token operations, DeFi actions, and related execution surfaces. This disclosure covers a prompt injection vulnerability in AgentKit that allowed attacker-controlled input to trigger sensitive tool execution without a built-in human confirmation step.</p></description></item><item><title>Abouthttps://457e884c.x402warden-blog.pages.dev/about/Mon, 01 Jan 0001 00:00:00 +0000https://457e884c.x402warden-blog.pages.dev/about/About x402wardenSearchhttps://457e884c.x402warden-blog.pages.dev/search/Mon, 01 Jan 0001 00:00:00 +0000https://457e884c.x402warden-blog.pages.dev/search/Search x402warden