GitLost Proves Agentic Workflows Have No Trust Boundary
Noma Labs disclosed GitLost, a vulnerability in GitHub Agentic Workflows that allowed an attacker to exfiltrate private repository contents via a crafted public issue. The attack exploited the AI agent's inability to dis…