GitHub Codespaces Exposes Repository Takeover Risk

Orca Security disclosed on February 24, 2026 that a vulnerability dubbed 'RoguePilot' in GitHub Codespaces could let attackers inject malicious Copilot instructions via a GitHub issue to seize control of repositories. Microsoft patched the issue following responsible disclosure, and both parties advised users to apply the fix and audit workspace prompt parsing to prevent unauthorized code changes.