GitLost: We Tricked GitHub's AI Agent into Leaking Private Repos
dev_tools
According to Hacker News, security researchers say they managed to trick GitHub's AI coding agent into leaking private repositories. Their write-up, published under the name GitLost, describes coaxing the automated assistant into exposing code it was supposed to keep confidential. It's the latest reminder that as AI agents gain access to sensitive systems, they can also be manipulated into handing that access over.
Source: https://noma.security/blog/gitlost-how-we-tricked-githubs...
Listen to this story
Hear this and more stories in a personalized audio briefing.
Open The Chonkerton