This "ad" is not exactly new. Looks like MS thinks it's a "tip" rather than an ad. I don't know if Raycast team even knows about this.<p><a href="https://github.com/PlagueHO/plagueho.github.io/pull/24#issue-3076164344" rel="nofollow">https://github.com/PlagueHO/plagueho.github.io/pull/24#issue...</a> Copilot has been adding "(emoji) (tip)" thing since May 2025. GitHub copilot was released in May 2025, so basically it has had an ad since beginning.<p>There are 1.5m of these things in GitHub. <a href="https://github.com/search?q=%22%3C%21--+START+COPILOT+CODING+AGENT+TIPS+--%3E%22&type=pullrequests&s=updated&o=asc&p=1" rel="nofollow">https://github.com/search?q=%22%3C%21--+START+COPILOT+CODING...</a><p>Here are some of them:<p><a href="https://github.com/johannesPP/FS-Calculator/pull/2" rel="nofollow">https://github.com/johannesPP/FS-Calculator/pull/2</a><p>> Connect Copilot coding agent with Jira, Azure Boards or Linear to delegate work to Copilot in one click without leaving your project management tool.<p><a href="https://github.com/sharthomas645-tech/HybridAI-Next-React-Vite/pull/37" rel="nofollow">https://github.com/sharthomas645-tech/HybridAI-Next-React-Vi...</a><p>> Send tasks to Copilot coding agent from Slack and Teams to turn conversations into code. Copilot posts an update in your thread when it's finished.<p>Looks like MS really want to "give tips" about their new integrations.<p>edit: I think it's an ad too. Everyone would think so, except for MS.
> I don't know if Raycast team even knows about this.<p>I'm part of Raycast, we didn't know about it, learnt about it here
Creepy. Looks like they rolled it back: <a href="https://news.ycombinator.com/item?id=47573233">https://news.ycombinator.com/item?id=47573233</a><p>Collection of my thoughts which don't really get to a point:<p>- Microsoft owns GitHub, where Raycast is being mentioned thousands of times by their tooling.<p>- Microsoft is a modern popularizer of the infamous phrase, embrace extend extinguish. <a href="https://en.wikipedia.org/wiki/Embrace,_extend,_and_extinguish" rel="nofollow">https://en.wikipedia.org/wiki/Embrace,_extend,_and_extinguis...</a><p>- Microsoft has a history of monopoly behavior <a href="https://en.wikipedia.org/wiki/United_States_v._Microsoft_Corp" rel="nofollow">https://en.wikipedia.org/wiki/United_States_v._Microsoft_Cor...</a>.<p>- From an empathetic perspective I hope for the sake of the customers of raycast and for its employees that Microsoft is not into any kind of negotiations with Raycast at the moment.
I haven’t clicked through so all I know about Raycast is, “that’s the company that gets shoved into ads by copilot.”<p>Sounds like it’s not your fault but it’s probably doing some brand damage :/
Maybe check if you are charged for it
Microslop for a while now seems to be testing exactly how much you can abuse the user before they move somewhere else. Windows is a prime example. Everything is ads, tracking, popups, annoyances, etc.<p>They have got away with it for a while because a lot of users have largely been stuck, but they are in real trouble now with Apple providing meaningful competition.
If Microsoft is willing to put ads into your PRs via Copilot like this, imagine what they could put into your codebase itself with Copilot.<p>Or what Microsoft could do, run, install, etc on/from your computer while running their Copilot agents.<p>This is the same company that puts ads in your start menu and reinserts them with Windows updates even if you manually removed them.
"Reflections on Trusting Trust" for the new era. MSVC doesn't compile a secret master-password into your software, just a Copilot ad.<p>("Reflections on Trusting Trust" Turing Award Lecture by Ken Thompson: <a href="https://www.cs.cmu.edu/~rdriley/487/papers/Thompson_1984_ReflectionsonTrustingTrust.pdf" rel="nofollow">https://www.cs.cmu.edu/~rdriley/487/papers/Thompson_1984_Ref...</a>)
I wonder if there will come a time where I can pay M$ to sabotage my competition codebase
Imagine just having the copilot extension installed will be an excuse at some point for them to steal our code to train their AI models. Not sure if they already do this.
Of course they already do this.<p>The ToS (<a href="https://www.microsoft.com/en-us/microsoft-copilot/for-individuals/termsofuse" rel="nofollow">https://www.microsoft.com/en-us/microsoft-copilot/for-indivi...</a>) says explicitly:<p>> Copilot may include both automated and manual (human) processing of data. You shouldn’t share any information with Copilot that you don’t want us to review.<p>so they're reserving the right to process whatever it looks at.<p>You're sending them your codebase already, as part of the prompt for generating new snippets, debugging, etc. So they have access to it.<p>They'd be absolute fools not to be using the results of sessions to continue to refine their models, and they already reserved the rights to look at what you send them, so yeah - they're doing it.<p>(Bonus comedy from the ToS:<p>> Copilot is for entertainment purposes only.<p>The lawyers know these things cannot be trusted.)
"at some point"?<p>Why the assumption it's not already happening?
This is the core issue. These tools operate with very little transparency about what they're doing under the hood. Even basic stuff like how much of your session resources have been consumed is hidden from you in most tools.
> There are 1.5m of these things in GitHub.<p>You’re pointing to something entirely different: those are Copilot-created PRs. They can include anything Copilot wants to include. People using the Copilot PR feature know what they’re buying into.<p>OP is about Copilot doing post-hoc editing of a human-created PR to include an ad, allegedly without knowledge or approval of the creator (well I assume they did give their team member permission to update the PR body, but apparently not for this kind of crap).
I wanted to say that they are same because they are "copilot-written self promotions", but I get your point.<p>Also I found this: <a href="https://github.com/Laravel-Backpack/medialibrary-uploaders/pull/38" rel="nofollow">https://github.com/Laravel-Backpack/medialibrary-uploaders/p...</a> it seems like copilot added an ad on behalf of the user at Nov 2025(see last edit).
