News

DataBreachToday6d
Patched GitLab Duo Flaws Risked Code Leak, Malicious Content
Hackers can exploit vulnerabilities in a generative artificial intelligence assistant integrated across GitLab's DevSecOps ...
GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’
A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and inject malicious HTML. GitLab ...
Researchers cause GitLab AI developer assistant to turn safe code malicious
Researchers from security firm Legit on Thursday demonstrated an attack that induced Duo into inserting malicious code into a ...
CSO Online11d
Prompt injection flaws in GitLab Duo highlights risks in AI assistants
Researchers managed to trick GitLab’s AI-powered coding assistant to display malicious content to users and leak private ...
SD Times19d
GitLab 18 integrates AI capabilities from Duo
Other AI updates in GitLab 18 include: The ability to use Repository X-Ray with Code Suggestions on GitLab Duo Self-Hosted Automatic code reviews and improved review context in Duo Prompt caching ...
Bleeping Computer2mon
GitLab patches critical authentication bypass vulnerabilities
GitLab.com is already patched, and GitLab Dedicated customers will be updated automatically, but users who maintain self-managed installations on their own infrastructure ... as the use of the ...
InfoWorld3y
GitLab’s S-1 points to an integrated devops future
GitLab prepares ... to be using its platform by 2025 (never mind the fuzzy math used to get there) and is the default place for developers to push their open source code. GitHub is also a primary ...