Hackers can exploit vulnerabilities in a generative artificial intelligence assistant integrated across GitLab's DevSecOps ...

A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and inject malicious HTML. GitLab ...

GitLab CISO Josh Lemos explains how the company is weaving AI, through its Duo tool, into the entire software development ...

With AI introducing errors and security vulnerabilities as it writes code, humans still have a vital role in testing and ...

A proponent of agile leadership, Gnanendra Reddy Muthirevula mentors teams, streamlines releases, and drives continuous ...

GitLab Duo, introduced in June 2023 and ... By embedding concealed prompts in areas such as merge request descriptions, commit messages, and code comments, attackers could manipulate Duo’s ...

A critical vulnerability in GitLab's AI-powered coding assistant, Duo, has exposed private source code repositories to theft through a sophisticated indirect prompt injection attack, cybersecurity ...

commit messages, issue descriptions or comments, and source code was enough to leak sensitive data or inject HTML into GitLab Duo's responses. These prompts could be concealed further using encoding ...

GitLab is an enhanced version of the popular `Git` version-control software used by millions of software developers worldwide. It allows users to commit and review their code, track bugs and features, ...

Developer platform GitLab, for instance ... demonstrated an attack that induced Duo into inserting malicious code into a script it had been instructed to write. The attack could also leak private ...