Gemini CLI hijacked by "tell me about this repo": an injection hidden in the README, and a command padded off-screen
In one sentence when an agent reads untrusted content and command validation is too weak, a similar injection can recur on other tools. So it's worth watching frame by frame.