News

GitHub6mon
GitHub - CycodeLabs/langflow-gitlab-server-evaluator
This project contains the source code for an AI-powered evaluator built using Langflow to prioritize GitLab self-hosted servers based on their likelihood of exposing sensitive data. The tool helps ...
Security Boulevard1mon
Remote Prompt Injection in GitLab Duo Leads to Source Code Theft
Get details on the vulnerabilities the Legit research team unearthed in GitLab Duo. TL;DR: A hidden comment was enough to make GitLab Duo leak private source code and inject untrusted HTML into its ...
Ars Technica1mon
Researchers cause GitLab AI developer assistant to turn safe code ...
Marketers promote AI-assisted developer tools as workhorses that are essential for today’s software engineer. Developer platform GitLab, for instance, claims its Duo chatbot can “instantly ...
Dark Reading1mon
GitLab's AI Assistant Opened Devs to Code Theft
Prompt injection risks in GitLab's AI assistant could have allowed attackers to steal source code, or indirectly deliver developers malware, dirty links, and more. Nate Nelson, Contributing Writer ...
GitLab Stock Drops on Conservative Guidance. Here's Why This Pullback Looks Like a Buying Opportunity.
GitLab shares sank on conservative guidance. The cybersecurity DevSecOps platform operator continues to see strong revenue growth and surging profitability. Shares of GitLab (NASDAQ: GTLB) sank after ...
IT News For Australia Business1y
GitLab patches another critical vulnerability - iTnews
Popular source code management platform GitLab was patched on Friday, Australian time, against five vulnerabilities, including one with a critical severity rating. The patches apply to both the ...
Bleeping Computer1y
GitLab warns of critical zero-click account hijacking vulnerability
GitLab has released security updates for both the Community and Enterprise Edition to address two critical vulnerabilities, one of them allowing account hijacking with no user interaction.