CapitalGuard

CapitalGuard Observatory · Tool record

GitHub Copilot

GitHub · coding assistant

GitHub Copilot can use editor context, repository indexes, pull requests, issues, and agent workflows, with policy and content-exclusion behavior depending on plan and surface.

Public-Control Score

86

Extensive public control coverage

Measures publicly documented control coverage as of the review date. It is not a breach rate, penetration test, endorsement, or guarantee of safety.

Scored dimensions

The documented control surface.

This record is reviewed against the same five-dimension rubric used across every scored product.

Read Methodology

Access and scope transparency

18/20

Official material provides extensive operational detail for access and scope transparency.

Data and retention controls

14/20

Official material names concrete controls and meaningful boundaries for data and retention controls.

Connector and permission controls

17/20

Official material provides extensive operational detail for connector and permission controls.

Action, approval, and isolation controls

18/20

Official material provides extensive operational detail for action, approval, and isolation controls.

Audit and administrative evidence

19/20

Official material provides extensive operational detail for audit and administrative evidence.

Documented access points

1

open editor and workspace context

2

repository semantic indexes

3

Copilot agents, pull requests, issues, and workflows

Settings to verify now

1

Content exclusions and repository indexing

2

Organization and enterprise Copilot policies

3

Agent permissions, branch protection, and review rules

Linked security signals

Version checks that should not wait.

CGO-CHANGE-2026-06-09 · informational

GitHub adds security validation for third-party coding agents

Supported GitHub agent workflows; coverage depends on repository and agent settings.

Keep the validation enabled, but retain branch protection, review, and least-privilege controls around agent-generated changes.

CGO-RESEARCH-2026-05 · informational

AgentSecBench formalizes three enforceable agent-security boundaries

Agentic systems that combine untrusted content, private context, and action-capable tools.

Project trusted provenance, restrict capabilities before generation, and validate outputs before execution.

Primary sources

Inspect the evidence directly.