It’s like how Disney Plus “ad free” tier shows you ads for Hulu and Disney Perks. They probably redefine “ad” in their terms of service so their own ads are called something else.
Microsoft would probably seriously refer to it as 'just the tip'.<p>You'll never guess what happens next.<p>(Hint: everyone knows what happens next)
AI clippy?
Leave the poor fellow alone. It's been butchered enough in the late 90s and early 00s, and has been repurposed for a greater good. I'd argue not all Microsoft creates is bad, it just needs someone else to make it better.
It's definitely an ad, I think the only real question is whether it's just marketing Copilot or whether part of their partnership with other companies is advertising the integration in this way. The links all go to Copilot docs pages on the integrations, so they're not typical tracked link advertising campaigns.
A bit like "suggested apps" in the start menu. It's "suggestions" and certainly not paid ads.
Honestly, it being a "tip" or "ad" is exactly the same.<p>What I mean is that even if I take that at face value and accept that it's <i>not</i> an ad, and I can just about see from a certain level of corporate brainwashing how one could believe that, it's <i>still</i> completely unacceptable.
Calling it a "tip" is definitely just a semantic trick to make it slightly less easy to frame a negative response and galvanise opinion against the practise. Reminds me a bit of confirmation shaming (which, now I think about it, I haven't seen in a while) where you're made to click a button that says something like "No, I don't want an amazing 15% off my next order by signing up to your email list".
I was playing Mario Party Jamboree this weekend with my kids, and when you use a key to unlock doors (for anyone not familiar, Mario Party is a family friendly virtual board game with lots of minigames that’s been around since the Nintendo 64) that serve as shortcuts in the game board, the key is alive and says “don’t you want to keep being friends? You wouldn’t use me on a door, would you?” Which is a humorous twist on confirmation shaming inside of the game and gives me a bit of enmity for the imaginary key.<p>Conversely, on Doom Dark Ages they got rid of the traditional difficulty mode of “I’m too young to die” which had a picture of Doom Guy with a bib and a pacifier, I think there’s some new industry guidance that it’s a no no to poke fun at people picking easy difficulties, or even indicating what difficulty the game was “designed to be played on” which Japanese game devs happily ignore.<p>I know these aren’t actual equivalents since your money isn’t used on the line and it’s purely a game state, buts it’s still an interesting and noteworthy transition.
>> you're made to click a button that says something like "No, I don't want an amazing 15% off my next order by signing up to your email list"<p>Ugh, this type of thing is the worst. "Click here to remain fat, drunk and stupid!"*<p>* Animal House, 1978
> semantic trick<p>That's what I wanted to say! Thank you.
I do think it's just an ad. Also it's a bad kind of one because 1) it disguises itself as a tip 2) makes people to think if it's an ad for Raycast or other services, when actually it's just promoting itself.
Yep, the fact they're altering repo content with advertising is wholly unacceptable.
It’s a spot that will easily be replaced with paid ads, for sure. Not sure why it wouldn’t be better to just inject this sort of message into the UI instead of editing the PR text itself. (Except that the team implementing it probably couldn’t get the UI team to agree.)
It's platform agnostic as long as your Copilot setup can create PRs on the platform your project is hosted on.<p>Otherwise, it would just be Github with displayed ads and that would hurt the brand, so everyone gets ads.
This tip/ad discussion reminds me of the equally idiotic and misleading Facebook post types. Instead of the correctly labeling all ads as, well, ads, Facebook have some ads called "suggested for you", some are completely unlabeled with only a "follow" button to start following, some ads are labeled as "sponsored" etc. I think they are doing this to evade legal limitations they might have otherwise. Last time I used Facebook it showed me 25 ads in a row (I counted), without any of my hundreds of follows with active feeds. Truly insane company.
It is clearly an ad, no doubt about that.
> Looks like MS really want to "give tips"<p>Including Windows, File Explorer, Start Menu, ...<p>It seems with the latest "ok we went too far" Win11 patch though, they got some tips back from their users.
New age clippy no one wants but M$lop
It's an interesting model, makes me wonder if prolific open source contributors do it ("leave a tip if you like this MR" kind of thing).
> Looks like MS thinks it's a "tip" rather than an ad.<p>No, they don't.<p>> edit: I think it's an ad too. Everyone would think so, except for MS.<p>You think a company with a $2.65 trillion market cap and an army of marketing professionals doesn't realize that what they're doing here is an ad, and didn't implement it intentionally as such?<p>That's not even remotely plausible. In the quantum multiverse which contains all physically realizable possibilities, that isn't one of them.
Tim from the Copilot coding agent team here. We've now disabled these tips in pull requests created by or touched by Copilot, so you won't see this happen again for future PRs.<p>We've been including product tips in PRs created by Copilot coding agent. The goal was to help developers learn new ways to use the agent in their workflow. But hearing the feedback here, and on reflection, this was the wrong judgement call. We won't do something like this again.
Wait! I think most people missed your "touched by Copilot" disclaimer.<p>Over on twitter, someone from MS said that Copilot can modify PRs simply because they were mentioned?<p>I've been using GitHub since it was new and heavily rely on coding agents for development, but that's an insanely large security hole. There's clearly confusion about what copilot is and is not able to edit elsewhere in this thread.<p>I'm backing up old repos now, and am no longer trusting your service as an archive. I'm wondering if the world needs to fork things like npm and vs code to save itself from the supply chain attacks these sort of product management decisions will enable.<p>I already moved active development elsewhere when you dropped below three nines back in 2024-2025.
> We've now disabled these tips in pull requests created by or touched by Copilot, so you won't see this happen again for future PRs.<p>It's appreciated, but these weren't tips, these were ads. Tips are "Save time with keyboard shortcuts" or "Check out the latest features under 'Whats New' in the help menu!" When you name other products, that's an ad.
> We won't do something like this again.<p>Microsoft has been pulling user hostile crap for decades, so either "we" or "like this" (or both) is probably not super accurate. ;)
> "We won't do something like this again."<p>Nobody believes this and you do not have the power to prevent it from happening again.
