News

Researchers cause GitLab AI developer assistant to turn safe code malicious
Researchers from security firm Legit on Thursday demonstrated an attack that induced Duo into inserting malicious code into a script it had been instructed to write. The attack could also leak private ...
The Hacker News23h
GitLab Duo Vulnerability Enabled Attackers to Hijack AI Responses with Hidden Prompts
Indirect prompt injection in GitLab Duo exposed private source code and inserted malicious HTML into AI responses, risking ...