Techly NewsGet the app

Get the latest tech news

Thousands of exposed GitHub repos, now private, can still be accessed through Copilot


Data exposed even briefly can live on in generative AI chatbots long after the data is made private.

Lasso co-founder Ophir Dror told TechCrunch that the company found content from its own GitHub repository appearing in Copilot because it had been indexed and cached by Microsoft’s Bing search engine. Dror said the repository, which had been mistakenly made public for a brief period, had since been set to private, and accessing it on GitHub returned a “page not found” error. However, Lasso says that though the caching feature was disabled, Copilot still had access to the data even though it was not visible through traditional web searches, indicating a temporary fix.

Get the Android app

Or read this on TechCrunch

Read more on:

Photo of Copilot

Copilot

Photo of Thousands

Thousands

Photo of GitHub

GitHub

Related news:

News photo

200-plus impressively convincing GitHub repos are serving up malware

News photo

GitVenom attacks abuse hundreds of GitHub repos to steal crypto

News photo

Virgin Media internet restored after earlier outage

« Nvidia’s Shaken Aura of Invincibility Is Set for Earnings Test
A CLI to quickly launch VSCode/cursor devcontainers »