A public issue can trick GitHub Agentic Workflows into leaking
the contents of an organization's private repositories, researchers
at Noma Security have shown. The attacker needs only to open a
normal-looking issue on a public repository, with no stolen
credentials and no access to the organization. If that organization
has given the agent read access across its repositories, private
ones
Read more https://thehackernews.com/2026/07/public-github-issue-could-trick-github.html

