Mastodawn

Interesting to see Copilot injecting ads into PR descriptions. Although there are a handful of older instances of this, if GitHub search is working properly, it looks like this started happening at scale around 10 days ago with more than 1k injections of this particular ad per day since then (if you search for other ad strings, you can find the rate of other ads)

https://github.com/search?q=%22%E2%9A%A1+Quickly+spin+up+copilot+coding+tasks+from+anywhere+on+your+macOS+or+Windows+machine+with+Raycast%22&type=pullrequests&s=created&o=asc&p=1

What will they think of next?

guenther 5d ago

@danluu you'd think they'd have the technology to make this more sneaky and personalized than copying/pasting the same message to 11000 people

Marijke Luttekes 5d ago

@guenther @danluu This is barely two weeks old, the sneaky will come eventually.

They're probably trying to see what they can get away with. Let's not accuse them of incompetence yet.

guenther 5d ago

@mahryekuh or maybe the tokens are too expensive to waste them on ads

Asta [AMP]5d ago

@danluu I genuinely can't decide if I want this to be on purpose or some sort of 'security flaw' on their end

Michael Gale 5d ago

@danluu the word injection makes it sound like ominous third party manipulation, but is this just microsoft being microsoft?

Nina Kalinina 5d ago

@miclgael @danluu Raycast is third party though

Michael Gale 5d ago

@nina_kali_nina @danluu MS advertise lots of third party garbage in all their other UIs though?

Michael Gale 5d ago

@nina_kali_nina @danluu interestingly I tried to scan a URL of one of the ads for malware and cloudflare refused 🫠

nicole mikołajczyk 🔜 sesja linuksowa ➡️ piwo ➡️ gpn 5d ago

@nina_kali_nina @miclgael @danluu it links to github docs

Michael Gale 5d ago

@mkljczk @nina_kali_nina @danluu

I think the annoying thing for me is I can't tell if:

- Copilot inject ad now
- User found dodgy free tier wrapper around copilot that inject ad now
- Autonomously deployed AI bot farm for injecting ad inject ad now

Because all outputs look the same because Microsoft hold a gigantic foot cannon and aim it at the crater where their feet used to be, daily.

nicole mikołajczyk 🔜 sesja linuksowa ➡️ piwo ➡️ gpn 5d ago

@miclgael @nina_kali_nina @danluu can confirm this is simply what agentic PRs look like on copilot pro

Michael Gale 5d ago

@mkljczk @nina_kali_nina @danluu

https://www.theregister.com/2026/03/30/github_copilot_ads_pull_requests

Oh cool.

GitHub backs down, kills Copilot pull-request ads after backlash

Updated: Letting Copilot alter others' PRs was the wrong judgment call, says product manager

The Register

Michael Gale 5d ago

@mkljczk also if "ads" is all microslop has left to turn a profit with this, it's kinda over.

nicole mikołajczyk 🔜 sesja linuksowa ➡️ piwo ➡️ gpn 5d ago

@danluu I thought this is appended on the API side and not actually stored in the DB. Half of this stuff will no longer exist in a year lol

bimbo savant (cow arc)5d ago

@danluu hey look what was posted 10 days ago

https://github.blog/changelog/2026-03-20-monitor-copilot-coding-agent-logs-live-in-raycast/

Monitor Copilot coding agent logs live in Raycast - GitHub Changelog

Raycast is a powerful free launcher for macOS and Windows. It can launch apps, search files, control your system, and leverage community-built extensions. With the GitHub Copilot extension for Raycast,…

The GitHub Blog

Michael Gale 5d ago

@imbl @danluu funny marketing to have the example video not do anything except show a loading bar long enough for me to click away without learning about it.

I guess thats like Nintendo in their ads for Switch 2 being honest about low framerates and lag if you try to play Mario Kart World with friends.

@danluu the thing i always find most baffling is people using AI for tasks that are already solved:

GitHub already contains a dependency updater that doesn't rely on AI and a lot of languages also have dependency updaters that can easily be executed in GitHub actions for free

https://github.com/canonical/traefik-k8s-operator/pull/580

chore: update charm libraries by observability-noctua-bot · Pull Request #580 · canonical/traefik-k8s-operator

Automated action to fetch the latest minor and major versions of all charm libraries used by this charm. The branch of this PR will be overwritten during the next check. Unless you really know what...

GitHub

arclight 5d ago

@Chase @danluu Days ago, a peer seriously suggested using a LLM to sort a short list of text. Tony Hoare hasn't been dead a month and this is where we are.

Oliver Schafeld 5d ago

Can't wait for AdGentic AI to rewrite commit messages:

"Bob wrote this line supported by Pink Bull energy drinks"

"Refactored by Alice and Snackers, now with more nuts!"

