GitHub AI agent leaks private repositories via prompt injection attack
GitHub's preview Agentic Workflows are vulnerable to a prompt injection attack that can leak private repository contents, according to Noma Security. An unauthenticated attacker can embed hidden instructions in a public …