terminal
howtonotcode.com
GitHub Copilot logo

GitHub Copilot

Ai Tool

AI-powered code completion tool for developers.

article 30 storys calendar_today First seen: 2026-01-02 update Last seen: 2026-03-03 open_in_new Website menu_book Wikipedia

Resources

Links to check for updates: homepage, feed, or git repo.

home Homepage

rss_feed Feed

Stories

Showing 1-20 of 30

Copilot CLI adds GPT-5.3-codex and workspace MCP configs

GitHub Copilot’s CLI now supports GPT-5.3-codex with workspace-local MCP configs, and Microsoft published guidance on choosing the right Copilot model while users flagged UX and quota gaps. The CLI v0.0.407-0 adds support for gpt-5.3-codex and workspace-local MCP configuration via .vscode/mcp.json, plus numerous usability fixes and improvements [CLI v0.0.407-0 release notes](https://github.com/github/copilot-cli/releases/tag/v0.0.407-0)[^1]. Microsoft shared a practical model-selection guide for Copilot, while users requested premium request rollover and highlighted UX/Plan Mode issues; also note the VS Code 1.109.1 security recovery relevant to dev environments [model-selection guide](https://techcommunity.microsoft.com/blog/azuredevcommunityblog/choosing-the-right-model-in-github-copilot-a-practical-guide-for-developers/4491623)[^2], [premium request rollover](https://github.com/orgs/community/discussions/186654)[^3], [UX/Plan Mode concerns](https://github.com/orgs/community/discussions/186670)[^4], [VS Code 1.109.1](https://github.com/microsoft/vscode/releases/tag/1.109.1)[^5]. [^1]: Adds: Details the new model support, MCP config, and fixes in copilot-cli v0.0.407-0. [^2]: Adds: Guidance on which Copilot model to use by task type and enterprise considerations. [^3]: Adds: Community request signaling pain with monthly premium request caps. [^4]: Adds: Firsthand UX feedback on tool bloat, Plan Mode confusion, and reliability trade-offs. [^5]: Adds: Notes a security-related recovery update for VS Code that may affect Copilot users.

calendar_today 2026-02-10
github-copilot copilot-cli gpt-53-codex model-context-protocol-mcp visual-studio-code

Cisco donates CodeGuard to CoSAI as research exposes persistent LLM code vulnerabilities

Cisco donated its model-agnostic CodeGuard security ruleset to CoSAI while new research shows LLM code generators reliably repeat exploitable patterns, raising the bar for secure-by-default AI coding. OASIS Open details CodeGuard’s coverage and IDE-assistant integrations like Cursor, GitHub Copilot, Windsurf, and Claude Code ([Cisco Donates Project CodeGuard to Coalition for Secure AI](https://www.oasis-open.org/2026/02/09/cisco-donates-project-codeguard-to-coalition-for-secure-ai/)[^1]). Research on “vulnerability persistence” introduces FSTab to predict and exploit recurring flaws in LLM-generated software with high cross-domain success, and domain-focused safety stacks like Guardrails AI are emerging to catch dangerous outputs ([AI Code Generation Tools Repeat Security Flaws](https://quantumzeitgeist.com/ai-security-code-generation-tools-repeat-flaws/)[^2]; [Inside Guardrails AI](https://www.webpronews.com/inside-guardrails-ai-how-a-seattle-startup-is-deploying-clinical-expertise-to-neutralize-the-most-dangerous-failures-in-artificial-intelligence/)[^3]). [^1]: Official announcement of the CodeGuard donation, scope, and integrations with popular AI coding assistants. [^2]: Summarizes FSTab and evidence of predictable, repeatable vulnerabilities (e.g., high success versus Claude‑4.5 Opus). [^3]: Example of domain-specific guardrails and enterprise safety demand context.

calendar_today 2026-02-09
cisco project-codeguard coalition-for-secure-ai-cosai oasis-open cursor