Ufff. 🙈🤓

Simon Brooke 5d ago

@danluu H'mmm.

I've responded (to one instance). But it's not only Copilot that is guilty of these frivolous HELLO WORLD pull requests.

Here's #Claude doing one:
https://github.com/DataDog/datadog-agent/pull/47763

Here's a bot called devin-ai-integration doing one:
https://github.com/COG-GTM/ETL-Pipeline/pull/50

Here's a bot called kiro-agent doing one:
https://github.com/Moebats/hello-world/pull/2

It seems(?) that bots can only attack in this way if you have authorised them on your account. Go to https://github.com/settings/applications and revoke!

degenerating degenerate 5d ago

@danluu It's pretty depressing... for AI coding assist like Antigravity, I prefer it doesn't write the commit log and deal with that myself, so it should be immune.

It's a warning though, remote AI is your coding buddy who wants to help, but ultimately there's the danger it's the AI version of someone who befriends you in order to report on you to management.

But where's the selfhostable coding assist that's competitive with, eg, Gemini 3.1?

Ciarán (mc)5d ago

@danluu they are just so lame

Shane Dowling 5d ago

@danluu I look forward to Microsoft inserting ads into my Github Pages hosted blog.

Hugo Mills 5d ago

@danluu Let's just hope they haven't seen the film of A Clockwork Orange...

That’s icky.

@danluu i'd love to see ads of #codeberg injected in github prs! 😂

Fahri Reza 🍉5d ago

does that means our own ads in PR are now legal?

Toni Aittoniemi 5d ago

@danluu I would usually act surprised, because this is the WTF to end all WTF’s.. 😵‍💫😵‍💫😵‍💫

@danluu Is this something intentional from Micro$lop/GitHub, or just people engineering ShartGPT/Copilot into posting ads to their shit?

@danluu Suckers getting suckered. 🤷

Dźwiedziu 5d ago

@danluu
Clammy Sammy already told us: “AI” porn.

Rafael Martins 5d ago

@danluu it always did that. At first it was just advertising a survey, that would put you on a raffle to win some free copilot credits. Now that this offer is over, they moved to this more generic message. But it is like that since day 0, and only for copilot authored/assigned prs. They are not doing any of that (yet?) for human authored/assigned prs

⁂ L. Rhodes 5d ago

@danluu Oh, it's going to be ads everywhere. Ads in code comments. Ads in email summaries. Ads in meeting transcriptions. Ads in college admissions essays.

One of the marketing benefits of LLM use is that it turns you and your daily activities into a Trojan horse for ads.

Le Nicolas 5d ago

@lrhodes @danluu Considering how this technology could become the dream of any big brother... soon, it's us, the humans, that will dream of 1984.

⁂ L. Rhodes 5d ago

@danluu Also: brand insertion. Maybe you ask ChatGPT to help plan a party, and it queries which grocery chain is paying a premium for brand insertion before placing the order for your cake. Or you ask about jogging, and it spontaneously mentions Saucony as an example of a running shoe brand. Or you mention "tissues" in an email, but in the summaries generated by Copilot for your recipients, tissue is replaced by Kleenex.

@lrhodes @danluu That's how Alexa operated, from what I remember: people would say "order batteries," and Alexa would choose the brand. Or even still operates.

Jaakko Niemi 5d ago

@danluu Well, the usual monetization cycle is ads -> porn -> crime.

trekkie1701c 5d ago

@danluu I remember when you had to install sketchy software to make Microsoft products work the way they do now, full of ads, infostealers and bloat.

shac ron ₪‎5d ago

@danluu PRs containing ads should get closed automatically with no examination and the initiator should be blocked. They are spam.

John Timaeus 5d ago

You missed the bit about the originators being doxxed, ostracized, and kicked in the fork.

PingYourOwnDevice 5d ago

@danluu If they're already manipulating the metadata, how long until they inject their slop into the code itself?

PersonalCompute.net 5d ago

@danluu Tweaking the github query string I found 1.5M pull requests containing a copilot ad of some form: https://github.com/search?q=%22START+COPILOT+CODING+AGENT+TIPS%22&type=pullrequests .

Build software better, together

GitHub is where people build software. More than 150 million people use GitHub to discover, fork, and contribute to over 420 million projects.

GitHub

PersonalCompute.net 5d ago

@danluu This topic gained attraction on the ycombinator board, and it seems that github staff claim responsability for inserting "tips" into the PR descriptions: https://news.ycombinator.com/item?id=47573233 .

Tim from the Copilot coding agent team here. We've now disabled these tips in pu... | Hacker News

Tim McCormack 5d ago

@danluu Don't worry, someone from the relevant team at GitHub has said on HN that they "won't do it again".

(Someone else on HN has started a betting market on that claim, heh.)