| title | Customizing the development environment for GitHub Copilot coding agent | |||||
|---|---|---|---|---|---|---|
| shortTitle | Customize the agent environment | |||||
| intro | Learn how to customize {% data variables.product.prodname_copilot %}'s development environment with additional tools. | |||||
| versions |
|
|||||
| redirect_from |
|
|||||
| contentType | how-tos | |||||
| category |
|
While working on a task, {% data variables.product.prodname_copilot_short %} has access to its own ephemeral development environment, powered by {% data variables.product.prodname_actions %}, where it can explore your code, make changes, execute automated tests and linters and more.
You can customize {% data variables.product.prodname_copilot_short %}'s development environment with a {% data variables.product.prodname_copilot_short %} setup steps file. You can use a {% data variables.product.prodname_copilot_short %} setup steps file to:
- Preinstall tools or dependencies in {% data variables.product.prodname_copilot_short %}'s environment
- Upgrade from standard {% data variables.product.github %}-hosted {% data variables.product.prodname_actions %} runners to larger runners
- Run on {% data variables.product.prodname_actions %} self-hosted runners
- Give {% data variables.product.prodname_copilot_short %} a Windows development environment, instead of the default Ubuntu Linux environment
- Enable Git Large File Storage (LFS)
In addition, you can:
- Set environment variables in {% data variables.product.prodname_copilot_short %}'s environment
- Disable or customize the agent's firewall.
Customizing {% data variables.product.prodname_copilot_short %}'s development environment with {% data variables.product.prodname_copilot_short %} setup steps
You can customize {% data variables.product.prodname_copilot_short %}'s environment by creating a special {% data variables.product.prodname_actions %} workflow file, located at .github/workflows/copilot-setup-steps.yml within your repository.
A copilot-setup-steps.yml file looks like a normal {% data variables.product.prodname_actions %} workflow file, but must contain a single copilot-setup-steps job. The steps in this job will be executed in {% data variables.product.prodname_actions %} before {% data variables.product.prodname_copilot_short %} starts working. For more information on {% data variables.product.prodname_actions %} workflow files, see AUTOTITLE.
Note
The copilot-setup-steps.yml workflow won't trigger unless it's present on your default branch.
Here is a simple example of a copilot-setup-steps.yml file for a TypeScript project that clones the project, installs Node.js and downloads and caches the project's dependencies. You should customize this to fit your own project's language(s) and dependencies:
name: "Copilot Setup Steps"
# Automatically run the setup steps when they are changed to allow for easy validation, and
# allow manual testing through the repository's "Actions" tab
on:
workflow_dispatch:
push:
paths:
- .github/workflows/copilot-setup-steps.yml
pull_request:
paths:
- .github/workflows/copilot-setup-steps.yml
jobs:
# The job MUST be called `copilot-setup-steps` or it will not be picked up by Copilot.
copilot-setup-steps:
runs-on: ubuntu-latest
# Set the permissions to the lowest permissions possible needed for your steps.
# Copilot will be given its own token for its operations.
permissions:
# If you want to clone the repository as part of your setup steps, for example to install dependencies, you'll need the `contents: read` permission.
# If you don't clone the repository in your setup steps, Copilot will do this for you automatically after the steps complete.
contents: read
# You can define any steps you want, and they will run before the agent starts.
# If you do not check out your code, Copilot will do this for you.
steps:
# ...Note
If your repository uses a merge queue, the push trigger above will also run when pull requests are added to the merge queue. To prevent this, add branches-ignore: ['gh-readonly-queue/**'] to the push trigger and restrict the pull_request trigger to your default branch with branches: [YOUR-DEFAULT-BRANCH]. For more information, see AUTOTITLE.
In your copilot-setup-steps.yml file, you can only customize the following settings of the copilot-setup-steps job. If you try to customize other settings, your changes will be ignored.
steps(see above)permissions(see above)runs-on(see below)servicessnapshottimeout-minutes(maximum value:59)
For more information on these options, see AUTOTITLE.
