Thew Dhanat
@thewdhanat.bsky.social
Medicine · Software · Aviation · Machine learning
https://www.thewdhanat.com/
https://www.thewdhanat.com/
Reposted by Thew Dhanat
Once again, if your LLM system combines access to private data, exposure to malicious instructions and the ability to exfiltrate information (through tool use or through rendering links and images) you have a nasty security hole
This time, GitLab: simonwillison.net/2025/May/23/...
This time, GitLab: simonwillison.net/2025/May/23/...
Remote Prompt Injection in GitLab Duo Leads to Source Code Theft
Yet another example of the classic [Markdown image exfiltration attack](https://simonwillison.net/tags/exfiltration-attacks/), this time affecting GitLab Duo - GitLab's chatbot. Omer Mayraz reports on...
simonwillison.net
May 23, 2025 at 2:44 PM
Once again, if your LLM system combines access to private data, exposure to malicious instructions and the ability to exfiltrate information (through tool use or through rendering links and images) you have a nasty security hole
This time, GitLab: simonwillison.net/2025/May/23/...
This time, GitLab: simonwillison.net/2025/May/23/...