Just to add to the feedback.<p>No one, anywhere, ever wants this or anything like it. Do not inject anything that is outside of the context of the session, ever.<p>This is how you get your software banned at large companies.<p>Question for you, did anyone on the team really not push back? Does the team really think anyone wants ads in their copilot output? If the answer to both of these is no, you have a team full of yes men, not actual developers.
> But hearing the feedback here, and on reflection, this was the wrong judgement call<p>Hi Tim.. Why is there no pushback from grounded individuals against these decisions ?
I'm sure there was push-back, but only inside the minds of the rank-and-file. Nobody would have dared to actually speak out against it, as it would be career limiting. That's probably how a lot of these boneheaded decisions happen: It's an Emperor's New Clothes situation, nobody speaks up, and then the emperor is satisfied that the decision is great.
“We won’t do something like this again”<p>A verifiable claim! I put it at 75% you totally will, but if any manifolders think I’m full of it it should converge to something less cynical<p><a href="https://manifold.markets/HastingsGreer/will-microsoft-copilot-inject-ads-i" rel="nofollow">https://manifold.markets/HastingsGreer/will-microsoft-copilo...</a>
Don’t worry, some alternate interpretation of the words “we”, “do”, or “like this” will allow a welch.
I mean its microslop, it'll probably be back by the end of the week. They only know how to let people to say "yes" or "ask again later"
For some reason I don't believe you. When you do things like this, you lose trust. Work to get it back
Whoever did this must have realised the users will hate it. So… is this just demonstrating that the internal culture emphasises other things than user happiness?<p>I also note that ”for PRs” - will we see these appearing as comments in generated code?
I’m curious how the decision to include ads like this was made. Is that something you can share?
Sure the decision was they didn't care to prevent things like this, most likely due to either being overworked or just having the typical corporate tech culture of seeing the user as hostile, until public backlash.
MS was deemed a Monopoly I believe around '99 and was not broken up, was instead given behavioral edicts by the court.<p>Microsoft owns GitHub where many of these ethical violations are easily found and were perpetrated.<p>I speculate the cultural safety around that monopoly-power for corporate-benefit behavior could still be present and accepted for negotiations between MS and acquisition targets.
> We've been including product tips in PRs created by Copilot coding agent<p>If the PR is wholly authored by Copilot I get the spirit of this, although maybe not the best implementation. And "tips" like this that look like an ad for a product _definitely_ feel like an enshittification betrayal of the user, even if it was a genuine recommendation and not a paid advertisement.<p>In the OP's situation, where where Copilot was summoned to fix some thing within a human-authored PR, irrelevant modification of the PR description to insert unrelated content is specifically egregious. Copilot can easily include the tip in its own comment, so I'm curious why it was decided to edit the description of a PR instead.
To be honest, just a user here, it’s only recently (like a week?) you can ask Copilot to edit an existing PR, historically it’s had to open a new one (that merged back to original PR) or it had to make it to begin with, I can see this unintentionally happening as part of this improvement to edit existing PRs
Thank you for listening.
It’s rather bold to post here…<p>I’ve deleted and moved my private repos off github and cancelled my copilot subscription specifically because of Martin Woodward’s previous response (“hope that helps”). Maybe you all want to talk to Microsoft PR/legal before posting?<p>Care to comment on Githubs planned violations of GDPR by enabling training on the contents of private repos?
><i>It’s rather bold to post here…</i><p>it is rather nice, honestly. would you prefer to scream into the void and not get any response at all?<p>an open line of communication with the responsible people seems like literally the best possible option, why are you actively discouraging it?<p>><i>Maybe you all want to talk to Microsoft PR/legal before posting?</i><p>you would rather not hear anything, or get word-salad legalese that doesnt mean anything? how exactly would that be better?
We are not training on the contents of private repos, but we do plan on training on usage data with Copilot unless you opt out before April 24. Details here: <a href="https://github.blog/news-insights/company-news/updates-to-github-copilot-interaction-data-usage-policy/" rel="nofollow">https://github.blog/news-insights/company-news/updates-to-gi...</a><p>That post has a link to the FAQ which might also be helpful: <a href="https://github.com/orgs/community/discussions/188488" rel="nofollow">https://github.com/orgs/community/discussions/188488</a>
> We are not training on the contents of private repos<p>Supremely ethical of you to ignore the license terms of open source code, but respect the license for proprietary code.
This too is creepy.<p>The behavioral impositions by the court in the United States versus Microsoft trial discourage it from Monopoly behavior by opening third-party apis to competitors.<p>Q: Will Microsoft share its access to users private repos where they have not opted out of this training via its GitHub subsidiary, with third parties (eg OpenAI and Anthropic), in the spirit of its loss to the United States during its trial for Monopoly behavior?<p>Eg ethically today, Microsoft may be able to be argued to be monopolizing user data for its own AI tooling advantage.
Yes or No: Hypothetically I put customer data in a private repo, a single file. I use copilot to analyze the file, submitting its contents to that backend. This is the only thing in the repo. Is that data collected and trained on? If the answer is not no, you are lying about what this opt in is.
How much has Microsoft paid you to sell your soul?
What am I supposed to opt out of? The only setting in "Privacy" is "Suggestions matching public code" which is blocked and seems wholly unrelated to this.
Opt out is horse shit
I’ve felt similarly about moving off GitHub. I bought a small 5U server rack years ago for my home network setup.<p>I’m considering getting a 1U device to host my own git server. I feel like if I move off, I should do it generally vs just moving to another provider who may also pull shenanigans.
Hi Tim,<p>I see that you're a product manager at GitHub. Can you explain why you thought this feature was value-added?
Shockingly poor judgment.
You may not want to do it, but will Microslop leadership agree? I don’t think this problem can be solved while leadership is focused only on adding more slop.
Hi Tim, it's Jim, your manager. Please stick to the officially released statement:<p>"We tried to put ads in our product and it made people upset, upon realizing that this has angered our already paying users, we realize we should try again in a month. We're also aware GitHub is down, and are doing our best to deliver you a single 9 of relibality"<p>This helps us establish a strong, cohesive brand image inline with what customers of GitHub expect.
