Skip to content

feat(briefs): No.094 Cursor/DuneSlide + No.095 Amazon Q/MCP(Pillar 03・ペア)#619

Merged
yumemayu merged 1 commit into
mainfrom
feat/briefs-094-095-agent-mcp
Jul 3, 2026
Merged

feat(briefs): No.094 Cursor/DuneSlide + No.095 Amazon Q/MCP(Pillar 03・ペア)#619
yumemayu merged 1 commit into
mainfrom
feat/briefs-094-095-agent-mcp

Conversation

@yumemayu

@yumemayu yumemayu commented Jul 3, 2026

Copy link
Copy Markdown
Member

2026-07-03 追加ドラフト2本(Cursor / Amazon Q)。同じ Pillar 03 の primitive を「読み取り指示の入口(094 Cursor)」と「同梱設定の入口(095 Amazon Q)」のとして提示。1 PR にまとめています。

採番の整理

A7A5 が **093(PR #618・オープン)**を使用中のため、この2本は 094 / 095 に繰り上げ。095 内の相互参照(Cursor を 094、自身を 095)と related_briefs のスラッグ化を修正済み。3本とも別ファイルなので #618 とは競合しません。

No.094 Cursor(DuneSlide)

Web/MCP に注入された一つの指示でサンドボックスが外れ RCE(CVE-2026-50548 / 50549、CVSS 3.1 で 9.8)。Cursor 3.0 で修正済・実環境悪用なし。

No.095 Amazon Q Developer(MCP 自動実行)

リポジトリ同梱の .amazonq/mcp.json が無検証で自動起動し、環境全継承で AWS 認証情報が流出(CVE-2026-12957)。言語サーバー 1.65.0 で修正済。

一次照合と、ドラフトからの訂正(gh api / NVD / 200 確認)

ドラフト 照合 → 対応
Cursor 両件 CVSS「3.1 で 9.8(4.0 で 9.3)」 NVD/Cato で 9.8(3.1)確認、4.0 の 9.3 は未確認 → 9.3 を削除
Amazon Q「CVSS 8.5」 GHSA cvss_v4 = 8.5、NVD 3.1 = 7.8両版併記(8.5 は 4.0 スコアと明示)
Amazon Q「AWS は 1.69.0 推奨」 Wiz/AWS 一次に記載なし → 削除、「1.65.0 で修正・最新版へ更新」
The Register URL 404 → Sources から除外
横断 CVE(Claude Code/Cursor/Windsurf)・MCP 自動実行の位置づけ Wiz ブログで確認 → 採用
DuneSlide 機序・タイムライン・標的パス Cato ブログで確認 → 採用
GHSA-3v8f… / GHSA-xhcr… gh api で CVE 対応・severity 確認 → 採用

整形(ドラフト→公開スキーマ)

pillar: "03"03-agent-authority / published_datepublished / related_pack: C-agent-governance / related_briefs をフルスラッグ化(037/039/027/048/058・037/062/027/059/094)/ H1・サブタイトル・Pillar 行を削除・見出しを 1〜9 に採番 / gap モジュール(gap_detected/missing/fix)と og_lead を JA・EN 両方で新規執筆(ドラフトに欠落)/ EN 本文を全文執筆 / §5 に「検出と証明の落差」+「補完」/ version 1.0。

検証

  • astro sync(zod)通過・pnpm build 成功・094/095 とも JA/EN + OG 画像生成・gap モジュール描画・Sources 200 を dist で確認。

マージしない運用のためレビュー後にどうぞ(#618 A7A5 と合わせ、今週は計3本)。

🤖 Generated with Claude Code

https://claude.ai/code/session_016QjqPGZqYWJhxmcesiNHZn

…CP pair (Pillar 03)

A deliberate pair from the 2026-07-03 additional drafts: both are the
same Pillar 03 primitive — an AI coding tool connects "input whose origin
it cannot choose" to execution without verifying provenance/authorization
before acting. 094 (Cursor) is the read-in-instruction entry point;
095 (Amazon Q) is the bundled-config entry point.

Numbering: A7A5 already took 093 (PR #618, open), so this pair is
renumbered 094/095; 095's cross-references to Cursor and to itself were
updated (draft's 093→094, 094→095), and related_briefs use full slugs.

Primary-source verified (gh api on both GHSAs, NVD on the CVEs, all source
URLs 200-checked), drafts corrected on:
- Cursor CVE-2026-50548/50549: 9.8 confirmed on NVD CVSS 3.1 (GHSA
  GHSA-3v8f-48vw-3mjx → CVE-2026-50549 "sandbox escape via symlink…",
  critical); dropped the draft's unverified "CVSS 4.0 9.3".
- Amazon Q CVE-2026-12957: score is 8.5 on CVSS 4.0 (GHSA cvss_v4) /
  7.8 on NVD CVSS 3.1 — written with both versions (draft's bare "8.5"
  was the v4.0 score); "AWS recommends 1.69.0" dropped (not in the Wiz/AWS
  source) → "fix in 1.65.0, update to latest".
- The Register URL 404 → removed from 095 sources.
- Cross-tool CVEs (Claude Code 2025-59536/2026-21852, Cursor 2025-54136,
  Windsurf 2026-30615) and the "MCP auto-execution" framing confirmed
  against the Wiz blog; DuneSlide mechanisms/timeline/paths confirmed
  against the Cato blog.

Format: draft frontmatter converted to the content.config schema
(pillar 03-agent-authority, published, related_pack C-agent-governance,
slug related_briefs), H1/subtitle/Pillar line dropped, headings numbered
1–9, gap module (gap_detected/missing/fix) + og_lead authored for both
JA and EN (drafts had neither), full EN bodies written. 検出と証明の落差
+ 補完 in §5, version 1.0. astro sync + build green, OG images generated.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_016QjqPGZqYWJhxmcesiNHZn
@cloudflare-workers-and-pages

cloudflare-workers-and-pages Bot commented Jul 3, 2026

Copy link
Copy Markdown

Deploying web with  Cloudflare Pages  Cloudflare Pages

Latest commit: ec8d007
Status: ✅  Deploy successful!
Preview URL: https://04c9146b.web-zgj.pages.dev
Branch Preview URL: https://feat-briefs-094-095-agent-mc.web-zgj.pages.dev

View logs

@yumemayu yumemayu merged commit 3b944d4 into main Jul 3, 2026
3 checks passed
@yumemayu yumemayu deleted the feat/briefs-094-095-agent-mcp branch July 3, 2026 20:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant