Per usual, there's no fix - or even any documentation - for GitLost

'GitLost' vulnerability let GitHub's AI workflows leak private repositories - SiliconANGLE

The issue affects GitHub Agentic Workflows setups that read public input, hold private repo access, and can post output publicly.

The flaw allows an unauthenticated attacker to craft a GitHub Issue in an org's public repository and then silently pull data from its private repos, too.

Per usual, there's no fix - or even any documentation - for GitLost

Findings raise fresh concerns over the security of AI agents with privileged access to enterprise code.

Noma Labs tricked GitHub's AI agent into leaking private repositories with a crafted issue. The prompt-injection flaw, GitLost, has no code fix.

A critical prompt injection vulnerability in GitHub Agentic Workflows could allow unauthenticated attackers to leak private repository data,