Web Content

Add something from the web Paste a URL and Weird will route it into the right native section.
GitLost: How We Tricked GitHub’s AI Agent into Leaking Private Repos - Noma Security
Web Content

GitLost: How We Tricked GitHub’s AI Agent into Leaking Private Repos - Noma Security

Interesting · noma.security · generic

TL;DR: Noma Labs discovered a critical prompt injection vulnerability within GitHub’s new Agentic Workflows, allowing an unauthenticated attacker to silently pull data from private repositories by posting a crafted GitHub Issue in a public repository belonging to the same organization as the private repositories. Noma Labs named the vulnerability GitLost. Introduction GitHub recently launched […]

TypeWeb Page
Domainnoma.security
Providergeneric
Recommend it?

Taste signal

CommunityNo votes yet
Total ratings0
Your signalNot rated

No high-context match details yet. As more Taste Twins rate this, this section will show who aligns with your taste here.

Useful info

We have the community taste signal, but richer practical fields for this item are not populated yet.

Tips and insights

Create a profile to add tips or personal takes.
No tips yet. Add the first useful note for this item.