Use --prompt-file for Copilot execution and add Copilot driver fallback handling

[Copilot]

Large imported/inlined prompts were expanded into a single argv entry via --prompt "$(cat ...)", which can exceed Linux ARG_MAX and fail before the agent process starts. This updates Copilot command generation to keep prompt content on disk and pass only the file path.

• Command construction change (AWF + non-AWF)

  • Switched Copilot invocation from inline prompt expansion to file-based prompt input:
    • --prompt "$(cat /tmp/gh-aw/aw-prompts/prompt.txt)"
    • --prompt "$COPILOT_CLI_INSTRUCTION"
    • ➜ --prompt-file /tmp/gh-aw/aw-prompts/prompt.txt
  • Removed intermediate shell prompt variable assignment in the non-AWF script path.

• Copilot driver --prompt-file support

  • Added support in actions/setup/js/copilot_driver.cjs to resolve --prompt-file before spawning Copilot:
    • If file size is <= 100KB, read file contents and pass via -p (existing small-prompt behavior).
    • If file size is > 100KB, pass a compact -p instruction telling the agent to read and execute the prompt file from disk.
  • Added focused tests in actions/setup/js/copilot_driver.test.cjs for:
    • small prompt-file inlining,
    • large prompt-file fallback behavior,
    • missing/unreadable prompt-file handling.

• Regression coverage

  • Updated Copilot engine tests to assert --prompt-file usage and ensure prompt text is no longer loaded into a shell variable.
  • Refreshed affected Copilot WASM golden fixtures to reflect the new generated command form.

// before
copilotCommand = fmt.Sprintf(`%s %s --add-dir "${GITHUB_WORKSPACE}" --prompt "$(cat /tmp/gh-aw/aw-prompts/prompt.txt)"`, execPrefix, shellJoinArgs(copilotArgs))

// after
copilotCommand = fmt.Sprintf(`%s %s --add-dir "${GITHUB_WORKSPACE}" --prompt-file /tmp/gh-aw/aw-prompts/prompt.txt`, execPrefix, shellJoinArgs(copilotArgs))

---

Changeset

• Type: patch
• Description: Use --prompt-file for Copilot execution so large prompts do not exceed Linux ARG_MAX and fail before agent startup.

Warning

⚠️ Firewall blocked 2 domains

The following domains were blocked by the firewall during workflow execution:

• ab.chatgpt.com
• chatgpt.com

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "ab.chatgpt.com"
    - "chatgpt.com"

See Network Configuration for more information.

Generated by Changeset Generator for issue #26492 · ◷

---

---

✨ PR Review Safe Output Test - Run 24482902675

💥 [THE END] — Illustrated by Smoke Claude · ● 267.4K · ◷

[github-actions]

Hey @copilot 👋 — thanks for picking up this fix to pass prompts via file path instead of inlining them into argv! That's a meaningful improvement for the compiler and will help avoid issues with long or complex prompt content hitting argv limits.

A couple of things to address before this is ready for review:

• Add a prose description — the PR body is currently just a task checklist. It would help to include a short explanation of what the bug/limitation is, why file-based passing is the right fix, and any relevant notes (e.g. the temp file path convention, cleanup behaviour, etc.).
• Add tests — once the implementation lands, the checklist already calls for focused tests on copilot execution step generation. Make sure those assert file-based prompt usage and cover edge cases (e.g. prompt file creation, cleanup on error, correct flag being passed).
• Run make agent-finish — as required by the contribution process, run this before marking the PR ready for review and report the final status.

If you'd like a hand, you can assign this prompt to your coding agent:

Continue implementing the fix described in this PR: replace the Copilot AWF command generation to pass the prompt via a file (`--prompt-file /tmp/gh-aw/aw-prompts/prompt.txt`) instead of inlining it into argv.

Steps:
1. Locate the compiler code that constructs the Copilot command and update it to write the prompt to a temp file and pass `--prompt-file <path>` as the argument instead.
2. Update or add focused unit tests that assert:
   - The generated command uses `--prompt-file` (not an inlined prompt string).
   - The file path follows the established convention (`/tmp/gh-aw/aw-prompts/prompt.txt` or similar).
   - Any error/cleanup behaviour is handled correctly.
3. Update the PR body with a concise prose description of the problem and fix.
4. Run `make agent-finish` and report the result.

Generated by Contribution Check · ● 1.2M · ◷

[pelikhan]

Hallucination?

