15:58
2026-07-15
dev.to
ai-safety
GitHub's AI agent can be tricked into leaking private repos via a public Issue
Noma Labs discovered a prompt injection vulnerability in GitHub's Agentic Workflows that allows an attacker to trick the AI agent into leaking private repository contents via a public issue. By embedd…