News

GitLab's AI Pricing Changes, CRO Strategy Make JPMorgan Analyst Cautious Despite Expected Q1 Beat
JPMorgan analyst maintains Neutral rating and $58 target for GitLab (GTLB), expects normal beat cadence and potential ...
DataBreachToday3d
Patched GitLab Duo Flaws Risked Code Leak, Malicious Content
Hackers can exploit vulnerabilities in a generative artificial intelligence assistant integrated across GitLab's DevSecOps platform to manipulate the model's ...
The Hacker News7d
GitLab Duo Vulnerability Enabled Attackers to Hijack AI Responses with Hidden Prompts
Indirect prompt injection in GitLab Duo exposed private source code and inserted malicious HTML into AI responses, risking ...
CSO Online8d
Prompt injection flaws in GitLab Duo highlights risks in AI assistants
Researchers managed to trick GitLab’s AI-powered coding assistant to display malicious content to users and leak private ...
techzine8d
Vulnerability in GitLab assistant enabled code theft
Duo is a tool within GitLab that users of the open-source repository can use to analyze code, suggest changes, and automate certain aspects of writing, testing, and merging code. In other words, it is ...
Researchers cause GitLab AI developer assistant to turn safe code malicious
Researchers from security firm Legit on Thursday demonstrated an attack that induced Duo into inserting malicious code into a ...
GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’
A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and inject malicious HTML. GitLab ...