Ask HN: Does your company ban GitHub Copilot?
Many of my friends are telling me their companies have banned Copilot since it sends sensitive data externally to GitHub, even in their enterprise offering.
Have you all heard of which companies have bans, for this or other reasons? Any interesting conversations or internal discussions talking about it?
12 comments
[ 5.0 ms ] story [ 37.4 ms ] threadWe're concerned more and more about GitHubs behavior ever since the Microsoft acqusition. Due to this, we've agreed not to use any proprietary GitHub solution, including codespaces, actions, as well as copilot. It feels like new GitHub features go towards a data-hoarder, vendor lock-in oriented solution.
It is also unsupported - and exceptionally hard - to execute runners without GitHub being available, or to migrate off of the proprietary action descriptor format.
Running GitHub enterprise locally may releive some of these issues, but using GitHub.com with GitHub actions is somewhat of a security and reliability nightmare, unless you trust Microsoft's GutHub with infinite visdom and 100% uptime.
With GitHub actions, you have to trust the platform or migrate away, there are no other options.
With many more open alternatives, you have the ability to control these. factors if you need or want to. Most likely you wont.
I certainly haven't seen any message about it, nor evidence of any coworkers using it. But if they did, it'd probably get banned for that same data issue, since they're very worried about folks transferring data from their machines and tend to restrict things like most companies emails being sent to third party addresses, USB devices being used, etc.