If you or your organization employs security measures like a firewall or proxy server, it may be beneficial to include certain domain URLs in an "allowlist" and open specific ports and protocols. Doing so will enhance your installation and usage of Copilot for an optimal experience.
URLs to add to an allowlist
Due to Copilot's interaction with a remote machine learning model and its update-checking functionality, it is recommended to include the following domain URLs in the allowlist, marking them as trusted either in the user interface or within your deployment scripts.
| Domain and/or URL | Purpose |
|---|---|
https://github.com/login/* | Authentication |
https://api.github.com/user | User Management |
https://api.github.com/copilot_internal/* | User Management |
https://copilot-telemetry.githubusercontent.com/telemetry | Telemetry |
https://default.exp-tas.com/ | Telemetry |
https://copilot-proxy.githubusercontent.com/ | API service for Copilot suggestions |
https://origin-tracker.githubusercontent.com | API service for Copilot suggestions |
https://*.githubcopilot.com | API service for Copilot suggestions |
Additional domains and URLs may require allowlisting, depending on your organization's security policies and the editors in use. For more information about specific editors, see "Further reading."
Note: On February 1, 2024, the Copilot Chat API endpoints that were routed through https://copilot-proxy.githubusercontent.com were deprecated. Instead, these requests go through https://api.githubcopilot.com/. Please ensure you are using the most recent version of the Copilot extension and ensure your firewall and network settings allow communication to https://api.githubcopilot.com.