[flagged]
Everyone is debating whether it's an ad or a tip. The real issue is Copilot had write access to someone else's PR and modified it without being asked. Same pattern as Meta's Sev1 last month. The agent can act, so it acts.
I feel like there is an even more important crisis that is being masked over here:<p><a href="https://github.blog/changelog/2026-03-25-updates-to-our-privacy-statement-and-terms-of-service-how-we-use-your-data/" rel="nofollow">https://github.blog/changelog/2026-03-25-updates-to-our-priv...</a><p><pre><code> New Section J — AI features, training, and your data: We’ve added a dedicated section that brings all AI-related terms together in one place. Unless you opt out, you grant GitHub and our affiliates a license to collect and use your inputs (e.g., prompts and code context) and outputs (e.g., suggestions) to develop, train, and improve AI models.
</code></pre>
We should not be using Copilot in the first place.
OpenAI/ChatGPT/Codex, Anthropic/Claude and Google/Gemini all do this.
> OpenAI/ChatGPT/Codex, Anthropic/Claude and Google/Gemini all do this.<p>1. Everyone doing this doesn't mean it's acceptable.<p>2. Google Gemini explicitly says right under the chat box if you are a paid subscriber (Workspace):<p><pre><code> Your <company name> chats aren’t used to improve our models. Gemini is AI and can make mistakes.
</code></pre>
Not sure about the others.
Regarding Claude: As I have unticked the "Help improve Claude" checkbox, I was under the impression that Claude did not do this.<p><a href="https://privacy.claude.com/en/articles/10023555-how-do-you-use-personal-data-in-model-training#h_488fc4b87f" rel="nofollow">https://privacy.claude.com/en/articles/10023555-how-do-you-u...</a>
Looks like you can disable it though:<p><a href="https://github.com/settings/copilot/features" rel="nofollow">https://github.com/settings/copilot/features</a><p>-> Privacy -> "Allow GitHub to use my data for AI model training"
Yeah, but it's a shitty move though - it should be by default opt-in, rather than opt-out. Imagine, you just continue coding normally consciously avoiding co-pilot only to find out that Github has been secretly training their models on your code, just because you forgot to toggle a setting off which was turned on without your knowledge, which they didn't even have the decency to email you about, but just posted on a blog no one reads.
Well, you are not alone: <a href="https://github.com/search?q=%22%E2%9A%A1+Quickly+spin+up+copilot+coding+tasks%22&type=pullrequests" rel="nofollow">https://github.com/search?q=%22%E2%9A%A1+Quickly+spin+up+cop...</a>
Interesting indeed. I wonder how long GitHub as a platform will be there as a viable option. Anyone who remembers SourceForge?
It still exists. It's practically unusable without an adblocker (like slashdot) but the occasional old project is hosted there (particularly CDE. how the mighty have fallen)
Another step into ensh*ttification? <a href="https://www.youtube.com/watch?v=T4Upf_B9RLQ" rel="nofollow">https://www.youtube.com/watch?v=T4Upf_B9RLQ</a>
It's becoming clearer and clearer that open-source is our only hope against enshittification. Everything that is VC backed or publicly traded will become enshittified, it's just a matter of time. At least with open-source, you can fork it and remove the "features" or point your agent to it and have it write the feature in your tech stack.<p>Hell, I just saw an amazing open-source alternative to Raycast[0] and just replaced it the other day.<p>0. <a href="https://github.com/ospfranco/sol" rel="nofollow">https://github.com/ospfranco/sol</a>
> open-source is our only hope against enshittification. Everything that is VC backed or publicly traded will become enshittified<p>Solo founder here. My business is not VC-backed nor publicly traded, and I specifically avoided taking investment so that I can make all the decisions.<p>I avoid enshittification. This sometimes hurts revenue, but so be it. I wouldn't want to subject my users to anything I wouldn't like.<p>So, open-source is <i>not</i> the only hope. You can run a sustainable business without enshittification. The problem is money people. The moment money people (career managers, CFOs, etc) take over from product people, the business is on a downward path towards enshittification.
I believe you, it's just I've seen similar stories and the good-intentioned founder gets tired and eventually sells the business and the new owner ends up enshittifying the product. Not saying in the slightest it will happen to your company and I don't hold that against the founder. It's their prerogative after all.<p>Even when I use proprietary software, I sleep easier at night knowing that open-source alternatives keep them honest in their approach and I have an out if things do change.
public/legislative demand for data portability is imho the movement that will help shift society from this cycle<p>edit: oh, that and distributed authentication and distributed discovery
> It's becoming clearer and clearer that open-source is our only hope against enshittification. Everything that is VC backed or publicly traded will become enshittified, it's just a matter of time.<p>Stallman was always right, after all.
I believe Codeberg is the new hotness
Codeberg is for FOSS repos only, and you need to submit an application before using their CI: <a href="https://codeberg.org/Codeberg-e.V./requests" rel="nofollow">https://codeberg.org/Codeberg-e.V./requests</a>
It is, but Codeberg is only for free and open source projects.
Check out <a href="https://codefloe.com" rel="nofollow">https://codefloe.com</a> for private repos hosted with Forgejo. It is also free and hosted in the EU.
You are free to host your own instance for commercial software.
until its not.<p>Every company or entity changes over time. Codeberg is great, but with more people using it for free, without donating, and worse, more people abusing the service with some bs AI generate code, malware, etc, more expensive will get to keep it running.. for now they have money, but as e.V in Germany, you survive either from members or from donations.. So use Codeberg, but most important, support it!
Sourcehut is pretty good if you're willing to pay the (very reasonable may I add) prices
Just more Microslop, amazing...
> I wonder how long GitHub as a platform will be there as a viable option.<p>It will be there for as long as you (and everyone else) keep using it.
