Agent Supply Chain Attacks: The Threat Model Nobody Prepared For
AI agents don't just run code — they invoke tools, trust descriptions, and execute decisions at runtime. This creates a new class of supply chain attack where the payload isn't a package — it's a prompt, a tool definition, or a protocol message.