OpenAI’s next wave: GPT-5, AI-built models, and a $40B push

OpenAI is pairing renewed ChatGPT growth with an imminent model upgrade and AI-assisted model development, signaling a faster cadence toward GPT-5 and higher enterprise reliability. Altman flagged >10% monthly ChatGPT growth, a $40B round, ads, and an imminent model update to counter Anthropic’s coding gains in an internal push for momentum ([OpenAI’s Growth Gambit](https://www.webpronews.com/openais-growth-gambit-inside-sam-altmans-push-to-reclaim-momentum-as-chatgpt-hits-a-pivotal-inflection-point/))[^1]. WebProNews outlines GPT-5’s expected leap in reasoning, multimodality, and stability for enterprises, alongside OpenAI’s disclosure that its newest frontier model was substantially built using its own AI systems ([GPT-5 and the Great AI Arms Race](https://www.webpronews.com/openais-gpt-5-and-the-great-ai-arms-race-why-the-next-generation-of-language-models-could-reshape-enterprise-computing/))[^2] and ([The Ouroboros Moment](https://www.webpronews.com/the-ouroboros-moment-openai-says-its-newest-ai-was-built-by-ai-itself-and-the-industry-is-taking-notice/))[^3]. [^1]: Adds: internal growth, funding scale/valuation, ads, and “imminent model update” context vs Anthropic. [^2]: Adds: what GPT-5 aims to improve (reasoning, context, multimodal) and enterprise implications. [^3]: Adds: AI-built-AI development details and safety/oversight considerations.

calendar_today 2026-02-09
openai chatgpt gpt-5 anthropic softbank

Cisco open-sources CodeGuard as research flags predictable LLM code flaws

Cisco donated its CodeGuard security framework to OASIS’s Coalition for Secure AI as new research shows LLM code assistants repeat predictable vulnerabilities, raising the bar for secure-by-default AI coding workflows. Details of the open donation and integration targets (Cursor, Copilot, Windsurf, Claude Code) are in OASIS Open’s announcement [Cisco Donates Project CodeGuard to Coalition for Secure AI](https://www.oasis-open.org/2026/02/09/cisco-donates-project-codeguard-to-coalition-for-secure-ai/)[^1]. Complementary research findings show vulnerability persistence and a black-box FSTab method with up to 94% attack success on LLM-generated apps [AI Code Generation Tools Repeat Security Flaws, Creating Predictable Software Weaknesses](https://quantumzeitgeist.com/ai-security-code-generation-tools-repeat-flaws/)[^2], with broader context on latent backdoors in “clean” AI code [Backdoors With Manners](https://hackernoon.com/backdoors-with-manners-when-ai-writes-clean-code-that-turns-malicious-later?source=rss)[^3] and sector-specific safety layers emerging in healthcare [Inside Guardrails AI](https://www.webpronews.com/inside-guardrails-ai-how-a-seattle-startup-is-deploying-clinical-expertise-to-neutralize-the-most-dangerous-failures-in-artificial-intelligence/)[^4]. [^1]: Adds: Official details on CodeGuard scope, integrations, and governance via CoSAI. [^2]: Adds: Research summary explaining FSTab, vulnerability recurrence metrics, and attack success rates. [^3]: Adds: Perspective on behavioral trojans and delayed-malicious code patterns. [^4]: Adds: Example of domain-specific safety guardrails in production contexts.

calendar_today 2026-02-09
cisco oasis-open coalition-for-secure-ai-cosai project-codeguard cursor

Agent Skills + System Memory for Consistent, Domain-Aware Agents

Packaging domain knowledge as reusable agent skills and pairing it with system-level memory makes AI coding agents follow your conventions, integrate with your SDKs, and avoid costly context churn. Define Skills as SKILL.md packages with metadata, instructions, and optional scripts that distribute across Claude, Cursor, and Copilot via a common layer like skills.sh, then apply pragmatic guidance on authoring domain skills ([DEV post](https://dev.to/triggerdotdev/skills-teaching-ai-agents-to-act-consistently-33f4)[^1]; [Medium guide](https://jpcaparas.medium.com/how-to-build-agent-skills-that-actually-work-35dcb9f9390b?source=rss-8af100df272------2)[^2]). Address the "limited loop" by adding durable, queryable memory to cut re-derivation and churn ([Weaviate blog](https://weaviate.io/blog/limit-in-the-loopons, and domain gotchas into effective skills. [^3]: Adds: Frames memory as a systems problem and proposes continuity to avoid agent churn and repeated work. [^4]: Adds: Evidence that pure in‑context learning is unreliable, motivating persistent memory beyond prompt stuffing.