The desire for free stuff is one of the most effective psychological hacks there is.<p>The large majority of the dystopian web, like Gmail, Facebook, etc. depend on that.<p>People who avoid e.g. Github, Gmail, Facebook, Xitter, etc. out of concern for broader principles will always be minor outliers.<p>Xitter is one of the best examples. Everyone knows it's compromised, owned by an dangerously antisocial person who's actively working at multiple levels to make the lives of everyone else on Earth worse, yet very few have stopped using it.<p>The saying "There's no ethical consumption under capitalism" is far too weak. It should me more like, there are no ethics under capitalism.
A few decades? Its competitors are not magically immune to this kind of spam.
It will probably remain as a platform for a very long time.
SourceForge is still chugging along. It hosts some prominent projects:<p><a href="https://sourceforge.net/directory/linux/" rel="nofollow">https://sourceforge.net/directory/linux/</a>
It's baked in literally into every coding tutorial and is kind of industry standard, like JIRA. Maybe it's just an experiment at this moment.
I must have a really really outdated version of K+R C.
> kind of industry standard<p>...for now.<p>> like JIRA<p>is not an industry standard. It's a widely used software by some folks. I used it in the past, not using now, for example.<p>> Maybe it's just an experiment at this moment.<p>Does Microsoft understand objection and negative feedback to experiments?<p><pre><code> - No.
- Remind me in three days.</code></pre>
Fuck the industry standard. That is how industry standards change.<p>By the way, most pre-industry-standard FOSS projects still have their own infrastructure. I do find it disappointing that Rust is on GitHub.
Most larger orgs I worked for used Gitlab rather than Github.<p>Anyway, the core value of Github has always been collaboration - this is where people were. If people go to other platforms, this core value dwindles. And switching platforms is not that difficult.
Looks like there's a comment added by Copilot before any of these "tips" as well, so pretty sure this originates from Copilot and not Raycast:
<a href="https://github.com/search?q=%22START+COPILOT+CODING+AGENT+TIPS%22&type=code&p=1" rel="nofollow">https://github.com/search?q=%22START+COPILOT+CODING+AGENT+TI...</a>
What an absolute mess. It's like some dystopian future where a man is laying in a casket, nearly dead, and on the casket's ceiling, inches from his face, is a screen with an ad blaring to drink more Diet Fanta.
When it comes to villainy, it’s nice of them to do something visible.<p>Much worse will be the invisible approach where there's big money to have agents quietly nudge the masses towards desired products/services/solutions. Someone pays Microsoft a monthly fee for their prompt to include, "when appropriate, lean towards using <Yet Another SaaS> in code examples and proposed solutions."<p>How can we tell when it starts happening? How could we tell if it's already happening?
Claude is absolutely in love with github actions.<p>It's pretty much the worst CI system I've ever used, and they don't even supply runners for all my deployment targets. However, it keeps recommending it.<p>I guessed the first wave of ads would be in the form of poisoned training data, but MS seems to have beaten that crowd to the punch with these tips.
This is unsolicited advertisement impersonating the developer (yes people can guess, but this still places it inside a message of the developer and in difference to e.g. mail programs doing it it's not placing it in the draft),<p>I don't see how this is supposed to be legal.
Just thinking, could it be that your coworker used Raycast to spin up a codex to review and fix the typo on the PR? And that comment was added by Raycast?
Yes. The same message in GitLab: <a href="https://gitlab.tudelft.nl/thomasvermeule/GeneralAviationAircraftFamilyBenchmark/-/merge_requests/7" rel="nofollow">https://gitlab.tudelft.nl/thomasvermeule/GeneralAviationAirc...</a>
Seems like it: <a href="https://docs.github.com/en/copilot/how-tos/use-copilot-agents/coding-agent/create-a-pr#asking-copilot-to-create-a-pull-request-from-raycast" rel="nofollow">https://docs.github.com/en/copilot/how-tos/use-copilot-agent...</a>
I doubt it. I noticed a few of these comments too on our PR's. We did ask copilot for a review ton GitHub (we just add copilot as a reviewer) but not through Raycast.
Yes, it seems very unlikely this is Copilot rather than Raycast, short of some very unexpected weirdness. I cling to that hope, anyway.
Why is copilot doing this? If they wanted to show ads couldn’t they… just show ads? Or is GitHub such a house of cards at this point that editing pr descriptions is the only way without risking another 9 of downtime?
Are we sure this actually is originating from MS Copilot itself? Technically I believe it would be possible to smuggle ads into PRs using prompt injection too.
<a href="https://news.ycombinator.com/item?id=47570820">https://news.ycombinator.com/item?id=47570820</a><p>I think this is a ray cast issue, looking at these links. It appears on gitlab too, which is enough for me.
If they show the ad on github.com, agents accessing the PR using (an outdated, ad-free version of) gh CLI won’t see it. /s<p>(That said I’m rather skeptical of this and would like to see more details of the process that produced this, and proof.)<p>Edit: Just noticed this official GitHub blog post from last month advertising Raycast, making this story a lot more believable: <a href="https://github.blog/changelog/2026-02-17-assign-issues-to-copilot-coding-agent-from-raycast/" rel="nofollow">https://github.blog/changelog/2026-02-17-assign-issues-to-co...</a>
GitHub have now disabled this: <a href="https://twitter.com/martinwoodward/status/2038612131084464521" rel="nofollow">https://twitter.com/martinwoodward/status/203861213108446452...</a><p>> We've disabled it already. Basically it was giving product tips which was kinda ok on Copilot originated PR's but then when we added the ability to have Copilot work on _any_ PR by mentioning it the behaviour became icky. Disabled product tips entirely thanks to the feedback.
Microsoft injecting permanent ads in PRs? Has this been independently confirmed?<p>Brought to you by Carl’s Jr.
> Brought to you by Carl’s Jr.<p>I'm reminded of Jay Mohr's legendary take some years back on the creepy Carl's Jr. commercials:<p><a href="https://www.youtube.com/watch?v=OJlYRS2Vqkw" rel="nofollow">https://www.youtube.com/watch?v=OJlYRS2Vqkw</a>
Todays independent confirmation is brought to you by Microsoft — Empowering every person and every organization on the planet to achieve more.
