AnalysisDevelopersJuly 8, 2026
GitHub Copilot Refuses Harmful Requests in Chat, Writes Them in Code

Study finds GitHub Copilot can bypass its own safety refusals: requests rejected in chat are executed when broken into small code-editor steps. Researchers Abhishek Kumar and Carsten Maple demonstrated the vulnerability, highlighting gaps in AI coding assistant guardrails.