I found a critical CVE in a top AI agent framework. Here's what it taught me about how we're all building agents wrong.

A critical CVE was discovered in the OpenHands AI agent framework due to improper file path sanitization, allowing arbitrary file reading outside the sandbox. This incident reveals a new class of security problems inherent in agentic systems, where every tool represents a potential injection vector that the community is not adequately addressing.