AnalysisCybersecurityJuly 7, 2026

Public GitHub issue can leak private repo data via agentic workflows

A public GitHub issue can trick GitHub Agentic Workflows into leaking private repository data. Noma Security researchers demonstrated the attack requires no stolen credentials, only opening an issue on a public repo.

1 source

Public GitHub issue can leak private repo data via agentic workflows — AIBriefs