build(deps): bump @github/copilot and @github/copilot-sdk in /services/agent

[dependabot]

Bumps @github/copilot to 1.0.10 and updates ancestor dependency @github/copilot-sdk. These dependencies need to be updated together.

Updates @github/copilot from 0.0.403 to 1.0.10

Release notes

Sourced from @​github/copilot's releases.

1.0.10

2026-03-20

• Reduced memory usage when viewing large files in their entirety
• /login device flow works correctly in Codespaces and remote terminal environments
• Working directory is correctly detected when using --server mode with remote sessions
• Arrow keys work correctly in terminals using application keypad mode
• Repo hooks (.github/hooks/) now fire correctly when using prompt mode (-p flag)
• /copy writes formatted HTML to clipboard on Windows for pasting into Word, Outlook, and Teams
• SDK clients can register custom slash commands when starting or joining a session
• SDK clients can show elicitation dialogs to the user via session.ui.elicitation
• Add experimental support for multiple concurrent sessions
• Add --effort as a shorthand alias for --reasoning-effort
• Add /undo command to undo the last turn and revert file changes
• Markdown bullet lists render correctly in alt-screen mode when content contains hard line breaks
• Elicitation form shows Shift+Tab hint for navigating between fields in reverse
• Remote session URL displays as a compact clickable 'Open in browser' link instead of a duplicated raw URL
• Session history is no longer lost when exiting via /quit, Ctrl+C, or restart
• Hook matcher filters defined in nested hook structures are now correctly applied to inner hook items
• Plugins using .claude-plugin/ or .plugin/ manifest directories now load their MCP and LSP servers correctly
• /terminal-setup no longer shows a misleading error for WSL users
• Model picker reorganizes models into Available, Blocked/Disabled, and Upgrade tabs based on user plan and policy
• Workspace MCP servers from .mcp.json, .vscode/mcp.json, and devcontainer.json are now loaded only after folder trust is confirmed
• Config settings renamed to camelCase: includeCoAuthoredBy, effortLevel, autoUpdatesChannel, statusLine (old names still work)
• When copying assistant responses, the leading 2-space UI indent is stripped from selections where all selected lines share that indent
• Plugins loaded via --plugin-dir now appear in /plugin list under a separate 'External Plugins' section

1.0.10-1

Added

• /copy writes formatted HTML to clipboard on Windows for pasting into Word, Outlook, and Teams

1.0.10-0

Added

• SDK clients can register custom slash commands when starting or joining a session
• SDK clients can show elicitation dialogs to the user via session.ui.elicitation
• Add experimental support for multiple concurrent sessions
• Add --effort as a shorthand alias for --reasoning-effort
• Add /undo command to undo the last turn and revert file changes

Improved

• Model picker reorganizes models into Available, Blocked/Disabled, and Upgrade tabs based on user plan and policy
• Workspace MCP servers from .mcp.json, .vscode/mcp.json, and devcontainer.json are now loaded only after folder trust is confirmed
• Config settings renamed to camelCase: includeCoAuthoredBy, effortLevel, autoUpdatesChannel, statusLine (old names still work)
• When copying assistant responses, the leading 2-space UI indent is stripped from selections where all selected lines share that indent
• Plugins loaded via --plugin-dir now appear in /plugin list under a separate 'External Plugins' section

Fixed

• Markdown bullet lists render correctly in alt-screen mode when content contains hard line breaks
• Elicitation form shows Shift+Tab hint for navigating between fields in reverse
• Remote session URL displays as a compact clickable 'Open in browser' link instead of a duplicated raw URL

... (truncated)

Changelog

Sourced from @​github/copilot's changelog.

