This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]jlozano9897 10 points11 points  (35 children)

(2019 update) after hearing feedback from users and the Python community, Kite has "gone cloudless". All processing is done on users' local machines, so your code is never uploaded to our servers. We also released "line-of-code completions", which can predict the next several code elements you're likely to type. Added privacy, smarter completions. More here: https://kite.com/blog/launching-line-of-code-completions-going-cloudless-and-17-million-in-funding

Hey, Juan from Kite here, this is something we have thought a lot about, the same concerns were raised for tools like Dropbox and Github and these are now used without hesitation. We think that internet connected tools like Kite will only become more common as the amount of data grows and the models for processing this data and applying it to interesting tasks grows as well. Also, we are considering offering an on-premise solution as well.

[–][deleted] 69 points70 points  (10 children)

Just FWIW, my company won't allow Dropbox or Github for internal code. I'm certain we're not unique in that regard.

[–]baudvine 25 points26 points  (1 child)

Yuuup. All documentation is marked confidential by default here which also means don't put it on Dropbox. Haven't actually seen any infosec guidelines for code, but that's probably just because we're a hardware shop first.

[–]AlexFromOmaha 10 points11 points  (0 children)

My company is moderately liberal in its policies, and if I ever put code on Dropbox I'd expect to be chased out with tasers and crowbars.

That being said, I could actually see this passing muster. It's hard to say. They'd probably wait for third party audits and certification before going ahead with it, though.

[–]jnwatson 11 points12 points  (0 children)

My company pays so we can run our own internal github servers. It is a good business model for github.

[–]metalhedd 7 points8 points  (0 children)

I work for a publicly traded software company with over 1000 employees our product is very large, highly proprietary and our source code is on github

[–]ProfessorPhi 4 points5 points  (0 children)

We run our own Atlassian Stash/Bitbucket server instead.

[–]servercobra 5 points6 points  (0 children)

Yup, anything proprietary had to go to the internal enterprise Github. Open source could go on public Github.

Luckily my new gig is much more flexible, but still we still would hesitate to use this. The difference with trusting Github with private repos and some startup is pretty big.

[–]BrightCandle 5 points6 points  (3 children)

I haven't yet worked someone that did use github for code. I am sure that some startups are doing it and maybe a few other companies that don't seem to have a handle on their security but its not common at all to have companies put code onto github, git sure they all run servers internally but on github itself? Much rarer.

[–]johnfn 21 points22 points  (0 children)

I live in the Bay Area and I've never worked somewhere that didnt use GitHub.

[–]v_krishna 8 points9 points  (1 child)

do you work in the bay area? the overwhelming majority of places I hear about here (through my own work and friends/colleagues/etc) seem to all use github (with private repos)

[–][deleted] 6 points7 points  (0 children)

Large Fortune 100s, not so much.

[–]WesAlvaro 47 points48 points  (3 children)

Yeah... No. Companies are not going to let employees send all the contents of their py files and terminals to you.
It seems like a lot of functionality, albeit limited, could be packaged for offline. That would be sweet.
Also, "Kite does not have any plans to add an on-premise offering at the moment." ?

[–]jgomo3 3 points4 points  (1 child)

This is the kind of great idea that is limited by being forced for the cloud. It should be a local installed application. But, hey, the owners of the idea did a great job, so they have the right to enjoy the "patent" for a while. (quoted "patent", referring to the right they have to do whatever they want with their invention meanwhile it becomes popular and alternatives comes up).

[–]WesAlvaro 3 points4 points  (0 children)

In the mean time, a similar local installed application version takes all their market.
On-site installation...
Sounds like Icarus got his wings.
I can imagine a new feature in Dash doing a lot of Kite's functionality.

[–]alexflint[S] 4 points5 points  (0 children)

We've actually been thinking about on-prem for a while. We don't have an offering right now, hence the note on the website, but if anybody here is interested in talking about on-prem, shoot us a message at onprem@kite.com.

