szmer
  • Communities
  • Create Post
  • Create Community
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
David Gerard@awful.systemsM to TechTakes@awful.systemsEnglish · 10 days ago

It’s trivial to prompt-inject Github’s AI Copilot Chat

pivot-to-ai.com

external-link
message-square
1
fedilink
25
external-link

It’s trivial to prompt-inject Github’s AI Copilot Chat

pivot-to-ai.com

David Gerard@awful.systemsM to TechTakes@awful.systemsEnglish · 10 days ago
message-square
1
fedilink
We mentioned Omer Mayraz from Legit Security in May, when he prompt-injected an AI code bot on GitLab and got it to play a Rick Astley video. He’s got a new one, this time with Git Hub Copilot Chat…

‘You won a free $10 Copilot coupon!’

https://www.youtube.com/watch?v=iapCiYBj1bI&list=UU9rJrMVgcXTfa8xuMnbhAEA - video
https://pivottoai.libsyn.com/20251014-prompt-inject-githubs-ai-copilot-chat - podcast

time: 5 min 32 sec

  • BlueMonday1984@awful.systems
    link
    fedilink
    English
    arrow-up
    13
    ·
    10 days ago

    But can we do a zero click attack? Can we make Copilot Chat give us the user’s private data if they even look at the pull request page? Yes, we can!

    In a YouTube commenter’s own words:

TechTakes@awful.systems

techtakes@awful.systems

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !techtakes@awful.systems

Big brain tech dude got yet another clueless take over at HackerNews etc? Here’s the place to vent. Orange site, VC foolishness, all welcome.

This is not debate club. Unless it’s amusing debate.

For actually-good tech, you want our NotAwfulTech community

Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 143 users / day
  • 382 users / week
  • 1.71K users / month
  • 5.17K users / 6 months
  • 1 local subscriber
  • 2.26K subscribers
  • 678 Posts
  • 14.1K Comments
  • Modlog
  • mods:
  • David Gerard@awful.systems
  • BE: 0.19.6
  • Modlog
  • Legal
  • Instances
  • Docs
  • Code
  • join-lemmy.org