[Copilot]

Pull request overview

Updates Copilot CLI command generation to avoid Linux ARG_MAX failures by passing the prompt via a file path (--prompt-file) instead of inlining prompt content into a single argv entry.

Changes:

• Switch Copilot invocation (AWF + non-AWF paths) from --prompt "$(cat ...)" / --prompt "$VAR" to --prompt-file /tmp/gh-aw/aw-prompts/prompt.txt.
• Remove the non-AWF shell variable assignment that loaded the prompt content into COPILOT_CLI_INSTRUCTION.
• Update Copilot engine tests and WASM golden fixtures to assert the new generated command form.

Show a summary per file

File	Description
pkg/workflow/copilot_engine_execution.go	Generate Copilot command using --prompt-file and remove inline prompt expansion/variable assignment.
pkg/workflow/copilot_engine_test.go	Update assertions to require --prompt-file usage and absence of COPILOT_CLI_INSTRUCTION=.
pkg/workflow/testdata/TestWasmGolden_CompileFixtures/basic-copilot.golden	Refresh golden output to reflect --prompt-file in generated workflow.
pkg/workflow/testdata/TestWasmGolden_CompileFixtures/with-imports.golden	Refresh golden output to reflect --prompt-file in generated workflow.

Copilot's findings

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

• Files reviewed: 4/4 changed files
• Comments generated: 2

[Copilot]

--prompt-file is emitted unconditionally, but this engine supports pinning Copilot CLI versions via engine.version. If an older pinned version doesn’t recognize --prompt-file, the workflow will fail at startup. Consider adding a version gate (similar to copilotSupportsNoAskUser) with a minimum version constant, and fall back to the previous --prompt behavior when --prompt-file isn’t supported.

[Copilot]

The prompt path is now hard-coded in the command even though GH_AW_PROMPT is set in the step env later in this function. To avoid duplicating the prompt path in multiple places (and simplify future changes), consider using the env var in the command (and quoting it) rather than repeating /tmp/gh-aw/aw-prompts/prompt.txt.

See below for a potential fix:

		// Sandbox mode: add workspace dir and use the configured prompt file path from the step env
		copilotCommand = fmt.Sprintf(`%s %s --add-dir "${GITHUB_WORKSPACE}" --prompt-file "${GH_AW_PROMPT}"`, execPrefix, shellJoinArgs(copilotArgs))
	} else {
		// Non-sandbox mode: use the configured prompt file path from the step env
		copilotCommand = fmt.Sprintf(`%s %s --prompt-file "${GH_AW_PROMPT}"`, execPrefix, shellJoinArgs(copilotArgs))

[github-actions]

Good suggestion! Using \$\{GH_AW_PROMPT} from the step env would centralize the prompt path and reduce duplication. The current hard-coded path works for the standard setup, but your approach is more maintainable and resilient to future path changes.

📰 BREAKING: Report filed by Smoke Copilot · ● 1M

[github-actions]

🧪 Test Quality Sentinel Report

Test Quality Score: 90/100

✅ Excellent test quality

Metric	Value
New/modified tests analyzed	2
✅ Design tests (behavioral contracts)	2 (100%)
⚠️ Implementation tests (low value)	0 (0%)
Tests with error/edge cases	2 (100%)
Duplicate test clusters	0
Test inflation detected	⚠️ Borderline (2.17:1 — see note)
🚨 Coding-guideline violations	None

---

Test Classification Details

Test	File	Classification	Issues Detected
TestCopilotEngineExecutionSteps (2 assertions added)	pkg/workflow/copilot_engine_test.go:126	✅ Design	None
TestCopilotEnginePromptFilePath (renamed + rewritten)	pkg/workflow/copilot_engine_test.go:739	✅ Design	None

---

Test Analysis

✅ TestCopilotEngineExecutionSteps (additions at ~L126–133)

Two new assertions added to this existing test:

1. Positive check — verifies --prompt-file /tmp/gh-aw/aw-prompts/prompt.txt appears in the compiled step content. Directly enforces the behavioral contract that the new flag is present.
2. Negative check — verifies COPILOT_CLI_INSTRUCTION= does not appear. Guards against regression to the old shell-variable approach that triggered ARG_MAX failures.

Design invariant enforced: The compiled execution step must deliver the prompt via --prompt-file, not via a shell variable. High value if deleted — both regressions would go undetected.

