SecurityWeek

GitHub Issues Abused in Copilot Attack Leading to Repository Takeover

Orca has discovered a supply chain attack that abuses GitHub Issue to take over Copilot when launching a Codespace from that ...
The Hacker News

RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN

RoguePilot flaw let GitHub Copilot leak GITHUB_TOKEN, while new studies expose LLM side channels, ShadowLogic backdoors, and promptware risks.
Infosecurity-magazine.com

Malicious Commands in GitHub Codespaces Enable RCE

A set of attack vectors in GitHub Codespaces have been uncovered that enable remote code execution (RCE) by opening a malicious repository or pull request. The findings by Orca Security, show how ...
InfoQ

GitHub Agentic Workflows Unleash AI-Driven Repository Automation

Recently launched in technical preview, GitHub Agentic Workflows introduce a way to automate complex, repetitive repository ...

This week in AI updates: GPT-5.3-Codex-Spark, GitHub Agentic Workflows, and more (February 13, 2026)This week in AI updates: GPT-5.3-Codex-Spark, GitHub Agentic Workflows, and ...

GPT-5.3-Codex-Spark is a lightweight version of the company’s coding model, GPT-5.3-Codex, that is optimized to run on ultra-low latency hardware and can deliver over 1,000 tokens per second.