Microsoft patched a Copilot Studio prompt injection. The data exfiltrated anyway.

Microsoft assigned CVE-2026-21520 to a Copilot Studio prompt injection vulnerability and patched it in January — but in ...

GitHub backs down, kills Copilot pull-request ads after backlash

Following backlash from developers, GitHub has removed Copilot's ability to stick ads - what it calls "tips" - into any pull request that invokes its name.  Australian developer Zach Manson noted on ...

Agents hooked into GitHub can steal creds – but Anthropic, Google, and Microsoft haven't warned users

Exclusive: Researchers who found the flaws scored beer money bounties and warn the problem is probably pervasive ...

Copilot is now injecting ads into GitHub pull requests. It's a disaster.

A developer caught Copilot adding promotional "tips" to code descriptions, highlighting a messy new era of AI slop.
WinBuzzer

AI Coding: GitHub Hit by Outages as AI Agents Flood Platform

GitHub has logged five incidents in two days as AI coding agents overwhelm its infrastructure, while Meta's token leaderboard ...
TechAnnouncer

GitHub Copilot ARR: Understanding the Financial Landscape of AI Coding Assistants

Right then, let’s talk about GitHub Copilot. You know, that AI thing that helps you code? We’re going to look at its finances ...
Windows Latest

Microsoft says Copilot ad in GitHub pull request was a bug, not an advertisement

Microsoft has denied the GitHub Copilot ad reports and told Windows Latest that it does not plan to show ads on GitHub.

'This is horrific': GitHub kills Copilot pull-request ads after user backlash

Developers were (understandably) furious with Copilot and other ads appearing in their pull requests – now GitHub has reversed its decision.