[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4MJXuDZPNf5ZcBSaChzMrnY-Eq71UnCcfQR3NCbG2-c":3},{"article":4,"iocs":46},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":24,"category":25,"article_tags":28},"69a23c48-fd1b-4ede-8770-da1889d22ba1","'GitLost' Flaw Leaks Private Data From GitHub's Agentic Workflows","gitlost-flaw-leaks-private-data-from-github-s-agentic-workflows-850d83","The flaw allows an unauthenticated attacker to craft a GitHub Issue in an org's public repository and then silently pull data from its private repos, too.","A critical vulnerability dubbed 'GitLost' has been discovered in GitHub's agentic workflows, allowing unauthenticated attackers to exfiltrate private data. By creating a malicious GitHub Issue within an organization's public repository, attackers can silently access and steal sensitive information from private repositories within the same organization.","GitLost flaw leaks private data from GitHub's agentic workflows via crafted public repo issues.",null,"https:\u002F\u002Fwww.darkreading.com\u002Fcyber-risk\u002Fgitlost-leaks-private-data-github-agentic-workflows","https:\u002F\u002Feu-images.contentstack.com\u002Fv3\u002Fassets\u002Fblt6d90778a997de1cd\u002Fblt10ffb7d3c09c15f9\u002F6a4cd672541f2a099e941684\u002FUnlock_Data_Breach_Pattara_Alamy.png?width=720&quality=80&disable=upscale","2026-07-07T15:24:30+00:00","2026-07-07T18:00:05.088469+00:00",9,[18,21],{"name":19,"type":20},"GitHub Agentic Workflows","product",{"name":22,"type":23},"GitHub","vendor","80544778-fabb-4dcd-aa35-17492e5dcf4f",{"id":24,"icon":11,"name":26,"slug":27},"Vulnerabilities","vulnerabilities",[29,34,39,41],{"category":30},{"id":31,"icon":11,"name":32,"slug":33},"26b0b636-0e31-4db1-bffb-61bdf9f20a58","Supply Chain","supply-chain",{"category":35},{"id":36,"icon":11,"name":37,"slug":38},"2e06f76c-d5b9-4f54-9eef-4d3447b10730","Breaches","breaches",{"category":40},{"id":24,"icon":11,"name":26,"slug":27},{"category":42},{"id":43,"icon":11,"name":44,"slug":45},"c70f3a41-2f0c-4608-870d-b8cbcd8be076","Cloud Security","cloud-security",[47],{"type":48,"value":49,"context":50},"cve","CVE-2024-4122","GitLost vulnerability in GitHub agentic workflows"]