{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2026:E2OGFKUY77VZA4FP5J6V4HHEQA","short_pith_number":"pith:E2OGFKUY","schema_version":"1.0","canonical_sha256":"269c62aa98ffeb9070afea7d5e1ce4803f112486e3a69cefb1a2cd21b9c8e213","source":{"kind":"arxiv","id":"2605.29737","version":1},"attestation_state":"computed","paper":{"title":"Minimal Prompt Perturbations Lead to Code Vulnerabilities: Prompt Fragility and Hidden-State Signals in Coding LLMs","license":"http://creativecommons.org/licenses/by/4.0/","headline":"","cross_cats":["cs.CL","cs.SE"],"primary_cat":"cs.CR","authors_text":"Alexander Sternfeld, Andrei Kucharavy, Ljiljana Dolamic","submitted_at":"2026-05-28T10:30:28Z","abstract_excerpt":"LLM-based coding assistants are seeing rapid adoption, offering substantial gains in developer productivity. As organizations increasingly ship code these agents produce, the security of that code becomes critical. Prior work has shown that minor prompt perturbations degrade the functional correctness of LLM-generated code, but whether they also compromise code security has remained unstudied. We apply token-level mutations to prompts across three models and five programming languages, and show that mutations as small as a single-character change can flip generated code from secure to vulnerab"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"2605.29737","kind":"arxiv","version":1},"metadata":{"license":"http://creativecommons.org/licenses/by/4.0/","primary_cat":"cs.CR","submitted_at":"2026-05-28T10:30:28Z","cross_cats_sorted":["cs.CL","cs.SE"],"title_canon_sha256":"3cf12d4f2d1a3a21cafcfadd4b2c20afcf29e9a2e05b61a598d81aa54ca42131","abstract_canon_sha256":"241b371688a6bd4e3a362f13e87275cce1433abd5fe247c22b9bf116ce951aba"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-29T01:05:57.394564Z","signature_b64":"rJOEp2mZml7g4krvCN3tj1tBX9HNWoroyIWTKGP348jPyBQABRKDky0ucQVg5BGnegLA8dtKQoTnyRy7ViaLCA==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"269c62aa98ffeb9070afea7d5e1ce4803f112486e3a69cefb1a2cd21b9c8e213","last_reissued_at":"2026-05-29T01:05:57.394104Z","signature_status":"signed_v1","first_computed_at":"2026-05-29T01:05:57.394104Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"Minimal Prompt Perturbations Lead to Code Vulnerabilities: Prompt Fragility and Hidden-State Signals in Coding LLMs","license":"http://creativecommons.org/licenses/by/4.0/","headline":"","cross_cats":["cs.CL","cs.SE"],"primary_cat":"cs.CR","authors_text":"Alexander Sternfeld, Andrei Kucharavy, Ljiljana Dolamic","submitted_at":"2026-05-28T10:30:28Z","abstract_excerpt":"LLM-based coding assistants are seeing rapid adoption, offering substantial gains in developer productivity. As organizations increasingly ship code these agents produce, the security of that code becomes critical. Prior work has shown that minor prompt perturbations degrade the functional correctness of LLM-generated code, but whether they also compromise code security has remained unstudied. We apply token-level mutations to prompts across three models and five programming languages, and show that mutations as small as a single-character change can flip generated code from secure to vulnerab"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"2605.29737","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"integrity":{"clean":true,"summary":{"advisory":0,"critical":0,"by_detector":{},"informational":0},"endpoint":"/pith/2605.29737/integrity.json","findings":[],"available":true,"detectors_run":[],"snapshot_sha256":"c28c3603d3b5d939e8dc4c7e95fa8dfce3d595e45f758748cecf8e644a296938"},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"2605.29737","created_at":"2026-05-29T01:05:57.394173+00:00"},{"alias_kind":"arxiv_version","alias_value":"2605.29737v1","created_at":"2026-05-29T01:05:57.394173+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.2605.29737","created_at":"2026-05-29T01:05:57.394173+00:00"},{"alias_kind":"pith_short_12","alias_value":"E2OGFKUY77VZ","created_at":"2026-05-29T01:05:57.394173+00:00"},{"alias_kind":"pith_short_16","alias_value":"E2OGFKUY77VZA4FP","created_at":"2026-05-29T01:05:57.394173+00:00"},{"alias_kind":"pith_short_8","alias_value":"E2OGFKUY","created_at":"2026-05-29T01:05:57.394173+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":0,"internal_anchor_count":0,"sample":[]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA","json":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA.json","graph_json":"https://pith.science/api/pith-number/E2OGFKUY77VZA4FP5J6V4HHEQA/graph.json","events_json":"https://pith.science/api/pith-number/E2OGFKUY77VZA4FP5J6V4HHEQA/events.json","paper":"https://pith.science/paper/E2OGFKUY"},"agent_actions":{"view_html":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA","download_json":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA.json","view_paper":"https://pith.science/paper/E2OGFKUY","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=2605.29737&json=true","fetch_graph":"https://pith.science/api/pith-number/E2OGFKUY77VZA4FP5J6V4HHEQA/graph.json","fetch_events":"https://pith.science/api/pith-number/E2OGFKUY77VZA4FP5J6V4HHEQA/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA/action/timestamp_anchor","attest_storage":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA/action/storage_attestation","attest_author":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA/action/author_attestation","sign_citation":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA/action/citation_signature","submit_replication":"https://pith.science/pith/E2OGFKUY77VZA4FP5J6V4HHEQA/action/replication_record"}},"created_at":"2026-05-29T01:05:57.394173+00:00","updated_at":"2026-05-29T01:05:57.394173+00:00"}