In the auto-remediation pipeline, object to execution.go was deserializing the AI-generated YAML directly into a Deployment object, but there was lack of validation from the original Deployment object.

This issue was fixed after coordination with Alex Jones.

To minimize the impact, the PoC of this vulnerability wasn't released, but was shared with the maintainers.