Any value that is set for the fetch-depth option of the actions/checkout action will be overridden to allow the agent to rollback commits upon request, while mitigating security risks. For more information, see actions/checkout/README.md.
Your copilot-setup-steps.yml file will automatically be run as a normal {% data variables.product.prodname_actions %} workflow when changes are made, so you can see if it runs successfully. This will show alongside other checks in a pull request where you create or modify the file.
Once you have merged the yml file into your default branch, you can manually run the workflow from the repository's Actions tab at any time to check that everything works as expected. For more information, see AUTOTITLE.
When {% data variables.product.prodname_copilot_short %} starts work, your setup steps will be run, and updates will show in the session logs. See AUTOTITLE.
If any setup step fails by returning a non-zero exit code, {% data variables.product.prodname_copilot_short %} will skip the remaining setup steps and begin working with the current state of its development environment.
Preinstalling tools or dependencies in {% data variables.product.prodname_copilot_short %}'s environment
In its ephemeral development environment, {% data variables.product.prodname_copilot_short %} can build or compile your project and run automated tests, linters and other tools. To do this, it will need to install your project's dependencies.
{% data variables.product.prodname_copilot_short %} can discover and install these dependencies itself via a process of trial and error, but this can be slow and unreliable, given the non-deterministic nature of large language models (LLMs), and in some cases, it may be completely unable to download these dependencies—for example, if they are private.
You can use a Copilot setup steps file to deterministically install tools or dependencies before {% data variables.product.prodname_copilot_short %} starts work. To do this, add steps to the copilot-setup-steps job:
# ...
jobs:
copilot-setup-steps:
# ...
# You can define any steps you want, and they will run before the agent starts.
# If you do not check out your code, Copilot will do this for you.
steps:
- name: Checkout code
uses: {% data reusables.actions.action-checkout %}
- name: Set up Node.js
uses: {% data reusables.actions.action-setup-node %}
with:
node-version: "20"
cache: "npm"
- name: Install JavaScript dependencies
run: npm ciUpgrading to larger {% data variables.product.prodname_dotcom %}-hosted {% data variables.product.prodname_actions %} runners
By default, {% data variables.product.prodname_copilot_short %} works in a standard {% data variables.product.prodname_actions %} runner. You can upgrade to larger runners for better performance (CPU and memory), more disk space and advanced features like Azure private networking. For more information, see AUTOTITLE.
-
Set up larger runners for your organization. For more information, see AUTOTITLE.
-
If you are using larger runners with Azure private networking, configure your Azure private network to allow outbound access to the hosts required for {% data variables.copilot.copilot_coding_agent %}:
{% data reusables.copilot.coding-agent-required-hosts %}
-
Use a
copilot-setup-steps.ymlfile in your repository to configure {% data variables.copilot.copilot_coding_agent %} to run on your chosen runners. Set theruns-onstep of thecopilot-setup-stepsjob to the label and/or group for the larger runners you want {% data variables.product.prodname_copilot_short %} to use. For more information on specifying larger runners withruns-on, see AUTOTITLE.# ... jobs: copilot-setup-steps: runs-on: ubuntu-4-core # ...
Note
- {% data variables.copilot.copilot_coding_agent %} is only compatible with Ubuntu x64 Linux and Windows 64-bit runners. Runners with macOS or other operating systems are not supported.
You can run {% data variables.copilot.copilot_coding_agent %} on self-hosted runners. You may want to do this to match how you run CI/CD workflows on {% data variables.product.prodname_actions %}, or to give {% data variables.product.prodname_copilot_short %} access to internal resources on your network.
We recommend that you only use {% data variables.copilot.copilot_coding_agent %} with ephemeral, single-use runners that are not reused for multiple jobs. Most customers set this up using ARC (Actions Runner Controller) or the {% data variables.product.prodname_actions %} Runner Scale Set Client. For more information, see AUTOTITLE.