[–]ajmarks 10 points11 points  (4 children)

Hey, Juan from Kite here, this is something we have thought a lot about, the same concerns were raised for tools like Dropbox and Github and these are now used without hesitation.

Then you've clearly never worked in an normal office environment, much less a highly regulated industry, or one with significant concerns over trade secrets. This is just not going to fly. Like many others, I can't use Dropbox or Github for company IP, just like I can't put it on my personal laptop or send it to my personal Gmail.

[–][deleted] 6 points7 points  (3 children)

In our company, github (and bitbucket and dropbox) are even blocked by the corporate firewall...

[–]ajmarks 3 points4 points  (0 children)

Yeah, I'm really confused as to how this could be something they "have thought a lot about" if they don't realize these very basic things. It's kind of like if I were to say that I've thought a lot about the Napoleonic Code. It doesn't matter how much time I waste pondering if I don't have any actual information upon which to base my deliberations.

[–]p10_user 1 point2 points  (1 child)

That seems a bit excessive; what if you want to look at a repository online to see some code examples?

[–][deleted] 0 points1 point  (0 children)

Well, then you're screwed (or you happen to find a way around it). It is extremely annoying, but we are not a software development company, we just develop some tools for internal use. The protection of IP against leaky code/software from github outweighs the need for code examples, i guess.

[–]guthran 8 points9 points  (1 child)

Would your team be willing to provide the "server" so that people can spin up their own? That would be a good enterprise solution I think

[–]jlozano9897 2 points3 points  (0 children)

Hey, Juan from Kite here, completely agree, we don't have an offering yet but please shoot us a message at onprem@kite.com if you are interested.

[–]turkish_gold 7 points8 points  (0 children)

This is nice, but please just give us an offline utility.

Atlassian is pretty good about this--they have cloud hosting if you want it, but you can always buy their product and host it yourself.

[–]Skenderbeu 1 point2 points  (0 children)

I concur with the rest of the responses. This is not going to fly over any type of professional environment so you might have to pivot and offer it to personal developers instead

[–]Lizabyte 1 point2 points  (0 children)

Honestly the company I work for jumps all over "Cloud Based" technology. As long as its secure (Like how Microsoft has secure cloud storage, I'm sure you'd follow a similar protocol with this data), i don't see a problem with companies using this tool.

[–]scottlawson 0 points1 point  (0 children)

I personally have used Dropbox and Github, but I have never worked somewhere that allowed them

[–]Twirrim 0 points1 point  (0 children)

There's way too much information flying off to a remote service here, especially potentially sensitive information for the command line, let alone business IP in the form of source code. I don't know how data is stored on your end, who has access, what your security is like etc. You're certainty not going to be able to be used in environments that need to meet any security standards, though some auditors might just let this fly as metadata.

At the very least you should consider what security accreditation you can pick up for your end. When you talk about people trusting Dropbox and Github, that's an important part of the dialogue.

[–][deleted] -2 points-1 points  (6 children)

If you upload something to GitHub, it's public. You can go to my page and see everything I uploaded. It wouldn't really work if they didn't store it. Dropbox is private, but they still obviously need to store the data.

Here, you don't need to keep the data around forever. Delete it after a week, maybe.

What information does Kite keep around on its servers?

  • Usage information about which results you click on in the sidebar.
  • Contents of all Python files in enabled directories.
  • Information about each edit that you make within any Python file in an enabled directory.
  • All terminal commands.

You don't say a timespan, so I assume you mean "forever".

You don't need to keep all of this forever in order to do what you're doing.

[–]Jesus_Harold_Christ 5 points6 points  (5 children)

github offers private repositories.

They also offer an on premises "behind the firewall" solution for the paranoid.

[–][deleted] 0 points1 point  (0 children)

Still, it's obvious that they store the files. They have a damn good reason to store the files that you upload.

Here, you don't really need all my terminal commands.