1.0.10 - 2026-03-20

• Reduced memory usage when viewing large files in their entirety
• /login device flow works correctly in Codespaces and remote terminal environments
• Working directory is correctly detected when using --server mode with remote sessions
• Arrow keys work correctly in terminals using application keypad mode
• Repo hooks (.github/hooks/) now fire correctly when using prompt mode (-p flag)
• /copy writes formatted HTML to clipboard on Windows for pasting into Word, Outlook, and Teams
• SDK clients can register custom slash commands when starting or joining a session
• SDK clients can show elicitation dialogs to the user via session.ui.elicitation
• Add experimental support for multiple concurrent sessions
• Add --effort as a shorthand alias for --reasoning-effort
• Add /undo command to undo the last turn and revert file changes
• Markdown bullet lists render correctly in alt-screen mode when content contains hard line breaks
• Elicitation form shows Shift+Tab hint for navigating between fields in reverse
• Remote session URL displays as a compact clickable 'Open in browser' link instead of a duplicated raw URL
• Session history is no longer lost when exiting via /quit, Ctrl+C, or restart
• Hook matcher filters defined in nested hook structures are now correctly applied to inner hook items
• Plugins using .claude-plugin/ or .plugin/ manifest directories now load their MCP and LSP servers correctly
• /terminal-setup no longer shows a misleading error for WSL users
• Model picker reorganizes models into Available, Blocked/Disabled, and Upgrade tabs based on user plan and policy
• Workspace MCP servers from .mcp.json, .vscode/mcp.json, and devcontainer.json are now loaded only after folder trust is confirmed
• Config settings renamed to camelCase: includeCoAuthoredBy, effortLevel, autoUpdatesChannel, statusLine (old names still work)
• When copying assistant responses, the leading 2-space UI indent is stripped from selections where all selected lines share that indent
• Plugins loaded via --plugin-dir now appear in /plugin list under a separate 'External Plugins' section

1.0.9 - 2026-03-19

• Spurious I/O error messages (ENOTCONN, EIO) no longer appear in the timeline during SSH disconnects or terminal closes
• Add include_gitignored config option to include gitignored files in @ file search
• Copying text on WSL correctly preserves CJK and other non-ASCII characters
• Marketplace and plugin installs from shortened URLs (e.g., aka.ms links) now work correctly

1.0.8 - 2026-03-18

• Agent mode labels and borders display correct colors on non-truecolor terminals (tmux, SSH, screen)
• Alternate screen buffer is now enabled by default for a cleaner terminal experience
• Exit plan mode tool remains available when an extension subprocess joins an active session
• Repo-level hooks are loaded only after folder trust is confirmed, not before the trust dialog is shown
• Idle subagents no longer clutter the /tasks view — they are hidden after 2 minutes of inactivity
• Add extension mode setting to control extensibility
• MCP servers can be validated against configured registries using the experimental MCP_ALLOWLIST feature flag
• Allow --resume to accept a task ID in addition to a session ID
• Support defining hooks in settings.json, settings.local.json, and config.json
• Scroll works correctly in macOS Terminal.app and other terminals that don't support SGR mouse encoding
• Mouse scroll works correctly in tmux after returning from an external editor
• Ctrl-C in prompt mode now exits immediately instead of waiting for the request to complete
• Spinner animation no longer delays visible output from appearing in the timeline
• Dialog titles display consistently inside all dialog boxes

... (truncated)

Commits

• 0f8a102 Update changelog.md for version 1.0.9
• 71cd475 Update changelog.md for version 1.0.8
• f42c2cc Update changelog.md for version 1.0.7
• 941002e Update changelog.md for version 1.0.6
• f019a8c Update changelog.md for version 1.0.5
• 894b48f Merge pull request #2004 from github/tpope/fix-install-shell-profile
• 10fc284 Incorporate ZDOTDIR into .zprofile path
• 33b5f9c Alter PATH for login shells, not interactive shells
• 9a0d581 Update changelog.md for version 1.0.4
• d3c1269 Merge pull request #1960 from github/install-auth
• Additional commits viewable in compare view

Updates @github/copilot-sdk from 0.1.23 to 0.1.32

Release notes

Sourced from @​github/copilot-sdk's releases.

v0.1.32

Feature: backward compatibility with v2 CLI servers

SDK applications written against the v3 API now also work when connected to a v2 CLI server, with no code changes required.

