About Cody FAQ
Submit feedback from the field here.
What is Cody?
What is Cody (ELI5)?
Cody is an AI coding assistant that lives in your editor that can find, explain, and write code. Cody uses a combination of AI (specifically Large Language Models or LLMs), Sourcegraph search, and Sourcegraph code intelligence to provide answers that eliminate toil and keep human programmers in flow. You can think of Cody as your programmer buddy who has read through all the code on GitHub, all the questions on StackOverflow, and all your organization’s private code, and is always there to answer questions you might have or suggest ways of doing something based on prior knowledge.
Is Cody for Enterprise customers? Or for individual devs?
There are two ways to use Cody:
- As an individual dev, using Cody with sourcegraph.com. Follow the instructions here. Note that users might want to try Cody using sourcegraph.com on private code, which is possible as long as they agree to our terms.
- As a Sourcegraph Enterprise user, connect Cody to your Sourcegraph Enterprise instance. Instructions are here.
Note: There used to be two distinct VS Code extensions (Cody community and Cody enterprise) but they were merged into a single one.
How does Cody work (integration with CIP)?
To provide responses to requests, Cody does the following:
- A user asks Cody a question (or to write some code).
- Cody fetches relevant code snippets.
- Unlike Copilot, Cody knows about all your company’s private code and fetches snippets directly relevant to you.
- Sourcegraph uses a combination of code search, code graph (SCIP), intelligent ranking, and an AI vector database to respond with snippets that are relevant to the user’s request.
- Sourcegraph passes a selection of these results along with the original question to a Large Language Model like Claude or OpenAI’s ChatGPT.
- The Large Language Model uses the contextual info from Sourcegraph to generate a factual answer and sends it to Cody.
- Cody then validates the output of the Large Language Model and sends the answer back to the user.
How does Cody work (locally)?
To provide responses to requests, Cody does the following:
- A user asks Cody a question (or to write some code).
- Cody fetches code snippets from the users’ current workspace.
- The additional context collected is passed along with the original question to a Large Language Model like Claude or ChatGPT, through the Sourcegraph instance acting as a proxy.
- The Large Language Model uses the contextual info provided to generate a factual answer and sends it to the Sourcegraph instance, that proxies it back to the editor extension.
- Cody then validates the output of the Large Language Model and sends the answer back to the user.
How is Cody different from ChatGPT?
Cody uses a ChatGPT-like model as a component in its architecture (today we use Claude, but we could alternatively use ChatGPT or a similar Large Language Model). ChatGPT lacks the ability to search for contextual code snippets and docs, so its knowledge is therefore limited to open source it was trained on. It does not know about recent changes to code or your private codebase. Rather than telling you when it doesn’t know, ChatGPT will just confidently make stuff up that sounds correct but is false. The contextual snippets that Cody fetches from Sourcegraph are crucial to enabling Cody to generate factually accurate responses.
How is Cody different from GitHub Copilot?
- GitHub Copilot’s main feature is autocomplete, while Cody is focused on question answering. Cody’s main feature today is a chat interface where you can ask it to (1) find, (2) explain, and (3) write code. You can ask Cody questions about the code, which you can’t do with Copilot (because it’s autocomplete only). The closest feature to Copilot would be if you asked Cody to write code matching a description. Cody is able to give better answers and write better code snippets because Cody can fetch additional context from your codebase with the request to enrich it, so it is capable of writing code beyond the boilerplate use cases that Copilot is good for.
- Future state: Cody autocomplete vs Copilot. Copilot makes use of a LLM (Large Language Model) to generate these completions. Because Copilot doesn’t use a powerful search, a common criticism of Copilot is that it generates correct code only for boilerplate tasks. In the future, Cody will use Sourcegraph’s code intelligence to provide autocomplete tailored to a customer’s code.
| Cody | Copilot | Copilot Chat | |
|---|---|---|---|
| Chat interface / Q&A | ✅ | Waitlist | Waitlist |
| Code generation | ✅ | Waitlist | Waitlist |
| Autocompletion | Experimental (internal) | ✅ | NA. |
| Context | Local and remote repositories (embeddings) | Local | Local |
| Code and metadata | All the code graph (own, metadata, etc) coming soon. | Code only | Code only |
| Zero retention | On model inputs and outputs | On model inputs only | On model inputs only |
| Bring your own model | Coming soon (experimental) | ❌ | ❌ |
Notes:
- Copilot for Business retains ‘Suggestions’ (also known as completions or model outputs derived from your code) for up to 30 days.
