Gitlab reports:
Attacker can abuse scan execution policies to run pipelines as another user
about.gitlab.com/releases/2023/09/18/security-release-gitlab-16-3-4-released/