网络安全公司 Aikido Security 发现了一类新型提示注入漏洞，命名为"PromptPwnd"。该漏洞影响与AI Agent（包括谷歌Gemini CLI、Claude Code和OpenAI Codex）集成的GitHub ...

一种名为"PromptPwnd"的高危漏洞类别正在影响集成到GitHub Actions和GitLab CI/CD管道中的AI Agent。该漏洞允许攻击者通过问题标题或拉取请求正文等不受信任的用户输入注入恶意提示，诱使AI模型执行特权命令，导致机密信息泄露或工作流被篡改。至少有五家财富500强企业面临风险，谷歌自家的Gemini CLI仓库在快速修复前也受到影响。

GitHub Actions is a platform built into GitHub that automates software building, testing, and deployment. GitHub, owned by Microsoft, is a hosting service for software development using Git, an open ...

Discover the top 10 CI/CD tools of 2025 that enhance DevOps team efficiency, automating code building, testing, and deployment processes. Make informed decisions for your software development needs.

Automating and streamlining the software development lifecycle through continuous integration and continuous delivery (CI/CD) is a cornerstone of software development today. One of the easiest tools ...