- Cody context fetching is based on embeddings. So far, it retrieves relevant code for a single repository at a time. Multi-repo context fetching is scheduled for .
Can Cody …?
In general, a good idea is to give use cases a try. LLMs are very powerful and generic, and we add new recipes all the time. Here’s a few answers:
How does Sourcegraph’s CIP capabilities augment Cody? Aka why is it better to use Cody with CIP?
Cody Enterprise uses the Sourcegraph API to fetch contextual code snippets and docs that are relevant to answering a user’s query, using embeddings and soon other APIs. One way to think about Cody is that it is a natural language layer on top of Sourcegraph that uses many of the same search and code navigation features a human might, and then synthesizes the results from these features into an answer to the user’s question or code-writing request.
(As an analogy, consider how ChatGPT is pretty smart on its own for stuff that happened in public in the past, but it doesn’t know about anything in the present or any specifics about stuff from your email or private documents, for example.)
Can Cody understand code in any programming language?
Cody can read and write code in any major programming language. More esoteric languages might not work out of the box.
Can Cody speak human languages other than English?
Yes, Cody can speak many languages, including Spanish, French, German, Italian, Chinese, Japanese, Korean, Latin, and Esperanto.
Can Cody write code referencing other parts of the codebase (Ex. Write a new function calling an existing function in another repo)?
Yes, that’s the type of things Cody can do. Mileage may vary though, and Cody sometimes hallucinates!
Demoing
What are demo paths for Cody?
- Short demo video
- Longer demo video
- Cody background info and demo notes from SQS
- Tips on Demoing an LLM-based application from SQS
- Transcript of a great demo
You can also use this simple demo flow:
- Start with a generic question
What are popular go libraries for building CLIs?
- But the unique thing about Cody is it knows about your codebase. It uses code intelligence to answer questions about your code?
Do we have a React date picker component in Sourcegraph? Do we have a timeline component in Sourcegraph?
- Cody can speak Spanish, but I can’t
Do we have a timeline component in Sourcegraph? Answer in spanish.
- Cody can explain code
sourcegraph/enterprise/internal/batches/reconciler/plan.go Explain function DeterminePlan
For the first demo, we recommend that Technical Success takes the lead. As your customers or prospects want to talk about the future of Cody or the roadmap, please pull in @malomarrec.
Turning Cody on for a Sourcegraph Enterprise instance (customer or prospect)
How do we turn on Cody for a Sourcegraph Enterprise customer?
- Prerequisites
- See docs
- Approval of Cody terms. The very first step is to make sure customers can agree to terms and know that Cody uses third-party services (Anthropic and OpenAI). There is no paperwork required: customers will agree to terms by turning Cody on in the admin UI. But we need to make sure that they are aware and have the right expectations.
- Instructions for Cloud customers
- See the cloud team handbook (“Enable Cody on a Managed Instance”)
- Also see the customer facing docs
- Instructions for self-hosted customers:
- See docs
- To turn Cody on, the TA or CE assigned to the account needs to generate an anthropic access key,
- Prerequisite: accept your invite to the Anthropic console.
- Head to the anthropic console
- Click “generate key”
- Use the MI hostname as the key name - the instance url is more accurate from MI’s perspective, and we don’t store customer’s name directly anywhere in our Cloud infrastructure.
- Until we launch our cloud embeddings, you’ll also have to generate an OpenAI key for the customer (to create OpenAI embeddings) using the OpenAI console. Ask in #it-tech-ops if you don’t have access.
- Adoption strategy
- Cody Enterprise Use the MI hostname as the key name - the instance url is more accurate from MI’s perspective, and we don’t store customer’s name directly anywhere in our Cloud infrastructure. sending code snippets out to a third party provider, Anthropic.
Prerequisites, dependencies, limitations
Does Cody require Sourcegraph to function (technical dependencies)?
Yes. See docs
Can Cody work with self-hosted Sourcegraph?
Technically, Cody can work with self-hosted Sourcegraph instances but there are strict requirements set by the product team. Check with the product team for current requirement and the exception process. It’s important to note that Cody on self-hosted Sourcegraph has third-party dependencies:
- snippets of code (up to 28 KB per request) will be sent to a third party cloud service (Anthropic) on each request. This will be fine for some security teams, but others may opt to wait for a version that does not require sending any code to a third party service.
