The AI Tool That Breached Vercel: A Case Study in Agent Trust Debt

Last week, Vercel disclosed a security incident that quietly rewrote the threat model for every engineering organization deploying AI tools. The breach entry point wasn't a zero-day. It wasn't a phishing campaign or a misconfigured S3 bucket. It was a third-party AI tool — Context.ai — whose employee was infected by Lumma Stealer malware. The stolen credentials included Google Workspace OAuth tokens. One Vercel employee had granted Context.ai broad access to their Google Workspace. One compromis