Generated by Release Changelog Generator

Generated by Release Changelog Generator

v0.1.31

Feature: strongly-typed PermissionRequestResultKind for .NET and Go

Rather than comparing result.Kind against undiscoverable magic strings like "approved" or "denied-interactively-by-user", .NET and Go now provide typed constants. Node and Python already had typed unions for this; this brings full parity. (#631)

session.OnPermissionCompleted += (e) => {
    if (e.Result.Kind == PermissionRequestResultKind.Approved) { /* ... */ }
    if (e.Result.Kind == PermissionRequestResultKind.DeniedInteractivelyByUser) { /* ... */ }
};

// Go: PermissionKindApproved, PermissionKindDeniedByRules,
//     PermissionKindDeniedCouldNotRequestFromUser, PermissionKindDeniedInteractivelyByUser
if result.Kind == copilot.PermissionKindApproved { /* ... */ }

Other changes

• feature: [Python] [Go] add get_last_session_id() / GetLastSessionID() for SDK-wide parity (was already available in Node and .NET) (#671)
• improvement: [Python] add timeout parameter to generated RPC methods, allowing callers to override the default 30s timeout for long-running operations (#681)
• bugfix: [Go] PermissionRequest fields are now properly typed (ToolName, Diff, Path, etc.) instead of a generic Extra map[string]any catch-all (#685)

Generated by Release Changelog Generator

v0.1.30

Feature: support overriding built-in tools

Applications can now override built-in tools such as grep, edit_file, or read_file. To do this, register a custom tool with the same name and set the override flag. Without the flag, the runtime will return an error if the name clashes with a built-in. (#636)

import { defineTool } from "`@github/copilot-sdk`";
const session = await client.createSession({
tools: [defineTool("grep", {
overridesBuiltInTool: true,
</tr></table>

... (truncated)

Changelog

Sourced from @​github/copilot-sdk's changelog.

v0.1.32 (2026-03-07)

Feature: backward compatibility with v2 CLI servers

SDK applications written against the v3 API now also work when connected to a v2 CLI server, with no code changes required. The SDK detects the server's protocol version and automatically adapts v2 tool.call and permission.request messages into the same user-facing handlers used by v3. (#706)

const session = await client.createSession({
  tools: [myTool],           // unchanged — works with v2 and v3 servers
  onPermissionRequest: approveAll,
});

var session = await client.CreateSessionAsync(new SessionConfig {
    Tools = [myTool],          // unchanged — works with v2 and v3 servers
    OnPermissionRequest = approveAll,
});

v0.1.31 (2026-03-07)

Feature: multi-client tool and permission broadcasts (protocol v3)

The SDK now uses protocol version 3, where the runtime broadcasts external_tool.requested and permission.requested as session events to all connected clients. This enables multi-client architectures where different clients contribute different tools, or where multiple clients observe the same permission prompts — if one client approves, all clients see the result. Your existing tool and permission handler code is unchanged. (#686)

// Two clients each register different tools; the agent can use both
const session1 = await client1.createSession({
  tools: [defineTool("search", { handler: doSearch })],
  onPermissionRequest: approveAll,
});
const session2 = await client2.resumeSession(session1.id, {
  tools: [defineTool("analyze", { handler: doAnalyze })],
  onPermissionRequest: approveAll,
});

var session1 = await client1.CreateSessionAsync(new SessionConfig {
    Tools = [AIFunctionFactory.Create(DoSearch, "search")],
    OnPermissionRequest = PermissionHandlers.ApproveAll,
});
var session2 = await client2.ResumeSessionAsync(session1.Id, new ResumeSessionConfig {
    Tools = [AIFunctionFactory.Create(DoAnalyze, "analyze")],
    OnPermissionRequest = PermissionHandlers.ApproveAll,
});

Feature: strongly-typed PermissionRequestResultKind for .NET and Go

... (truncated)

Commits

• 396e8b3 Add v2 protocol backward compatibility adapters (#706)
• 1653812 Handle tool and permission broadcasts via event model (protocol v3) (#686)
• 4e1499d docs: clarify session destroy vs delete semantics (#599)
• 4246289 Go: remove hand-written PermissionRequest that conflicts with generated type ...
• 5b4a6ec Update @​github/copilot to 0.0.421 (#684)
• 2951807 Improve .NET SDK build infrastructure and documentation (#643)
• 207b85b fix(python): add timeout parameter to generated RPC methods (#681)
• 87a54de chore: rename runtime-fix-needed label to runtime
• b49e5d8 fix: remove add-comment from runtime triage to prevent code leaks
• c13dbba fix: trigger runtime triage workflow on label instead of issue open
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.