Considering existing code already has vulnerabilities, some of which were used to train Copilot I think it's possible but not efficient in terms of success rate.
But if they continue to ignore license terms I can see someone create repos with intentionally Copilot-incompatible licenses and watermark it so they can prove the license terms were violated.
I was more thinking about making multiple projects with similar, intentionally vulnerable, code. I personally could see it being feasable, altough, as you said, not efficient.
And yeah, i can see that attack vector (for legal action) through licenses as well.
But if they continue to ignore license terms I can see someone create repos with intentionally Copilot-incompatible licenses and watermark it so they can prove the license terms were violated.
reply