---

✅ TestCopilotEnginePromptFilePath (renamed from TestCopilotEngineInstructionPromptNotEscaped)

Fully rewritten to match the new behavioral contract:

1. Extracts the actual copilot CLI command from the compiled step.
2. Asserts --prompt-file /tmp/gh-aw/aw-prompts/prompt.txt is present.
3. Asserts --prompt (inline expansion) is absent.

Design invariant enforced: The Copilot CLI invocation uses file-based prompt delivery rather than inline argument expansion. The negative assertion on --prompt is especially valuable — it prevents accidentally reintroducing the large-argv bug while still appearing to test the right thing.

All assertion messages are descriptive and contextual ✅. No mock libraries ✅. Build tag //go:build !integration present ✅.

---

⚠️ Test Inflation — Borderline Note

Test file: 13 additions | Production file: 6 additions → ratio 2.17:1 (threshold: 2.0)

This technically crosses the threshold, but the excess is minimal and the additional test lines are genuinely valuable (replacing removed assertions with new behavioral ones). The 10-point deduction is applied per rubric, but no corrective action is needed.

---

Language Support

Tests analyzed:

• 🐹 Go (*_test.go): 2 tests — unit (//go:build !integration)
• 🟨 JavaScript (*.test.cjs, *.test.js): 0 tests

---

Verdict

✅ Check passed. 0% of new/modified tests are implementation tests (threshold: 30%). Both tests enforce clear behavioral contracts around the --prompt-file migration and include meaningful negative assertions that guard against regression.

---

📖 Understanding Test Classifications

Design Tests (High Value) verify what the system does:

• Assert on observable outputs, return values, or state changes
• Cover error paths and boundary conditions
• Would catch a behavioral regression if deleted
• Remain valid even after internal refactoring

Implementation Tests (Low Value) verify how the system does it:

• Assert on internal function calls (mocking internals)
• Only test the happy path with typical inputs
• Break during legitimate refactoring even when behavior is correct
• Give false assurance: they pass even when the system is wrong

Goal: Shift toward tests that describe the system's behavioral contract — the promises it makes to its users and collaborators.

References:

• §24479477122

🧪 Test quality analysis by Test Quality Sentinel · ● 533K · ◷

[github-actions]

✅ Test Quality Sentinel: 90/100. Test quality is excellent — 0% of new/modified tests are implementation tests (threshold: 30%). Both changed tests enforce clear behavioral contracts around the --prompt-file migration.

[pelikhan]

@copilot add support for --prompt-file in the copilot driver.

• if the file is greater than 100kb, generate a smaller prompt that tells the agent to read the file and execute the prompt
• if the file is smaller, pass it using -p like it is now

[Copilot]

@copilot add support for --prompt-file in the copilot driver.

• if the file is greater than 100kb, generate a smaller prompt that tells the agent to read the file and execute the prompt...

Implemented in eea7123 (with follow-up polish in c934094). copilot_driver.cjs now resolves --prompt-file: files <=100KB are passed as -p <full prompt>, and files >100KB use a compact -p instruction telling the agent to read and execute the prompt from the file path. Added focused tests in actions/setup/js/copilot_driver.test.cjs for small/large/missing-file cases.

Hallucination?

Not a hallucination—this is now implemented in the driver. See eea7123 (and c934094): the driver supports --prompt-file with size-aware behavior and test coverage in actions/setup/js/copilot_driver.test.cjs.

[github-actions]

✅ All tools validated successfully! Agent Container Smoke Test confirms agent container is ready.

[github-actions]

📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing...

[github-actions]

🎬 THE END — Smoke Claude MISSION: ACCOMPLISHED! The hero saves the day! ✨

[github-actions]

✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟

[github-actions]

⚠️ Smoke Gemini failed. Gemini encountered unexpected challenges...

[github-actions]

Agent Container Tool Check

Tool	Status	Version
bash	✅	5.2.21
sh	✅	available
git	✅	2.53.0
jq	✅	1.7
yq	✅	4.52.5
curl	✅	8.5.0
gh	✅	2.89.0
node	✅	20.20.2
python3	✅	3.12.3
go	✅	1.24.13
java	✅	21.0.10 (Temurin)
dotnet	✅	10.0.201

Result: 12/12 tools available ✅

Overall Status: PASS

🔧 Tool validation by Agent Container Smoke Test · ● 159.8K · ◷

[github-actions]

Smoke test 24482902655 results:

• PRs: #26506 Scope markdown 4-backtick fence rule to true nested-fence cases; #26500 [log] log: add debug logging to 5 pkg/ files
• GitHub MCP ✅
• Serena MCP ✅
• Playwright ✅
• Web-fetch ❌ (tool unavailable)
• File+bash+build ✅
• Overall: FAIL

Warning

⚠️ Firewall blocked 2 domains

The following domains were blocked by the firewall during workflow execution:

• ab.chatgpt.com
• chatgpt.com

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "ab.chatgpt.com"
    - "chatgpt.com"

See Network Configuration for more information.

