ByteBrief
We're a portrait publication through and through. Turn your phone back and your briefing picks up right where you left it.
(We tried widescreen once. It wasn't us.)

Noma Security disclosed GitLost, a prompt injection vulnerability in GitHub's Agentic Workflows. An attacker posted a crafted issue in a public repository, causing the AI agent to exfiltrate README files from private repositories and post them publicly. Adding the word "additionally" bypassed GitHub's guardrails.
Tap to vote and see what everyone thinks.
Summary by ByteBrief
How GitHub used secret scanning to reach inbox zero