Platforms Enterprise It SecurityEnterprise Security Item

GitHub Copilot ad injection into pull requests

March 30, 2026Gray Hats, Sam Stepanyan

Gray Hats and Sam Stepanyan claim GitHub Copilot injected ads into PRs at scale, raising trust and integrity concerns for AI-assisted coding in enterprise workflows.

Open in PulseSee the full expert discussion →

QUOTES

GitHub Copilot was caught secretly injecting ads for Raycast and Microsoft Teams into 11,000+ PRs.

Copilot injected an ad into a Pull Request text:

VOICES

Gray Hats

Sam Stepanyan

RELATED TERMS

githubcopilotintegritygithubmicrosoft

OTHER FINDINGS IN PLATFORMS ENTERPRISE IT SECURITY

Google post-quantum cryptography migration timeline moved up to 2029 RCE in Google Cloud via single directory deletion (Looker)Claude usage-limit frustration on $100 subscription

AMYGDALA PULSE

See what experts are saying right now

This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new expert voices, debates, and emerging ideas.

Open Cyber Security Pulse Browse all topics

← Back to Cyber Security