dotfiles icon indicating copy to clipboard operation
dotfiles copied to clipboard
verified publisher icon shunkakinoki

fix(deps): update dependency @github/copilot to ^0.0.354

Open renovate[bot] opened this issue 6 months ago β€’ 1 comments

This PR contains the following updates:

Package Change Age Confidence
@github/copilot ^0.0.347 -> ^0.0.354 age confidence

Release Notes

github/copilot-cli (@​github/copilot)

v0.0.354

Compare Source

  • Exit with nonzero code when -p mode fails due to LLM backend errors (auth failures, quota exhaustion, network issues)
  • Support for MCP server tool notifications
  • Support for COPILOT_GITHUB_TOKEN environment variable for authentication (takes precedence over GH_TOKEN)
  • Improved shell command safety with better heredoc handling outside of commands
  • Diff hunk lines now properly fill the width of the diff box
  • MCP servers in GitHub Actions environments automatically use GITHUB_WORKSPACE as working directory
  • /delegate command now works correctly when no local changes exist
  • Custom agents with special characters in filenames no longer fail
  • Better error messages when using unsupported models with /model command
  • Alternative model providers now work correctly when using different OpenAI base URLs

v0.0.353

Compare Source

  • Added support for custom agents. Custom agent definitions are pulled from ~/.copilot/agents, .github/agents in your repository, or your organization's .github repository. You can explicitly invoke an agent with the /agent slash command interactively or --agent <agent> noninteractively. Agents are also provided as tools that the model can call during completion of a task
  • Added a /delegate command to delegate a task asynchronously to Copilot coding agent. Any unstaged changes will be committed to a new branch, a PR will be opened in your GitHub repository, and Copilot will complete work in the background.

v0.0.352

Compare Source

  • Improve handling of MCP tools containing slashes
  • Improve error message from /model <model> command when using an unsupported model

v0.0.351

Compare Source

  • Improved our path detection heuristic to avoid various annoying, unnecessary permissions requests:
    • Running many standard bash/PowerShell commands that are known to be readonly (Fixes part of github/sweagentd#7372)
    • Commands like npm test -- --something in PowerShell
    • Shell redirections like > some_file.txt in paths you've already granted write permissions, > /dev/null, and 2>&1 (Fixes #​211)
    • Arguments to gh api like gh api /repos/user/repo/ec (Fixes #​216)
  • Improved prompting for Sonnet 4.5 to reduce the number of intermediate markdown files left in the workspace
  • πŸ‘€ ...see you at GitHub Universe!

v0.0.350

Compare Source

  • To conserve context window space, we've limited the list of tools available to the default GitHub MCP server. In our tests, the model will use the GitHub CLI, gh (if installed) in lieu of missing MCP tools. We added an --enable-all-github-mcp-tools if you wish to turn on all available tools. Default available tools are:
    • Code & Repo navigation
      • get_file_contents
      • search_code
      • search_repositories
      • list_branches
      • list_commits
      • get_commit
    • Issue Management
      • get_issue
      • list_issues
      • get_issue_comments
      • search_issues
    • PR Management
      • pull_request_read
      • list_pull_requests
      • search_pull_requests
    • Workflow Info
      • list_workflows
      • list_workflow_runs
      • get_workflow_run
      • get_job_logs
      • get_workflow_run_logs
    • Misc search
      • user_search
  • Bundled sharp dependency into the CLI package -- we're one step closer to implementing #​16, and this fixes some startup blockers on Windows (fixes #​309 & #​287)
  • Fixed a bug where input tokens were not tracked properly (Fixes #​337)
  • Fixed a bug where MCP tools with arguments would fail with streaming enabled
  • Added additional debug logging that will help us investigate #​346

v0.0.349

Compare Source

  • The model can now call multiple tools in parallel. Each tool must be confirmed in advance. This behavior can be disabled with the --disable-parallel-tools-execution flag
  • Added /quit as an alias of /exit (fixes #​357)
  • Fixed a bug where every streamed output chunk was sent back to the model as part of the conversation (fixes #​379)
  • Ensure that environment variables are expanded before running path permission checks
  • Fixed a bug where Ctrl+K deleted to the end of the visual line in the input box rather than the logical line
  • Added the temp directory to the paths that the model has access to by default (fixes #​306)

v0.0.348

Compare Source

  • Copilot's output now streams in token-by-token! This can be disabled with --stream off
  • Made improvements to the memory footprint of Copilot CLI, especially when dealing with shell commands that produce very large outputs
  • Ensured we preserve comments in VSCode config files when using /terminal-setup (fixes #​325)
  • Bundled node-pty into the CLI package -- we're one step closer to implementing #​16
  • Fixed an issue where local tool calling broke sessions (fixes #​365, #​364, #​366)
  • Added our LICENSE.md to our Node package (fixes #​371)
  • Added debug logging to authentication status changes to get to the bottom of #​346

Configuration

πŸ“… Schedule: Branch creation - "before 3am" in timezone UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

β™» Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

πŸ”• Ignore: Close this PR and you won't be reminded about this update again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate[bot] avatar Oct 24 '25 00:10 renovate[bot]

[!IMPORTANT]

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot] avatar Oct 24 '25 00:10 coderabbitai[bot]

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update (^0.0.354). You will get a PR once a newer version is released. To ignore this dependency forever, add it to the ignoreDeps array of your Renovate config.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

renovate[bot] avatar Nov 08 '25 01:11 renovate[bot]