Note
{% data variables.copilot.copilot_coding_agent %} is only compatible with Ubuntu x64 and Windows 64-bit runners. Runners with macOS or other operating systems are not supported.
-
Configure network security controls for your {% data variables.product.prodname_actions %} runners to ensure that {% data variables.copilot.copilot_coding_agent %} does not have open access to your network or the public internet.
You must configure your firewall to allow connections to the standard hosts required for {% data variables.product.prodname_actions %} self-hosted runners, plus the following hosts:
{% data reusables.copilot.coding-agent-required-hosts %}
-
Disable {% data variables.copilot.copilot_coding_agent %}'s integrated firewall in your repository settings. The firewall is not compatible with self-hosted runners. Unless this is disabled, use of {% data variables.copilot.copilot_coding_agent %} will be blocked. For more information, see AUTOTITLE.
-
In your
copilot-setup-steps.ymlfile, set theruns-onattribute to your ARC-managed scale set name:# ... jobs: copilot-setup-steps: runs-on: arc-scale-set-name # ...
-
If you want to configure a proxy server for {% data variables.copilot.copilot_coding_agent %}'s connections to the internet, configure the following environment variables as appropriate:
{% data reusables.actions.actions-proxy-environment-variables-table %} |
ssl_cert_file| The path to the SSL certificate presented by your proxy server. You will need to configure this if your proxy intercepts SSL connections. |/path/to/key.pem| |node_extra_ca_certs| The path to the SSL certificate presented by your proxy server. You will need to configure this if your proxy intercepts SSL connections. |/path/to/key.pem|You can set these environment variables by following the instructions below, or by setting them on the runner directly, for example with a custom runner image. For more information on building a custom image, see AUTOTITLE.
By default, {% data variables.product.prodname_copilot_short %} uses an Ubuntu Linux-based development environment.
You may want to use a Windows development environment if you're building software for Windows or your repository uses a Windows-based toolchain so {% data variables.product.prodname_copilot_short %} can build your project, run tests and validate its work.
{% data variables.copilot.copilot_coding_agent %}'s integrated firewall is not compatible with Windows, so we recommend that you only use self-hosted runners or larger {% data variables.product.prodname_dotcom %}-hosted runners with Azure private networking where you can implement your own network controls. For more information on runners with Azure private networking, see AUTOTITLE.
To use Windows with self-hosted runners, follow the instructions in the Using self-hosted {% data variables.product.prodname_actions %} runners section above, using the label for your Windows runners. To use Windows with larger {% data variables.product.prodname_dotcom %}-hosted runners, follow the instructions in the Upgrading to larger runners section above, using the label for your Windows runners.
If you use Git Large File Storage (LFS) to store large files in your repository, you will need to customize {% data variables.product.prodname_copilot_short %}'s environment to install Git LFS and fetch LFS objects.
To enable Git LFS, add a actions/checkout step to your copilot-setup-steps job with the lfs option set to true.
# ...
jobs:
copilot-setup-steps:
runs-on: ubuntu-latest
permissions:
contents: read # for actions/checkout
steps:
- uses: {% data reusables.actions.action-checkout %}
with:
lfs: trueYou may want to set environment variables in {% data variables.product.prodname_copilot_short %}'s environment to configure or authenticate tools or dependencies that it has access to.
To set an environment variable for {% data variables.product.prodname_copilot_short %}, create a {% data variables.product.prodname_actions %} variable or secret in the copilot environment. If the value contains sensitive information, for example a password or API key, it's best to use a {% data variables.product.prodname_actions %} secret.
{% data reusables.repositories.navigate-to-repo %} {% data reusables.repositories.sidebar-settings %} {% data reusables.actions.sidebar-environment %}
- Click the
copilotenvironment. - To add a secret, under "Environment secrets," click Add environment secret. To add a variable, under "Environment variables," click Add environment variable.
- Fill in the "Name" and "Value" fields, and then click Add secret or Add variable as appropriate.