calendar_today 2026-02-09
anthropic claude cursor github-copilot skillssh

Copilot model selection guidance with quota and UI gotchas

Microsoft outlines how to choose Copilot models by task while users report quota friction and a missing Edit mode after recent updates. A Microsoft guide maps everyday, lightweight, deep‑reasoning, and agentic tasks to specific Copilot model types and flags enterprise considerations like premium request multipliers [Choosing the Right Model in GitHub Copilot](https://techcommunity.microsoft.com/blog/azuredevcommunityblog/choosing-the-right-model-in-github-copilot-a-practical-guide-for-developers/4491623)[^1]. Meanwhile, community threads flag a disappearing Copilot Edit mode after the latest chat extension update and pain around non‑rolling premium request quotas (e.g., 300 Pro / 1,500 Pro+) [Github Copilot Edit mode gone after latest update?](https://github.com/microsoft/vscode/issues/293826)[^2] [Copilot premium requests to roll over to the next month](https://github.com/orgs/community/discussions/186654)[^3], with additional confusion from a recent Pro+ subscriber report [Bought Copilot Pro+ 2 hours ago, haven't use anything and ...](https://www.reddit.com/r/GithubCopilot/comments/1r07185/bought_copilot_pro_2_hours_ago_havent_use/)[^4]. [^1]: Adds: Developer-focused model selection guidance and enterprise usage considerations (multipliers) from Microsoft. [^2]: Adds: Report that Copilot Edit mode vanished after updating Copilot Chat Extension 0.37.1 on VS Code 1.109. [^3]: Adds: User feedback on lack of premium request rollover and stated quota numbers (300 Pro / 1,500 Pro+). [^4]: Adds: Anecdotal Pro+ subscription/usage confusion visible in VS Code.

calendar_today 2026-02-09
github-copilot microsoft github visual-studio-code openai

OpenAI’s GPT-5.3-Codex rolls out to Copilot with faster, agentic workflows

OpenAI's GPT-5.3-Codex is a 25% faster, more agentic coding model built for long-running, tool-driven workflows and is now rolling out across Codex surfaces and GitHub Copilot with stronger cybersecurity guardrails. OpenAI positions the model for multi-step coding and broader "computer use" with SOTA benchmark results and notes early versions helped build and operate itself [Pulse 2.0](https://pulse2.com/openai-reveals-gpt-5-3-codex-a-faster-agentic-coding-model-built-for-long-running-work/)[^1] and [AI-360](https://www.ai-360.online/openai-launches-gpt-5-3-codex-extending-agentic-coding-and-real-time-steering/)[^2]. GitHub confirms GPT-5.3-Codex is GA in Copilot (Pro/Business/Enterprise) across VS Code, web, mobile, CLI, and the Coding Agent with an admin-enabled policy toggle and gradual rollout [GitHub Changelog](https://github.blog/changelog/2026-02-09-gpt-5-3-codex-is-now-generally-available-for-github-copilot/)[^3], while OpenAI channels have it now with API access "soon" and a new Trusted Access for Cyber pilot [Pulse 2.0](https://pulse2.com/openai-reveals-gpt-5-3-codex-a-faster-agentic-coding-model-built-for-long-running-work/)[^1] and [ITP.net](https://www.itp.net/ai-automation/openai-launches-gpt-5-3-codex-the-new-era-of-ai-powered-coding-and-beyond)[^4]. [^1]: Adds: Core capabilities, benchmark highlights, safety posture, availability across Codex app/CLI/IDE/web, and NVIDIA GB200 NVL72 infra. [^2]: Adds: Real-time steering in extended runs and cybersecurity classification/pilot context for enterprise adoption. [^3]: Adds: Concrete Copilot GA details, supported surfaces, plans, rollout, and admin policy enablement. [^4]: Adds: Additional context on broader professional task coverage and API timing.

calendar_today 2026-02-09
openai gpt-53-codex openai-codex-app github github-copilot

Copilot CLI 0.0.406 adds MCP upgrades and Claude preview; community proxy unlocks Copilot in Cursor

GitHub Copilot CLI 0.0.406 brings MCP-focused UX improvements, a Claude Opus 4.6 Fast preview, and safer flags, while a community proxy shows how to use a Copilot subscription inside Cursor’s Agent features. Per the official notes, v0.0.406 adds Claude Opus 4.6 Fast support, command-to-skill translation, /changelog, MCP status, structured responses for VS Code, URL-based plugin marketplace, and a --no-experimental flag [GitHub Copilot CLI releases](https://github.com/github/copilot-cli/releases)[^1]. A community guide details a "Copilot Proxy for Cursor" that routes Cursor to your Copilot key with MCP/tool support and vision handling; use cautiously given it relies on internal APIs [DEV: Unlock GitHub Copilot in Cursor](https://dev.to/jacksonkasi/unlock-github-copilot-in-cursor-the-ultimate-guide-free-unlimited-4i9c)[^2]. [^1]: Adds: Official 0.0.406 features, MCP/skills changes, and safety flags. [^2]: Adds: How the proxy works, setup steps, supported models/tools, and caveats.