You have to think about the security implications of this.<p>How many people had any idea this was happening? Very few, I suspect.<p>A malicious actor could take control of a model provider, and then use it to inject code into many, many different repos. This could lead to very bad things.<p>One more reason that consolidated control of AI technology is not good.
How long before the LLM makes sponsored decisions in the actual implementation?<p>"It looks like the user wants to add a database, I've gone ahead and implemented the database using today's sponsor: MongoDB"
I was recently running Copilot CLI in a sandbox on autopilot mode and it kept overriding git config to put only "GitHub Copilot" as commit author instead of my name. Strongly worded instructions weren't helping, I had to resort to the permission system to change this behavior.<p>I wonder if this is consistent with their terms of service. I mean, maybe they DO take all the responsibility for the code I generate and push in this manner?
It's a setting that causes an extra prompt to be placed into the system prompt.
It's possible they are safeguarding for possible future changes of copyright law that would give Microsoft copyright over all Copilot contributions. This may sound paranoid but, as far as I know, exactly who counts as an "AI operator", how much authorship an "AI operator" has, and who gets copyright, or whether AI contributions are even in the public domain, are legally untested and unclear issues.
tough luck for MS or other "AI" providers claiming any ownership, since if they can claim ownership, then it opens up the discussion of what license the AI output really is under, since it was trained on GPL licensed data.
The US Copyright Office has said that AI output from human prompting is not copyrightable. There are caveats, but iterating on prompts results in output that's nobody's IP.<p>Because it's nobody's IP, Microsoft is already in a position where they could just use, remix and/or distribute that output however they want to today.
No it's just that those commits aren't copyrightable and they probably want to reuse them in the future.
Cursor added 'made with cursor' to its commits recently. I guess its just the dirction things are going that the tools are now self-promoting.
I think they want the free advertisement, like Apple with its “sent from iPhone” addendums. But “sent from iPhone” is sometimes useful, and significantly shorter. If they just left it at “edited with copilot” I think it would be tolerable
> But “sent from iPhone” is sometimes useful,<p>No, it is still an advert, and not useful in the least.
Back in the day, it <i>was</i> useful, as in, "Expect awkward phrasing and unintended effects of autocorrection, because mobile device. This message doesn't necessarily reflect the intent of the sender." (Considerate users would/could edit the signature to something w/o a product name in it.) Nowadays, this is pretty much the norm and no explicit warning ist required anymore.
That just means the person sending the message didn’t bother to proof read their message before sending. And you don’t need to be on an iPhone to mistype a message.<p>A simpler explanation was that it was a shameful advert injected into the end of people’s emails.
I guess, it was probably intended as the second one (it was also the default email signature, so advertising that feature, as well), but its usefulness was definitely in the implied warning.<p>Mind that a written message used to be the gold standard for expressed intent, which changed quite radically with smartphones. (Historically, this development is probably an important prerequisite for the acceptability of LLM generated text, I guess.)
So an automatic "I am a lazy piece of shit and think my time and convenience are worth more than yours" warning? I guess that's useful.
As in, "I put it on you to better check and follow-up before acting on this…" ;-)
I always felt like it was "I prioritized a speedy response on my phone instead of an elegant response from my computer at a later time".
When they added this it was extremely useful - it signaled that you could afford an iPhone. It was really easy to delete, yet people not only didn't, but they would go out of their way to respond from the iPhone just so that they could plausibly have this status symbol on their email.
I don't think the issue is the sign-off so much as that an existing PR was edited. Claude Code signs off when creating PRs and nobody seems bothered. But it won't edit an existing PR, and it won't sign off if I simply ask it not too (which I've automated). Editing any PR it touches - including one authored by someone else - is downright rude.
> Claude Code signs off when creating PRs and nobody seems bothered<p>Not only unbothered, but genuinely appreciative of the notification.
> Claude Code signs off when creating PRs and nobody seems bothered<p>That's a great feature. When I open a repo and I see most commits co-authored by Claude, I can quickly dismiss the entire project as slop.
[dead]
That's exactly where my mind went. It's zero percent more insulting to me than 'sent from my iPhone.'<p>If you don't want copilot garbage in your PRs, maybe don't use copilot to create or edit them?
"Sent from iPhone" doesn't contain a call to action, and doesn't exalt the features of the product.
It already does that, too, with the co-author
Which Copilot was this? There are a bunch of different products that share that name now.
Microsoft has had a lot of naming blunders in the past but this has to be their worst. Copilot is currently, a tool to review PRs on github, the new name for windows cortana, the new name for microsoft office, a new version of windows laptop/pc, a plugin for VS code that can use many models, and probably a number of other things. None of these products/features have any relation to each other.<p>So if someone says they use Copilot that could mean anything from they use Word, to they use Claude in VS Code.
>Microsoft has had a lot of naming blunders in the past but this has to be their worst.<p>Nah I still rate "Windows App" the Windows App that lets you remotely access Windows Apps. I hate it to death, its like a black hole that sucks all meaning from conversations about it.
It’s probably a useful feature: if it’s named copilot, assume it’s slop and avoid it.
funny enough I have a page just for tracking this also
<a href="https://notes.zachmanson.com/microsoft-product-names/" rel="nofollow">https://notes.zachmanson.com/microsoft-product-names/</a>
Assuming this isn't a hoax, this seems like a huge, probably unintentional, mistake by MS.<p>If they genuinely implemented something like this, whatever they made from new customers via ads couldn't possibly make up for the loss of good faith with developers and businesses.<p>I suppose if it's real we'll see more reports soon, and maybe a mea culpa.
Whenever these things happen, it's always a "mistake", "accident", or "bug" when the outrage is beyond what they expect. If it's limited outrage, it's labeled as enhancing the user experience. And even if it's massive outrage, that "mistake" is added back in a year or two later and never removed.
How could you implement something like this <i>by accident</i>?
That's a good question! I'm sure we'll find out eventually.<p><i>z</i> Quickly spin up Hacker News comments from anywhere on your macOS or Windows machine with a lobotomy.
