AnalysisCybersecurityJuly 7, 2026
Public GitHub issue can leak private repo data via agentic workflows

A public GitHub issue can trick GitHub Agentic Workflows into leaking private repository data. Noma Security researchers demonstrated the attack requires no stolen credentials, only opening an issue on a public repo.