Brief

last 24h

[2/2] 224 sources

Multi-source AI news clustered, deduplicated, and scored 0–100 across authority, cluster strength, headline signal, and time decay.

TOOL · dev.to — LLM tag English(EN) · 6h

A real prompt-injection case — and the blind spot it exposed in my own scanner

A prompt injection vulnerability was discovered in GitLab Duo, where malicious instructions could be hidden within project content using encoding techniques like Unicode smuggling and Base16. Researchers at Legit Security demonstrated this exploit, which was subsequently patched by GitLab. This case highlights a blind spot in deterministic scanners, like the one developed by the author, which may fail to detect such encoded or split system prompt leaks. AI

IMPACT Highlights the ongoing challenge of securing AI systems against sophisticated prompt injection attacks and the need for more robust detection methods.
- Legit Security
- GitLab Duo
- GitLab
- Unicode
- Base16
- rojaprove
TOOL · Mastodon — fosstodon.org English(EN) · 3w

https:// docs.gitlab.com/releases/19/gi tlab-19-0-released/#gitlab-duo-core-moves-to-usage-based-billing Code suggestions now consuming credits. The bubble pop

GitLab has transitioned its Duo code suggestion feature to a usage-based billing model. This change means that code suggestions will now consume credits, potentially leading to increased costs for users. The move has sparked discussion about the true cost of AI tools and their long-term viability. AI

IMPACT This change may influence how organizations budget for and adopt AI-powered coding assistants.
- GitLab Duo
- GitLab