pith. sign in
Pith Number

pith:2BFWVXVR

pith:2026:2BFWVXVRXQFQ2LIN64F4BU7XFM
not attested not anchored not stored refs resolved

"Tab, Tab, Bug": Security Pitfalls of Next Edit Suggestions in AI-Integrated IDEs

Hao Chen, Peng Chen, Tian Dong, Xinyu Wang, Yixuan Tang, Yunlong Lyu, Zhiqiang Dong

Next Edit Suggestions in AI IDEs expand context retrieval in ways that enable poisoning attacks.

arxiv:2602.06759 v2 · 2026-02-06 · cs.CR · cs.HC

Open paper page JSON Open Graph Bundle Merged state Verified badge What is a Pith Number?
Add to your LaTeX paper 
\usepackage{pith}
\pithnumber{2BFWVXVRXQFQ2LIN64F4BU7XFM}

Prints a linked badge after your title and injects PDF metadata. Compiles on arXiv. Learn more · Embed verified badge

Record completeness

1 Bitcoin timestamp
2 Internet Archive
3 Author claim open · sign in to claim
4 Citations open
5 Replications open
Portable graph bundle live · download bundle · merged state
The bundle contains the canonical record plus signed events. A mirror can host it anywhere and recompute the same current state with the deterministic merge algorithm.

Claims

C1strongest claim

NES is susceptible to context poisoning and is sensitive to transactional edits and human-IDE interactions; developers show a general lack of awareness of these security pitfalls.

C2weakest assumption

The in-lab attack scenarios and survey responses accurately reflect real-world attacker capabilities and developer behavior without significant selection or reporting bias.

C3one line summary

NES systems in AI IDEs expand attack surfaces via context poisoning from imperceptible actions and global codebase retrieval, with professional developers largely unaware of the risks.

References

49 extracted · 49 resolved · 7 Pith anchors

[1] Brock Kirwan, Jeffrey L 2015 · doi:10.1145/2702123.2702322
[2] Efficient training of language models to fill in the middle 2022
[3] Purple llama CyberSecEval : A secure coding benchmark for language models 2023
[4] Evaluating Large Language Models Trained on Code 2021 · arXiv:2107.03374
[5] An efficient and adaptive next edit suggestion framework with zero human instructions in ides, 2025 2025
Receipt and verification
First computed 2026-05-17T23:39:16.287168Z
Builder pith-number-builder-2026-05-17-v1
Signature Pith Ed25519 (pith-v1-2026-05) · public key
Schema pith-number/v1.0

Canonical hash

d04b6adeb1bc0b0d2d0df70bc0d3f72b04253a8cae353eb9603054ef23e2c288

Aliases

arxiv: 2602.06759 · arxiv_version: 2602.06759v2 · doi: 10.48550/arxiv.2602.06759 · pith_short_12: 2BFWVXVRXQFQ · pith_short_16: 2BFWVXVRXQFQ2LIN · pith_short_8: 2BFWVXVR
Agent API
Resolver JSON Graph JSON Events JSON Schema Signing key
Verify this Pith Number yourself 
curl -sH 'Accept: application/ld+json' https://pith.science/pith/2BFWVXVRXQFQ2LIN64F4BU7XFM \
  | jq -c '.canonical_record' \
  | python3 -c "import sys,json,hashlib; b=json.dumps(json.loads(sys.stdin.read()), sort_keys=True, separators=(',',':'), ensure_ascii=False).encode(); print(hashlib.sha256(b).hexdigest())"
# expect: d04b6adeb1bc0b0d2d0df70bc0d3f72b04253a8cae353eb9603054ef23e2c288
Canonical record JSON 
{
  "metadata": {
    "abstract_canon_sha256": "3c0808451367da56d440b0131bef199293e727c7c7ad00a00f7e3444bd4d7c48",
    "cross_cats_sorted": [
      "cs.HC"
    ],
    "license": "http://arxiv.org/licenses/nonexclusive-distrib/1.0/",
    "primary_cat": "cs.CR",
    "submitted_at": "2026-02-06T15:06:36Z",
    "title_canon_sha256": "4b98bc934976e304b0c5a858cc5574a977f455afacd91aafa899b1be68b62938"
  },
  "schema_version": "1.0",
  "source": {
    "id": "2602.06759",
    "kind": "arxiv",
    "version": 2
  }
}