- the whole codebase (or at least a subset of repositories) will be sent to the embeddings endpoint (OpenAI or Sourcegraph Cloud)
Are there third party dependencies?
Yes:
- Anthropic for the LLM
- OpenAI for embeddings
See details and security information below.
Having code snippets sent to third-party services will be a problem for . Do we have a plan to address that? What if a customer or prospect is fully air-gapped?
- Short term
- We don’t have a short term plan to provide a completely self-hostable version of Cody. That’s because the LLM we use to generate the answers is provided by a third-party, and costs a few million dollars to train.
- Customers that ask for this will likely recognise that, and ask for options. What frequently works is offering them to use their own OpenAI (chatGPT and embeddings) or Anthropic contract, which we are working on.
- Longer term, we want Cody to be completely modular, so that customers can plug their model of choice, including their own proprietary LLM.
- One of those two things are very likely to happen:
- A good enough open source model gets released, and we can use it by default for self-hosted customers.
- Anthropic (or another LLM provider) provides a single-tenant offering that can be used by customers with constraining security requirements. In that case, the code snippets will still be sent to a third-party service, but on an instance dedicated to the customer. We are currently discussing this with Anthropic, but don’t have a timeline.
- We’re building a long-term plan to use a smaller, self-hosted model for code completion only (no conversational features). This doesn’t have a timeline yet but it’s likely we’re gonna do this over the next year, and we’re hiring a Head of AI to drive this effort.
- One of those two things are very likely to happen:
What snippets are sent to Anthropic?
The snippets that are sent are determined using Sourcegraph search, embeddings, or any other method that maximizes the relevance of the context fed to the LLM.
Does Cody train on customer code? How does Cody answer questions about your code if it does not train on customer’s code?
No, Cody doesn’t train on customer code. See docs
Is there a list/explanations of where the model trains in open source code?
Please reference the Cody notice.
Does Cody send code outside of a customer’s network?
Yes. Cody uses a third party large-language model. When a user asks Cody a question, Sourcegraph sends relevant code snippets out to a LLM cloud provider as context to generate answers. Our current third party large language model is provided by Anthropic. Anthropic has a zero-retention policy. Code snippets are only processed by Anthropic the length of time required to return the answer, and are removed permanently after that. Cody can also be setup to use embeddings. Cody will send data out to OpenAI or the Sourcegraph cloud embeddings endpoint for the creation of embeddings.
Are there any limitations of Cody supporting non-git code hosts?
Cody should work with Git code hosts. @beyang is working on verifying that.
What’s on the roadmap for Cody?
See Cody roadmap.
When’s GA?
We don’t have a GA date so far. For reference, the Gmail beta lasted more than a year. Cody is available to any prospect and customer today in its experimental state.
Are metrics available for Cody on Sourcegraph Enterprise instances?
Can we offer Cody to an entire team of engineers at certain customers - are pilots limited to only a few users?
Yes, all customer users are able to access Cody
How can I communicate which Cody offering is best for my prospects and customers to use?
| The VS Code extension (with sourcegraph.com) | Allows you to search one local code base at a time + the repo you have embeddings for on .com. | | (Not yet available) App + Cody | Allows you to search everything that you connect to your app instance to (local files and remote repos). | | Cloud trial / enterprise | Allows you to set up embeddings for your entire codebase. |
Do we log Cody queries, in a way that either our customer support team or their site admins can read user queries?
- On sourcegraph.com, we may log queries in order to provide the service and to improve the product.
- On Sourcegraph Enterprise, we don’t log cody queries.
What does it technically mean to use Cody+Sourcegraph.com on private code? Does that mean you are pasting a private code snippet into a query? Or is it possible that Cody will send/log private code if you simply have it open in your editor when you submit a query?
No, it means using sourcegraph.com as the backend for the VS Code extension (see docs). Cody will 100% send private code out (to Anthropic). We reserve the right to log all private code in that setup (when connected to .com), but do a best effort not to log private code. No guarantees, however, and our terms allow us to log it all in that case (see terms). If you want enterprise-friendly terms get a Sourcegraph Enterprise instance!
The future
Quick links:
Is search going to be replaced by embedding search?
Usually people think of embeddings / vector search as complementary to other strategies. While it matches really well semantically (“what is this code about, what does it do?”), it drops syntax and other important precise matching info. So the results are often combined with exact/ precise approaches to get the “best of both worlds”.
