> how do you know they didn’t request this.<p>That's easy. It's the Microsoft dark pattern era of computing, and Microsoft owns github, and Microsoft is heavily pushing "AI" and "Copilot" everywhere. Therefore, the person who requested this is clearly Microsoft.<p>If it was actually an employee/someone you know, Microsoft would tell you, or, the person would have you sent you a link and said "this is cool, we should get this".
I’ve seen this after inviting someone whom also received a pop for copilot and they probably clicked it not intending to send of a request. Just seems like traditional bad Microsoft design.
I'm imagining a kind of weaponized innocent straightforwardness:<p>"GitHub support, it appears a hacker compromised our organization, and slipped up by clicking to request an AI feature. There's not enough auditing on this, so we need to know exactly which user-account did that in order to disable it and stabilize the situation."
Why is it so hard to believe that someone in your organization accidentally or deliberately clicked the "get copilot" button in their IDE or on any Github surface? I'm not saying Github is right here (this is an ad after all), but directly accusing them of dishonesty/cheating without even putting in the bare minimum effort to confirm it on your end seems weird. AI-assisted coding has been all the rage in tech circles for a while now, and I'd bet there's at least one person at your company who wants to try it out.<p>Although I guess the purpose of the post was to generate internet outrage, and I have no doubt it will be successful at that.