Skip to content

Prompt injection attack callout in readme #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Jeffrey-Luszcz merged 2 commits into from
Jul 28, 2025
Merged

Prompt injection attack callout in readme #2

Jeffrey-Luszcz merged 2 commits into from
Jul 28, 2025

Conversation

@phazonoverload
Copy link
Collaborator

@phazonoverload phazonoverload commented Jul 28, 2025

This pull request adds a security notice to the README.md file to inform users about potential risks associated with workflows that accept user input.

Copilot AI review requested due to automatic review settings July 28, 2025 19:31
Copilot AI reviewed Jul 28, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This pull request adds a security notice to the README.md file to warn users about potential prompt injection attacks when using workflows that accept user input. The notice provides guidance on mitigation strategies including careful prompt design and minimum permissions.

  • Adds an important security callout about prompt injection risks
  • Provides basic mitigation recommendations for workflows accepting user input

README.md Outdated
| [Add Merged PR to Changelog](/workflows/add-merged-pr-to-changelog/add-merged-pr-to-changelog.yml) | Appends a summary of a merged pull request to an issue. | @phazonoverload |

> [!IMPORTANT]
> Whenever workflows explicitly accept user input, a malicious actor could open an issue instructing a model to do something you don't want. By carefully writing prompts and providing minimum permissions, you can help mitigate these risks.

This comment was marked as off-topic.

Sign in to view

README.md Outdated
| [Add Merged PR to Changelog](/workflows/add-merged-pr-to-changelog/add-merged-pr-to-changelog.yml) | Appends a summary of a merged pull request to an issue. | @phazonoverload |

> [!IMPORTANT]
> Whenever workflows explicitly accept user input, a malicious actor could open an issue instructing a model to do something you don't want. By carefully writing prompts and providing minimum permissions, you can help mitigate these risks.

This comment was marked as off-topic.

Sign in to view

Jeffrey-Luszcz
Jeffrey-Luszcz approved these changes Jul 28, 2025
View reviewed changes
Copy link
Contributor

@Jeffrey-Luszcz Jeffrey-Luszcz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@Jeffrey-Luszcz Jeffrey-Luszcz merged commit c416469 into main Jul 28, 2025
@Jeffrey-Luszcz Jeffrey-Luszcz deleted the prompt-injection-attack-callout branch July 28, 2025 19:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@Jeffrey-Luszcz Jeffrey-Luszcz Jeffrey-Luszcz approved these changes

@ashleywolf ashleywolf Awaiting requested review from ashleywolf ashleywolf is a code owner

@chrisreddington chrisreddington Awaiting requested review from chrisreddington chrisreddington is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@phazonoverload @Jeffrey-Luszcz