Can GitHub Copilot See SQL Query Results in VSCode? Is there a source that I can cite that explicitly shows that this is or isn't the case? #164872
Replies: 12 comments 2 replies
-
|
hey bro, As for HIPAA compliance, Copilot isn’t officially HIPAA-compliant, so I wouldn’t trust it with anything health-related or private. Basically, it's fine for general coding help, but I’d keep it disabled in any project with sensitive data — just to be 100% sure. |
Beta Was this translation helpful? Give feedback.
-
|
🕒 Discussion Activity Reminder 🕒 This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions: 1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as 2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own. 3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution. Note: This dormant notification will only apply to Discussions with the Thank you for helping bring this Discussion to a resolution! 💬 |
Beta Was this translation helpful? Give feedback.
-
|
Hi, I discovered that Copilot didn't send your query results to GitHub, nor did it send your execution data, nor did it send the code you wrote. I think it's best to disable Copilot for SQL files if you're working with private data, for security reasons. Following HIPAA compliance, Copilot doesn't officially comply with its offerings. I wouldn't trust it with anything healthcare-related or private at the moment. Basically, it works well for general programming help, but for any project with sensitive data, I'd keep it on standby until I'm completely sure. |
Beta Was this translation helpful? Give feedback.
-
|
🕒 Discussion Activity Reminder 🕒 This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions: 1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as 2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own. 3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution. Note: This dormant notification will only apply to Discussions with the Thank you for helping bring this Discussion to a resolution! 💬 |
Beta Was this translation helpful? Give feedback.
-
|
🕒 Discussion Activity Reminder 🕒 This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions: 1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as 2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own. 3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution. Note: This dormant notification will only apply to Discussions with the Thank you for helping bring this Discussion to a resolution! 💬 |
Beta Was this translation helpful? Give feedback.
-
|
VScode有插件,你使用的那种运行插件支持调试?敏感数据的判定应该不是GitHub的工作,商业隐私数据也应该需要脱密之后才能发在GitHub上。副驾驶能否看到sql查询结果,你需要确定这个应用的查询结果显示在了哪里。 |
Beta Was this translation helpful? Give feedback.
-
|
🕒 Discussion Activity Reminder 🕒 This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions: 1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as 2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own. 3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution. Note: This dormant notification will only apply to Discussions with the Thank you for helping bring this Discussion to a resolution! 💬 |
Beta Was this translation helpful? Give feedback.
-
|
Great security question. Let me clarify: Short Answer: GitHub Copilot CANNOT see your SQL query results or database contents. Sources to Cite:
What Copilot CAN see:
What Copilot CANNOT see:
Why it's Safe:
HIPAA Compliance:
Best Practice: Your code is safe to share - just avoid pasting actual sensitive data from results. |
Beta Was this translation helpful? Give feedback.
-
|
🕒 Discussion Activity Reminder 🕒 This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions: 1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as 2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own. 3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution. Note: This dormant notification will only apply to Discussions with the Thank you for helping bring this Discussion to a resolution! 💬 |
Beta Was this translation helpful? Give feedback.
This comment was marked as low quality.
This comment was marked as low quality.
-
|
🕒 Discussion Activity Reminder 🕒 This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions: 1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as 2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own. 3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution. Note: This dormant notification will only apply to Discussions with the Thank you for helping bring this Discussion to a resolution! 💬 |
Beta Was this translation helpful? Give feedback.
-
|
Hey man ! Copilot doesn't automatically get unrestricted access to your database just because you're running SQL in VS Code. It only sees the context that's available to the feature you're actively using (for example, the contents of the editor when requesting a completion or chat response). Query results or database connections aren't automatically sent unless they're part of the context being shared. For the HIPAA part, I wouldn't assume Copilot is HIPAA-compliant by default. That depends on your organization's plan, data handling settings, and whether there's a Business Associate Agreement (BAA) in place. If you're working with PHI, it's worth getting confirmation from GitHub rather than relying on general documentation. Hopefully someone from the GitHub team can clarify the exact data flow for SQL tools in VS Code and the current HIPAA guidance. |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
Select Topic Area
Question
Body
If I am running SQL queries in VSCode, I want to make sure that GitHub Copilot does not have access to my database information as well as the query results that could contain sensitive information. If possible, I would also like to know if GitHub Copilot is in compliance with HIPAA.
Beta Was this translation helpful? Give feedback.
All reactions