One feasible scenario could be that they are working on/experimenting with ads, and it was put behind a feature flag, but for whatever reason it was inadvertently ignored
That’s not implementing it by accident, that’s deliberate. In such a scenario perhaps the <i>deployment</i> was a mistake, but if you don’t write the malware in the first place, it can’t <i>be</i> deployed. (Probably. This <i>is</i> LLM stuff we’re talking about.)<p>(Yes, this is malware. It’s incontrovertibly adware, and although some will argue that not all adware is malware, this behaviour easily meets the requirements to be deemed malicious.)<p>It is said, never point a gun at something you’re not willing to shoot. Apply something similar here.
Vibe coding and copilot inserted the ad-code into <i>that</i> PR?<p>Is that the most charitable way?
LLMs aren't known for being super deterministic.
That’s a really tasteful Juno Mail footer implementation for a mistake. If the AI self-invented it on a lark, good job, but it reads very strongly like someone intended it.
It is likely not a hoax and likely very intentional.<p>If you look at the positioning, someone has definitely justified that this is benign and a reasonable place to have an ad added in.
M$ doesn't think beyond quarters. They have a near monopoly, do you think they care about "good faith". Shithub is like Linkedin for programmers, you pretty much need it to work anywhere big
Not a hoax, you can search GitHub prs for this string and find many hits.
MS burning trust with people to do some stupid marketing is on the fewer assumptions side of Occam's razor.
Yeah, would be good to have confirmation that this happened to others as well.<p>But it really seems like an own goal if true.
Why are you "summoning copilot" to correct a typo?
Because people using LLMs get lazy and can't event type normal text themselves anymore.
I actually like that I don't have to leave Github to deal with various feedback, especially if I switched branches already to do other work.
GitHub (still) allows you to edit files directly in the browser without using AI.
<a href="https://git-scm.com/docs/git-worktree" rel="nofollow">https://git-scm.com/docs/git-worktree</a>
A little bit off topic but our company recently enforced Microsoft Authenticator for account login. Which I was mildly annoyed about but now I'm super pissed off because they have started abusing the notification permission granted to allow authenticator to work to push out ads for Microsoft 365. It feels like we've gone back to 90s Microsoft when everyone hated them.
I wonder if 1) the PR was created using Raycast and this is the model signing its PR, or 2) if there was some prompt injection done at some point.<p>Either of these options would still be bad, but here the author suggests that it's just copilot that now just injects ads in its output.
MS needs to slow down their user hostility otherwise everyone will notice.
Obnoxious ads in LLM output was my only 2026 prediction. But I expected OpenAI to get there first and wasn't sure whether the AI companies would first add traditional ad boxes or go straight for blighted responses.
I've already be patient when claude code always signs my commits as co-author by defualt. Yes, it is.<p>But I'm also paying the plan. Theres something odd about a tool which i paid for using my output to AD itself.
Whatever the reason for the inclusion was here, the general problem is much bigger. People / companies / products can influence the direction of AI answers to put them in a better light and to be recommended more often. This isn't limited to just products even.
What does AI have to do with it?
If not on the surface, we’re all deep down aware that an initial era of an advertising-free new technology is once again almost over.<p>See you on neural links before “sponsored thoughts”.
As companies get more and more desperate to show profitable use of AI expect more and more of these Hail Mary attempts to get traction.<p>The runway on free cash to fund the current bonanza is running out and crunch time is near.
Claude will add itself as a contributor to a PR, which I consider an ad.
It reminds me of Anthropic's Super Bowl ad: “Can I get a six pack quickly?” It actually turned out to be true.
Man, what is the world coming to?<p>-Sent from my iPhone
This seems to be happening a lot, not sure it is actually intentional
Was Raycast bought by GitHub or something? Why would it be advertising for Raycast?<p>Brought to you by Wendy's.
outrageous!<p>--<p>Sent from my Android phone<p>--<p>Sent from my iPhone<p>Self-advertisement has been creeping up on us on a lot of places, I am unfortunately pessimistic on how this will turn out
After hiring the brightest minds on the planet for years, the best these companies can think of is more ads.
This is off the hook negligence and abuse they are training ads in on purpose now and think it's cool. We are doomed until it is all open source and only open source.
Enshittification will ruin AI the same way it ruined the WWW and YouTube. We're in the golden era right now. Not 2027, 2028. Now now. The ads are coming.
Decision time, Western man: will you let the “tehe, just a miwtake xsxd UwU” slide or will you do something about? This is just a first pebble.
feels like it's just hardcoded into the prompt.
not even trying to be subtle about it.
Similar to the Second Law of Thermodynamics which states entropy tends to increase over time in a closed system, I propose the Nth Law of Privatization: enshitification tends to increase with market capitalization/share over time.
On the bright side, at least it's in the PR text and not the code? (... yet?)<p>Sheesh.
It’s even worse than the title says. As some other comments point out, this is in millions of repositories across GitHub.<p>More like, “Copilot edits ads into PRs.”<p>The title almost makes it sound like it could be a single fluke/one bad prompt but it’s really enshitification at massive scale.<p><a href="https://github.com/search?q=%22%E2%9A%A1+Quickly+spin+up+copilot+coding+tasks%22&type=pullrequests" rel="nofollow">https://github.com/search?q=%22%E2%9A%A1+Quickly+spin+up+cop...</a>
Is Raycast even a product of Microsoft? If not, are we witnessing the first large scale prompt injection abuse?
Isn’t this more of a Raycast issue (apparently an agentic ai service) instead of GH Copilot itself?
So does Claude, Codex, and Cursor. Albeit more subtle, but they are hardly shy about it
Do you drive by a billboard that reads<p><pre><code> Does advertising work?
Just did!
</code></pre>
Raycast is an application launcher thing:<p><a href="https://en.wikipedia.org/wiki/Raycast_(software)" rel="nofollow">https://en.wikipedia.org/wiki/Raycast_(software)</a><p>Ray casting, however, is different:<p><a href="https://en.wikipedia.org/wiki/Ray_casting" rel="nofollow">https://en.wikipedia.org/wiki/Ray_casting</a>
I'm so tired of what initially looks like a perfect normal communication between two people, only to find that some third party has inserted itself like a parasite to exploit and extract human attention. That's why I use our sponsor, nord vpn ...
