AI Coding Tools Leaking Secrets via Configuration Directories

An article from ironpeak.be reveals that certain AI coding tools are exposing secrets (such as API keys or credentials) through their configuration directories. These leaks occur when configuration files containing sensitive data are stored locally without adequate protection. The analysis specifically focuses on tools that use AI models to generate or analyze code.