GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’ Your email has been sent A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code ...

Arabian Post -A critical vulnerability in GitLab’s AI-powered coding assistant, Duo, has exposed private source code repositories to theft through a sophisticated indirect prompt injection ...

Marketers promote AI-assisted developer tools as workhorses that are essential for today’s software engineer. Developer platform GitLab, for instance, claims its Duo chatbot can “instantly ...

GitLab Duo Agent Platform is a devsecops orchestration platform designed to enable asynchronous collaboration between ...

A hacker breached the GitLab repositories of multinational car-rental company Europcar Mobility Group and stole source code for Android and iOS applications, as well as some personal information ...

A new vulnerability in GitLab’s Ultimate Enterprise Edition used for managing source code is “dangerous” and needs to be quickly patched, says an expert. The vulnerability, CVE-2025-5121, is ...

That may come as a bit of a surprise, given that GitLab partnered with Google for other AI features, including its code completion service. “We had not chosen [a model] for chat,” DeSanto told me.

Today, GitLab cut off access to Nintendo Switch emulator Suyu, and disabled the accounts of its devs, after receiving a scary email that looked like a DMCA takedown request.

A GitLab representative declined to provide specifics about the active exploitation of the vulnerability. The vulnerability, classified as an improper access control flaw, could pose a grave threat.