GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability
Published Feb 20, 2026
Modified 2 months ago
Details
Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature over a network.