JetBrains Junie AI Coding Agent guidelines.md Code Execution

Affected Vendor(s)

JetBrains

Affected Product(s)

Junie AI, IntelliJ IDEA, PyCharm Pro, GoLand, CLion, Rider, PhpStorm, WebStorm, RustOver, RubyMine

Summary

The Junie AI coding assistant reads a guidelines.md file within a project’s .junie directory and treats the contents as additional user-level instructions when handling any request to the chat interface. Malicious instructions can be placed within this file that can cause Junie to execute unsafe commands without requiring user approval.

Timeline

Discovered on
November 13, 2025
Disclosed to Vendor on
November 14, 2025
Published on
December 25, 2025

Credit

Aaron Portnoy

Blog Post

References

Patched Junie Changelog

Learn how Mindgard can help you navigate AI Security

Take the first step towards securing your AI. Book a demo now and we'll reach out to you.

Book a Demo
Protect your AI with Mindgard

Mindgard, the leading provider of Artificial Intelligence security solutions, helps enterprises secure their AI models, agents, and systems across the entire lifecycle. Mindgard’s solution uncovers shadow AI, conducts automated AI red teaming by emulating adversaries, and delivers runtime protection against attacks like prompt injection and agentic manipulation. Trusted by leading organizations in finance, healthcare, and technology, Mindgard is backed by investors including .406 Ventures, IQ Capital, Atlantic Bridge, and Lakestar.

©️ 2025 Mindgard limited
All rights Reserved