alt Hacker NewsI wonder if 1) the PR was created using Raycast and this is the model signing its PR, or 2) if there was some prompt injection done at some point.
Either of these options would still be bad, but here the author suggests that it's just copilot that now just injects ads in its output.
I don't know how Raycast could run on the GitHub servers, but a third option could be dataset poisoning. Hostile raycast advertising campaign