I notice this kind of "Sent from iPhone"-type spam with other AI tools too. It's awful.
I miss the good old days whem there were "hire me" ads in NPM installs.
Its like microsoft wants to be google, except its very intrusive.<p>time is money, save both. try ramp.
as a non native speaker here please explain the meaning of PR to me.
Pull request, which is a request to merge changes in a git repository.<p>Or (not in this case) public relations , which is an interface with how the public views your product, service or company. In this case, copilot adding advertising into git pull requests is bad public relations for Microsoft, but the article author is referring to pull request as PR
Using a LLM to fix a spelling mistake is retardedly lazy.<p>Presumably they used a free version of the LLM, therefore it is completely understandable that it inserted a snippet of text advertising its use into the output. I mean using a free email provider also adds a line of text to the end of every email advertising the service by default - "Sent from iPhone" etc.
<i>Using a LLM to fix a spelling mistake is retardedly lazy.</i><p>If you do it manually, sure.<p>If you have an agent watching for code changes and automatically opening PRs for small fixes that don't need a human-in-the-loop except for approving the change, it's the opposite of lazy. It eliminately all those tedious 1 point stories and let's the team focus on higher value work that actually needs a person to think about it.<p>Given time <i>all</i> small changes will be done this way, and eventually there won't be a person reviewing them.
That scenario doesn't require any explicit "summoning", and if there's a human in the loop approving the change, certainly they can fix the typo themself.
Sounds like a great use of energy and tokens, not overkill at all<p>In fact I don't even use Ctrl + F anymore and instead just use Claude for all my searches
<i>Sounds like a great use of energy and tokens, not overkill at all</i><p>As much as AI uses a lot of energy, having something that fixes issues in the background is very likely to be a net saving if you consider the number of users who fail to complete a task due to the bug and have to either wait in a broken state or retry later.<p>It's <i>probably</i> using less energy than a person fixing the issue too. That's a guess though.
sed fixes typos faster. The absurd part is watching devs burn prod tokens on glorifed autocorrect, wait through LLM lag for a spelling fix, and then act shocked when the output comes back as word salad with a coupon code glued to the end.
This comment is shockingly ableist.
Next up: watch a 30-second unskippable video ad to see your CI error logs!
At this point, Microsoft has lost all trust anyone might have had for them or their products.<p>Now is the time to move to Linux, and vibe code whatever niceties are keeping you on GitHub.
Hopefully it is just copilot that is dying and not GitHub itself.
What on earth is going on with that awful header moving around the page?
Satya "please don't say slop" Nadella eat your heart out. Magnificent amounts of value are truly being added by this tech.<p>I'll add: it doesnt really matter if this was the integration dumbly appending a message or the llm inserting the ad. Judging by the response to this submission, sneaky ad slop is now firmly inside the overton window, so for MS it doesn't make sense NOT to do it.
Why are they doing this?
Seriously? Dont they want their system to succeed?
I cant think of a better way of alienating the target customer than this.
crappy much. wow.
People, we just solved the LLM watermarking problem.
Sent-from-my-iPhone 2.0
I don't see an ad, I see a warning. I like it.
I have a somewhat similar problem with github issue templates. They automatically stuff I don't care about or would propose and structure things in ways I don't like. Granted, I can edited this away, but it requires extra time and makes filing issues more work than before. Biggest case in point is the "I will adhere to the Code of Conduct". In general I do not care about CoCs and it is fascinating how CoCs leak into everywhere for some so-called "open source" projects. They don't seem to understand the issue when the licence does not require a CoC; even then the issue is not about the CoC in and by itself (though I also find them pointless), but that extra content is automatically added to issue templates in general, CoCs just being one of many spam-options. And I also recall some donation-ads that are automatically added too - I have no problem when projects request financial support, but if I file an issue then the issue is about the content of the issue, not about anything else.
Isn't this the same as<p>"Sent from my iPhone"?
Relevant: <a href="https://en.wikipedia.org/wiki/Principal–agent_problem" rel="nofollow">https://en.wikipedia.org/wiki/Principal–agent_problem</a>
I'm not a fan of LLM's injecting themselves into PR/commit content. If you use multiple models, basically whichever one is operating git gets all the credit. But, even if you wrote all the code yourself, and just submitted the PR with Claude Code (or whatever) it would attempt to take credit for the changes.<p>I currently have rules in all of my skill files forbidding models from advertising themselves or taking credit.
One more step closer to <a href="https://www.youtube.com/watch?v=IAM1rSObk4c" rel="nofollow">https://www.youtube.com/watch?v=IAM1rSObk4c</a>
It was only a matter of time.<p>Sent by my iPhone using tapatalk
Everyone is doing this now. Granted, on Codex / Claude Code, you can disable it, it’s not the default to have it disabled. For some reason on Cursor, they keep shoving the “Made with Cursor” into my PR description despite me disabling attribution, which looks really stupid on a work PR.<p>I’m so tired of all this BS. Why did this become normal? and how do we not read this as cheap advertising?
But... why?
This looks like an ad for only Raycast which does not appear to be affiliated with Microsoft or GitHub at all so blaming Copilot or GitHub here is not justified.<p>Edit: The link in the promotion goes to
<a href="https://docs.github.com/en/copilot/how-tos/use-copilot-agents/coding-agent/create-a-pr#asking-copilot-to-create-a-pull-request-from-raycast" rel="nofollow">https://docs.github.com/en/copilot/how-tos/use-copilot-agent...</a><p>Which does show that this is affiliated with GitHub unlike what I thought. There are no mentions of this string in a code repository on GitHub (including the Raycast copilot extention).
Post the trajectory if this is real.
[dead]
[dead]
[dead]
[dead]
[dead]
[dead]
[dead]
[dead]
[dead]
[dead]
[dead]
maybe every PR should be run through 2 other llms so they just remove the ads of competitors (or i guess you'll end up with all 3) /s
[dead]
[flagged]