CSOonline

Prompt injection flaws in GitLab Duo highlights risks in AI assistants

Researchers managed to trick GitLab’s AI-powered coding assistant to display malicious content to users and leak private source code by injecting hidden prompts in code comments, commit messages and ...
TechRepublic

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’ Your email has been sent A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and ...
Ars Technica

Researchers cause GitLab AI developer assistant to turn safe code malicious

Marketers promote AI-assisted developer tools as workhorses that are essential for today’s software engineer. Developer platform GitLab, for instance, claims its Duo chatbot can “instantly generate a ...
SD Times

GitLab 18 integrates AI capabilities from Duo

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
Dark Reading

GitLab's AI Assistant Opened Devs to Code Theft

An indirect prompt injection flaw in GitLab's artificial intelligence (AI) assistant could have allowed attackers to steal source code, direct victims to malicious websites, and more. In fact, ...
Yahoo Finance

GitLab Continues AI Momentum with Enhanced AI-Powered DevSecOps Workflows

SAN FRANCISCO, Nov. 09, 2023 (GLOBE NEWSWIRE) -- All Remote - GitLab Inc., the most comprehensive AI-powered DevSecOps platform, today announced updates to GitLab Duo, the company’s suite of AI ...
heise online

GitLab 18.8: Duo Agent Platform now generally available

With GitLab 18.8, GitLab is making the Duo Agent Platform generally available. It is intended to support companies in coordinating the use of AI agents for planning, development, security, and ...