calendar_today 2026-02-07
github-copilot github copilot-cli cursor anthropic

VS Code Copilot Chat v0.38 (pre-release): Claude GA, memory tool, and CLI integration updates

VS Code Copilot Chat v0.38 (pre-release) introduces Claude graduating from preview, Anthropic memory tooling (including local memory), a rename of /summarize to /compact with optional instructions, and Copilot CLI integration migration. See the extension’s pre-release notes for Anthropic memory tool support and checks, Claude graduation, /summarize ➜ /compact, subagent improvements, hooks stopReason/warningMessage, telemetry fixes, and the Copilot CLI integration migration [release notes](https://github.com/microsoft/vscode-copilot-chat/releases)[^1]. For enterprise enablement and procurement, this guide outlines how to subscribe to GitHub Copilot via Azure [implementation path](https://medium.com/@addozhang/subscribing-to-github-copilot-via-azure-enterprise-ai-programming-assistant-implementation-path-2504adeff1d8)[^2]. [^1]: Adds: Official v0.38 pre-release changelog with specific features and fixes. [^2]: Adds: Enterprise subscription route via Azure for rolling out Copilot.

calendar_today 2026-02-07
vs-code-copilot-chat github-copilot copilot-cli claude claude-code

GitHub plans PR controls as AI code floods repos; tame API sprawl before rolling out agents

GitHub is evaluating stricter pull request permissions and AI-based filters (e.g., collaborators-only PRs, disabling PRs for mirrors) to curb the surge of low-quality, AI-generated contributions overwhelming maintainers ([InfoWorld](https://www.infoworld.com/article/4127156/github-eyes-restrictions-on-pull-requests-to-rein-in-ai-based-code-deluge-on-maintainers.html)[^1]). For backend teams deploying agents, unchecked API sprawl breaks autonomy, contracts, and observability—causing silent data pollution and reliability issues unless a governed API catalog and clear schemas are in place ([Nordic APIs](https://nordicapis.com/how-api-sprawl-cripples-your-ai-strategy-and-how-to-fix-it/)[^2]). Small, auditable AI-assisted scripts can deliver value (e.g., a 400-line Python log colorizer built with Claude Code) but don’t scale the review burden or governance needs of larger codebases ([Ars Technica](https://arstechnica.com/features/2026/02/so-yeah-i-vibe-coded-a-log-colorizer-and-i-feel-good-about-it/)[^3]). [^1]: Adds: Specific PR controls GitHub is considering and community feedback on AI-driven PR quality. [^2]: Adds: Concrete failure modes from API sprawl for agentic AI (discovery, contract drift, observability, security). [^3]: Adds: Real-world, small-scope AI-assisted dev example and its auditability/scale trade-offs.

calendar_today 2026-02-04
github github-copilot claude-code claude python

Copilot January: agents in VS Code, VS UX boosts, and CLI ACP/MCP updates

GitHub is pushing Copilot deeper into agent workflows: VS Code v1.109 adds multi‑agent session management, Claude agent support, MCP‑powered tool integrations, memory/indexed code search, and terminal command sandboxing, while Visual Studio gains colorized and partially‑acceptable completions plus Markdown preview improvements ([changelog](https://github.blog/changelog/2026-02-04-github-copilot-in-visual-studio-code-v1-109-january-release/)[^1], [VS update](https://github.blog/changelog/2026-02-04-github-copilot-in-visual-studio-january-update/)[^2]). On the CLI, v0.0.402 ships ACP server agent/plan modes, plugin lifecycle fixes, and MCP server cleanup, alongside a community request for a post‑update "What’s New" summary; GitHub’s tutorial shows how to add custom instructions and a copilot‑setup‑steps workflow so agents can safely improve mature repos ([release](https://github.com/github/copilot-cli/releases/tag/v0.0.402)[^3], [issue](https://github.com/github/copilot-cli/issues/1277)[^4], [tutorial](https://docs.github.com/en/copilot/tutorials/coding-agent/improve-a-project)[^5]). [^1]: Adds: VS Code changelog with multi‑agent management, Claude agent preview, MCP integrations, memory/indexing, and terminal sandboxing. [^2]: Adds: Visual Studio update detailing colorized completions and partial acceptance UX. [^3]: Adds: Copilot CLI v0.0.402 notes on ACP modes, plugin lifecycle, and MCP server shutdown. [^4]: Adds: Community feature request to show a concise post‑update "What’s New" in Copilot CLI. [^5]: Adds: Official guide to using Copilot coding agent with custom instructions and setup steps in repos.

