1 in 5 Developers Allow AI Coding Tools Full Access to Workstations

Prevalent “YOLO Mode” risks in AI coding tools are leading to serious vulnerabilities in data security and supply chains.

MOUNTAIN VIEW, Calif., Feb. 4, 2026 /PRNewswire/ — UpGuard, a leader in cybersecurity and risk management, has unveiled new research concerning a significant security vulnerability within developer workflows. Their analysis of over 18,000 AI agent configuration files from public GitHub repositories reveals a troubling trend: 20% of developers have given AI code agents unrestricted access to conduct high-risk actions without human oversight.

To enhance efficiency, developers are granting extensive permissions, allowing AI to download content and manage files—read, write, and delete—on their machines without the need for developer approval. This trade-off compromises vital security protocols, resulting in serious supply chain vulnerabilities and data protection risks.

“Security teams are left in the dark regarding what AI agents are accessing, exposing, or leaking when developers allow these coding tools excessive access without supervision,” stated Greg Pollock, Director of Research and Insights at UpGuard. “Even with good intentions, developers inadvertently increase the risk of security breaches and exploitation. Minor workflow shortcuts can spiral into significant supply chain issues and credential exposure.”

Key Findings:

• Widespread Potential for Damage: One in five developers has allowed AI agents permission for unrestricted file deletion, opening the door for a minor mistake or prompt injection attack to potentially wipe an entire project or system.

• Risk from Unchecked AI Development: Nearly 20% of developers permit the AI to save changes directly to the main project repository, bypassing necessary human review. This automation creates a serious security vulnerability, allowing an attacker to inject harmful or malicious code straight into production systems or open-source projects, risking widespread security breaches.

• High-Risk Execution Permissions: A considerable number of files have permissions for arbitrary code execution, with 14.5% for Python and 14.4% for Node.js. This effectively grants attackers complete control over the developer’s environment via a successful prompt injection.

• MCP Typosquatting Threat: An analysis of the Model Context Protocol (MCP) ecosystem unveiled a high incidence of lookalike servers, creating ideal conditions for attackers to impersonate trusted technology brands. In registries where users seek these AI tools, for every verified server provided by a technology vendor, there are up to 15 similar servers from untrusted sources.

These risks illuminate a critical gap in governance, which can slow down incident response and raise the chances of credential and data exposure. For further insights into UpGuard’s research on vibe coding, please visit:

About UpGuard’s Breach Risk

UpGuard’s Breach Risk solution aims to convert hidden vulnerabilities, like misconfigurations and overly broad permissions, into early warning signals, such as dark web activity, offering clear, actionable visibility. By providing thorough insights into AI-generated changes, access, and data flow, UpGuard’s solution assists security teams in enforcing a stringent governance framework.

About UpGuard

Founded in 2012, UpGuard is a pioneer in cybersecurity and risk management. The company’s AI-powered platform for cyber risk posture management (CRPM) delivers a centralized, actionable overview of cyber risk across an organization’s vendors, attack surfaces, and workforce. Trusted by thousands, UpGuard’s platform is tailored to help security teams manage cyber risk effectively and efficiently. To discover more, visit www.upguard.com.

View original content to download multimedia: https://www.prnewswire.com/news-releases/new-research-from-upguard-1-in-5-developers-grant-ai-vibe-coding-tools-unrestricted-workstation-access-302678210.html