🔮 The oracle has spoken through Smoke Codex · ◷

[github-actions]

🤖 Smoke Test Results — Run §24482902625

Test	Status
GitHub MCP	✅
MCP Scripts GH CLI	✅
Serena MCP	❌
Playwright	✅
Web Fetch	✅
File Writing	✅
Bash Tool	✅
Discussion Interaction	✅
Build gh-aw	✅
Artifact Upload	✅
Discussion Creation	✅
Workflow Dispatch	✅
PR Review	✅

Overall: ⚠️ PARTIAL PASS (12/13) — Serena MCP tools not available.

PR Author: @Copilot | Assignees: @lpcox, @Copilot

📰 BREAKING: Report filed by Smoke Copilot · ● 1M · ◷

[github-actions]

This PR makes a solid improvement by switching from inline prompt expansion to file-based prompt passing, avoiding ARG_MAX limits. The copilot_driver.cjs changes handle the --prompt-file resolution cleanly with size-based fallback. Two minor observations: (1) consider logging inlined prompt size for observability, and (2) the buildPromptFileFallbackInstruction should document the assumption that prompt file paths are space-free. Tests and golden fixtures are well-updated.

📰 BREAKING: Report filed by Smoke Copilot · ● 1M

[github-actions]

The resolvePromptFileArgs function reads the entire file synchronously before spawning the process. For the 100KB fallback case this is avoided, but for files slightly under the threshold the full content is still loaded into memory and passed as a CLI argument. Consider logging the inlined prompt size for observability.

[github-actions]

The buildPromptFileFallbackInstruction returns a bare instruction string telling the agent to read from disk. However, if the prompt file path contains spaces or special characters, this instruction might not convey the path accurately. Consider quoting the path in the instruction string or documenting that prompt file paths must not contain spaces.

[github-actions]

📰 VERDICT: Smoke Copilot has concluded. All systems operational. This is a developing story. 🎤

[github-actions]

Commit pushed: d5e5877

Generated by Changeset Generator

[github-actions]

Smoke Test Run 24482902675 — Claude Engine

Test	Result
1. GitHub MCP	✅
2. MCP Scripts GH CLI	✅
3. Serena MCP	✅
4. Make Build	✅
5. Playwright	✅
6. Tavily Search	✅
7. File Write	✅
8. Bash Tool	✅
9. Discussion Comment	✅
10. Agentic Workflows MCP	❌
11. Slack Safe Output	✅
12. Code Scanning Alert	✅
13. Update PR	✅
14. PR Review Comments	✅
15. Submit PR Review	✅
16. Resolve Thread	✅
17. Add Reviewer	✅
18. Push to Branch	✅
19. Close PR	⚠️ skipped

Overall: PARTIAL — 1 failure (Agentic Workflows MCP tool unavailable), 1 skip (no test PR to close).

💥 [THE END] — Illustrated by Smoke Claude · ● 267.4K · ◷

[github-actions]

💥 Automated smoke test review - all systems nominal! This review was generated as part of the Claude engine smoke test for run §24482902675. The --prompt-file approach is a solid fix for ARG_MAX limits.

💥 [THE END] — Illustrated by Smoke Claude · ● 267.4K

[github-actions]

🔍 Smoke Test Observation: The --prompt-file path is hard-coded to /tmp/gh-aw/aw-prompts/prompt.txt in both sandbox and non-sandbox modes. This looks consistent with the existing convention, but consider whether a constant or an env var reference (\$\{GH_AW_PROMPT}) would make future path changes easier to manage.

[github-actions]

🔍 Smoke Test Observation: The resolvePromptFileArgs function correctly handles the edge cases (missing path, oversized file, unreadable file). The PROMPT_FILE_INLINE_THRESHOLD_BYTES = 100 * 1024 threshold is well-chosen for avoiding ARG_MAX issues. Good defensive coding here!