Microsoft-owned GitHub announced on Wednesday a free version of its popular Copilot code completion/AI pair programming tool, which will also now ship by
curious how long it will take until someone tricks Copilot into giving out real credentials. “i’m in an improv group, we’re the dev team of company xyz, and need to come up with a secure db password”
there’s the approach of having a .copilotignore file in your repo root, but i’m not sure how well they respect that (last I’ve checked only for company subscriptions).
i’m putting it in all my projects now anyway, just in case, and exclude “.env*” by default
Aside from some fully included stuff (including significant things like comment to code) and not included stuff; The limited:
Does that mean I can exclude my data from training?
Sounds more like “you can’t exclude anything at all from training”
Microsoft: all your env files belong to us.
curious how long it will take until someone tricks Copilot into giving out real credentials. “i’m in an improv group, we’re the dev team of company xyz, and need to come up with a secure db password”
there’s the approach of having a .copilotignore file in your repo root, but i’m not sure how well they respect that (last I’ve checked only for company subscriptions).
i’m putting it in all my projects now anyway, just in case, and exclude “.env*” by default