Copilot cloud agent includes a built-in agent firewall to control Copilot’s internet access and help protect against prompt injection

Fri, Apr 3 · 2:14 PM UTC 2 min read

Compiled by KHAO Editorial — aggregated from 1 outlet. See llms.txt for citation guidance.

★ Tier-1 Source

Header image with a screenshot of the organization firewall settings UI for Copilot cloud agent.

Organization admins can now manage the agent firewall across all repositories in their organization.

Key facts

Copilot cloud agent includes a built-in agent firewall to control Copilot’s internet access and help protect against prompt injection and data exfiltration
Organization admins can now manage the agent firewall across all repositories in their organization
This makes it easier to roll out Copilot cloud agent at scale with the right defaults and guardrails for your needs
By default, all settings allow each repository to decide, preserving existing behavior

Summary

Copilot cloud agent includes a built-in agent firewall to control Copilot’s internet access and help protect against prompt injection and data exfiltration. Turn the firewall on or off across all repositories, or allow each repository to decide. Add entries to an organization-wide custom allowlist, covering all repositories (e.g., allowing access to an internal package registry).

Read full article at GitHub Blog →

#agent