Platform engineering

GitHub lets enterprises pin Copilot's OpenTelemetry endpoint

GitHub lets enterprises pin Copilot's OpenTelemetry endpoint

Where Copilot's telemetry stream lands, decided centrally

GitHub added a control on July 8 that lets an enterprise mandate where the Copilot Chat extension in VS Code and Copilot CLI send OpenTelemetry data, removing the need for individual developers to set OTEL_* environment variables. Per the GitHub changelog, the setting is delivered through a telemetry block in the enterprise-managed settings, and a managed value takes precedence over environment variables and user settings.

Four things are configurable in the block: the OTLP export endpoint and transport (otlp-http or otlp-grpc), the OTel service name and resource attributes, exporter headers such as an authentication token for the collector, and whether prompt, response and tool content is captured, with a separate flag for whether developers can change that. Delivery uses the channels documented on the same page: native MDM (Windows Registry or macOS managed preferences), server-managed settings from a signed-in GitHub account, or a file-based managed-settings.json.

Where this bites

The precedence rule is the point. If a platform team owns the collector and needs traces routed to it, this is exactly the switch they wanted. If a developer had their own OTLP endpoint pointed at a local sink, they will see the session start emitting somewhere else. The changelog does not describe a per-user override once a managed value is set.

A scoping note is worth reading twice. The changelog states that managed exporter headers apply only to the Copilot Chat extension's OTLP exporter. The endpoint and transport policy still reach the CLI agent host, but the auth-token flow the changelog calls out is bound to the Chat surface. On-call teams standing up the collector should plan for that asymmetry before it lands as a surprise during triage.

Source: GitHub Changelog (github.blog)

Related
Platform engineering

GitHub Copilot's enterprise managed-settings.json is now GA

GitHub Enterprise Cloud can now pin five Copilot behaviours from a single managed-settings.json in a .github-private repository. The file overrides local user config, is fetched on every auth, and refreshes hourly.

July 5, 2026
Platform engineering

GitHub streams Copilot agent sessions to the SIEM, in preview

GitHub put Copilot agent session streaming into public preview on July 2, exposing prompts, responses and tool calls from cloud agents and IDE clients to enterprise event collectors. For CI-adjacent workflows it turns Copilot from a black box into something an on-call can reconstruct after the fact.

July 7, 2026
Security & supply chain

GitHub gives enterprises a kill switch for Copilot's yolo mode

Enterprise-managed settings can now block GitHub Copilot CLI and VS Code from running in bypass-permission mode, the first governance control to land in that configuration plane.

June 17, 2026

Turn this into your pipeline. Build it on Buddy.

Start free