A newly disclosed vulnerability dubbed “GitLost” shows how attackers can weaponize a single GitHub Issue to trick GitHub’s new AI-powered Agentic Workflows into leaking private repository contents to the public internet, with no credentials, coding skills, or system access required. GitHub Agentic Workflows pair GitHub Actions...
Read the full article at the source.
Comments (0)
No comments yet. Be the first to comment!