calendar_today 2026-02-04
github github-copilot visual-studio visual-studio-code anthropic

Copilot SDK + MCP: From visual bugs to auto-PRs, now easier to wire into your stack

GitHub is turning Copilot into an embeddable agent host: the new Copilot SDK lets you run a headless, CLI-backed agent with MCP registry support inside your own apps and services, enabling remote, licensed users to leverage the same orchestration loop programmatically ([InfoWorld](https://www.infoworld.com/article/4125776/building-ai-agents-with-the-github-copilot-sdk.html)[^1], [Microsoft Dev Community](https://techcommunity.microsoft.com/blog/azuredevcommunityblog/the-perfect-fusion-of-github-copilot-sdk-and-cloud-native/4491199)[^2]). On the workflow side, Copilot CLI v0.0.401 improves MCP tool output handling (structuredContent), adds auto-loading skills, and other stability upgrades, while GitHub’s best practices detail instruction files, tool allowlists, and model selection for safer automation ([GitHub release](https://github.com/github/copilot-cli/releases/tag/v0.0.401)[^3], [Copilot CLI best practices](https://docs.github.com/en/copilot/how-tos/copilot-cli/cli-best-practices)[^4]). Practically, teams can feed Copilot richer context—images in issues/Chat and MCP-bridged telemetry from bug capture tools—to turn visual reports into targeted fixes and PRs ([Provide visual inputs](https://docs.github.com/en/enterprise-cloud@latest/copilot/how-tos/use-copilot-agents/coding-agent/provide-visual-inputs)[^5], [Reddit example](https://www.reddit.com/r/GithubCopilot/comments/1qu4lck/using_mcp_to_turn_visual_bug_reports_into_instant/)[^6]). [^1]: Adds: Explains how the Copilot SDK embeds a headless CLI-backed agent with MCP registry and remote usage details. [^2]: Adds: Positions the SDK in multi-agent/cloud-native patterns and notes technical preview posture and capabilities. [^3]: Adds: Lists v0.0.401 improvements, including MCP structuredContent rendering and auto-loading skills. [^4]: Adds: Prescribes instruction files, allow/deny tool policies, and operational tips for CLI usage. [^5]: Adds: Shows how to attach images to issues/Chat so Copilot can create PRs from visual specs. [^6]: Adds: Real-world MCP bridge pattern that pulls bug data (DOM, console, network) into Copilot to propose fixes.

calendar_today 2026-02-03
github-copilot github-copilot-cli github-copilot-sdk model-context-protocol-mcp github

GitHub Copilot: GPT-5.1 Codex preview, Spaces sharing, and model retirements

GitHub Copilot added a public preview of GPT-5.1-Codex-Max across web, IDE, mobile, and CLI (Enterprise/Business must enable it), made Spaces shareable publicly or per-user with a code-viewer add-to-Space flow, and refined the VS model picker. Older OpenAI/Anthropic/Google models were retired with suggested replacements, agents gained mission control and skills with broader IDE coverage, and knowledge bases fully sunset in favor of Spaces.

calendar_today 2026-01-06
github-copilot agentic-ai context-grounding model-lifecycle jetbrains

Baytech review: Google Antigravity agentic IDE—greenfield boost, Microsoft friction

Baytech Consulting reports that Google released an AI-native IDE, Antigravity, in late 2025 that uses the Gemini 3 model to orchestrate agentic, multi-file development (a "mission controller" vs autocomplete). Their analysis says it accelerates prototyping and greenfield work but introduces a walled-garden feel and integration friction for teams anchored in VS Code and Azure DevOps. This is a single consultancy review; official details from Google are limited.

calendar_today 2026-01-02
google-antigravity gemini-3 agentic-development azure-devops visual-studio-code
Next