Also see AI reading list
Is Souregraph going to offer its own embeddings service?
Yes. Before the end of , Sourcegraph will offer a self-hosted embeddings service. Note that there will still be a third party dependency on Anthropic.
Is there a timeline of when Cody will help with search queries?
There’s a prototype live on s2: https://sourcegraph.sourcegraph.com/search/cody There’s no timeline yet for shipping this and future iterations to customers, but we are working on a further iteration on sourcegraph.com.
Will Cody support other LLM providers?
Yes. Cody we will be modular so people can use their own contractually agreed to LLM(s) (WIP). As of today, Cody by default supports the following models: docs, docs.
We are in early conversations with Google and Cohere to be able to be able to provide our customers with more options for their LLM use. There is no clear timeline for when these will be officially available, but by the end of is highly likely.
Will fine-tuning replace context fetching in the future?
This is a dynamic space, and we’re watching evolutions closely. We will use whatever techniques give the best results for users. That said, so far, we think that context-fetching has a few key advantages over fine-tuning:
- there’s no readily available solution for fine-tuning yet
- context-fetching works out of the box, whereas fine-tuning requires training (on GPUs)
- context-fetching is always up to date (or as up to date as the index), whereas fine-tuning requires training every time the codebase changes. That could become prohibitively expensive (eg. training after each commit).
Marketing material
See Cody Marketing page for Cody messaging, one-pagers, and other marketing assets.
Technology primers
Can you explain embeddings?
See this post.
Administration
How do we (Sourcegraph) revoke, disable, or turn off access to Cody?
To disable access to Cody, you must revoke the Anthropic/OpenAI API keys provided to the customer that they apply to the instance. Once the API key is revoked, the Cody extension becomes unusable.
For example to revoke the Anthropic API Key, from the Anthropic Console find the API Key specific to the customer and disable it.
Cody security standards
See this internal doc.
Go to market
See this internal doc
Would setting up Cody internally require us to get a separate usage license from Anthropic/OpenAI for internal use?
no – they would be accessing the LLM via Cody (us), our licenses permit their use
As a GTM team member, how can I set up Cody locally to run demos?
See this thread.
Which Cody offering is best for my prospects and customers to use?
| Distribution model | Benefit |
|---|---|
| The VS Code extension (with sourcegraph.com) | Allows you to search one local code base at a time + the repo you have embeddings for on .com. |
| (Not yet available) App + Cody | Allows you to search everything that you connect to your app instance to (local files and remote repos). |
| Cloud trial / enterprise | Allows you to set up embeddings for your entire codebase. |
When should we position Cody to create pipeline?
See this question.
With so many “leads” so far on Cody, are we ready to be able to handle all of the requests for access from an onboarding perspective?
Yes
Who can we prospect into for Cody?
- All Customers (AE & TA led).
- All Prospects (AE & CE led).
- All contacts are eligible, per the existing ROE (including ICs who are already on the approved list)
How will Inbound leads for Cody be managed?
Inbound leads are being routed to the Account Teams (for Named Accounts), and to Casi for Unassigned. Named SDRs work to triage and prioritize with your AE, CE & TA partners.
- SDR job # 1: effectively convert, triage all inbound leads.
- SDR job # 2: work with AE to prioritize outreach to all named prospects.
We may change Unnamed Account distribution ROE depending on the inbound demand (i.e. would not be possible for one inbound SDR to cover the demand if we have thousands of Unnamed Accounts).
ALL LEADS MUST BE CONTACTED FOR FIRST TOUCH WITHIN 24 HOURS OF ENTERING SALESFORCE LEAD VIEW (WEEKENDS EXCEPTED).
The goal of the initial outreach from the SDR is to provide helpful onboarding materials via the Sourcegraph docs, and establish a meeting with the AE & CE (or AE & TA in Customer meetings) to walk through questions, help with orientation, and unblock the Prospect or Customer from using Cody. There are Salesforce reports that show your (AE) leads from prospects, and inbounds from customer accounts:
- “For Work” - prospect
- “For Personal” - prospect
- “For Work” - existing customer
- “For Personal” - existing customer
If you have questions please reach out to Andrew Reed or Ajay Uppaluri.
When should we position Cody to create pipeline?
See this question
Pricing and Packaging (private)
See this document