Skip to content

chore(deps): Bump @github/copilot from 1.0.39 to 1.0.48 in the npm_and_yarn group across 1 directory#150

Merged
simongdavies merged 1 commit into
mainfrom
dependabot/npm_and_yarn/npm_and_yarn-7682a531bb
May 15, 2026
Merged

chore(deps): Bump @github/copilot from 1.0.39 to 1.0.48 in the npm_and_yarn group across 1 directory#150
simongdavies merged 1 commit into
mainfrom
dependabot/npm_and_yarn/npm_and_yarn-7682a531bb

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 15, 2026

Bumps the npm_and_yarn group with 1 update in the / directory: @github/copilot.

Updates @github/copilot from 1.0.39 to 1.0.48

Release notes

Sourced from @​github/copilot's releases.

1.0.48

2026-05-14

  • Model picker displays actual token prices instead of dot indicators for token-based billing users
  • Instruction files with unquoted glob patterns in applyTo frontmatter (e.g. applyTo: */.ts) are now applied correctly
  • Input text with CJK characters or emoji renders without blank gaps between lines
  • /context shows correct token limits for all models instead of always showing 128k
  • Auto-disable the built-in github-mcp-server in Azure DevOps-only workspaces when running in prompt/headless mode, matching interactive mode behavior
  • Terminal cursor positions correctly on the input field instead of on decorative elements like the selected tab
  • ACP clients receive updated config options when the active model is changed
  • /ask dialog no longer prompts for follow-up replies it cannot receive
  • Skill content injected to the model no longer includes YAML frontmatter metadata

1.0.48-2

Fixed

  • Instruction files with unquoted glob patterns in applyTo frontmatter (e.g. applyTo: **/*.ts) are now applied correctly

1.0.48-1

Fixed

  • Input text with CJK characters or emoji renders without blank gaps between lines
  • /context shows correct token limits for all models instead of always showing 128k

1.0.48-0

Improved

  • /ask dialog no longer prompts for follow-up replies it cannot receive
  • Skill content injected to the model no longer includes YAML frontmatter metadata

Fixed

  • Auto-disable the built-in github-mcp-server in Azure DevOps-only workspaces when running in prompt/headless mode, matching interactive mode behavior
  • Terminal cursor positions correctly on the input field instead of on decorative elements like the selected tab
  • ACP clients receive updated config options when the active model is changed

1.0.47

2026-05-13

  • /fork accepts an optional name and forked sessions display their origin in the sessions dialog
  • Copilot Max subscribers see the correct models available to their subscription tier
  • Support j/k keys for up/down navigation in the /diff view
  • --resume supports Copilot cloud agent sessions where the agent hasn't pushed any changes to its branch

1.0.47-0

Added

  • Support j/k keys for up/down navigation in the /diff view

Improved

  • --resume supports Copilot cloud agent sessions where the agent hasn't pushed any changes to its branch

1.0.46

2026-05-12

... (truncated)

Changelog

Sourced from @​github/copilot's changelog.

1.0.48 - 2026-05-14

  • Model picker displays actual token prices instead of dot indicators for token-based billing users
  • Instruction files with unquoted glob patterns in applyTo frontmatter (e.g. applyTo: */.ts) are now applied correctly
  • Input text with CJK characters or emoji renders without blank gaps between lines
  • /context shows correct token limits for all models instead of always showing 128k
  • Auto-disable the built-in github-mcp-server in Azure DevOps-only workspaces when running in prompt/headless mode, matching interactive mode behavior
  • Terminal cursor positions correctly on the input field instead of on decorative elements like the selected tab
  • ACP clients receive updated config options when the active model is changed
  • /ask dialog no longer prompts for follow-up replies it cannot receive
  • Skill content injected to the model no longer includes YAML frontmatter metadata

1.0.47 - 2026-05-13

  • /fork accepts an optional name and forked sessions display their origin in the sessions dialog
  • Copilot Max subscribers see the correct models available to their subscription tier
  • Support j/k keys for up/down navigation in the /diff view
  • --resume supports Copilot cloud agent sessions where the agent hasn't pushed any changes to its branch

1.0.46 - 2026-05-12

  • Display a warning when the CLI version is deprecated and premium model access may be lost
  • PowerShell starts correctly when pwsh is installed as a .NET global tool shim
  • Long lines in diff view wrap at terminal width instead of being truncated
  • Read-only gh CLI commands (list, view, status, diff, etc.) are auto-approved without prompting for user confirmation
  • Sessions no longer crash mid-turn with ERR_HTTP2_INVALID_SESSION errors

1.0.45 - 2026-05-11

  • Add /autopilot slash command to toggle between interactive and autopilot modes
  • Fall back to Windows PowerShell (powershell.exe) when PowerShell 7+ (pwsh) is not available on Windows
  • OpenTelemetry output aligns with GenAI semantic conventions: MCP tool calls now use standard tool_call spans, and a new gen_ai.client.operation.duration metric tracks tool execution time
  • Sessions with extension permission prompts can be resumed without a "Session file is corrupted" error
  • agentStop hook now fires correctly when the agent stops via task_complete
  • CLI starts faster on terminals with limited OSC color query support, shaving up to ~1.5s off startup time.
  • Add /fork command to fork the current session into a new independent session

1.0.44 - 2026-05-08

  • Path completion in /add-dir no longer flickers or gets intercepted by @ and # pickers
  • Slash commands can now appear mid-input, and multiple skills can be invoked in a single message
  • userPromptSubmitted hooks can now handle requests directly, bypassing the LLM and returning a response without making a model call
  • Faster /user list and /user switch for multi-account users
  • Add optional prerelease argument to copilot update and /update to fetch the latest prerelease build
  • Shell commands via ! prefix work correctly with all shell configurations
  • Shell aliases and rc file settings now work in ! commands
  • Quota display correctly shows remaining usage for Free users instead of always showing 100% used
  • Tool permissions granted in autopilot mode are preserved after /clear
  • Effort level applies correctly when switching models via the /model picker
  • Pressing Ctrl+C while a permission prompt is pending no longer causes the CLI to hang

... (truncated)

Commits
  • 4328afb Update changelog.md for version 1.0.47
  • 5b5dd40 Update changelog.md for version 1.0.46
  • fd2900c Update changelog.md for version 1.0.45
  • 41b4018 Update changelog.md for version 1.0.44
  • bee20d0 Update changelog.md for version 1.0.43
  • 5ab6de6 Update changelog.md for version 1.0.42
  • ac346d1 Update changelog.md for version 1.0.41
  • cc85e32 Update changelog.md for version 1.0.40
  • cb0ddf8 Update changelog.md for version 1.0.39
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): Bump @github/copilot
fad628a 
Bumps the npm_and_yarn group with 1 update in the / directory: [@github/copilot](https://github.com/github/copilot-cli).


Updates `@github/copilot` from 1.0.39 to 1.0.48
- [Release notes](https://github.com/github/copilot-cli/releases)
- [Changelog](https://github.com/github/copilot-cli/blob/main/changelog.md)
- [Commits](github/copilot-cli@v1.0.39...v1.0.48)

---
updated-dependencies:
- dependency-name: "@github/copilot"
  dependency-version: 1.0.48
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label May 15, 2026
Copilot AI review requested due to automatic review settings May 15, 2026 18:26
@dependabot dependabot Bot added javascript Pull requests that update javascript code dependencies Pull requests that update a dependency file labels May 15, 2026
Copilot AI reviewed May 15, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

@simongdavies simongdavies merged commit b7f2c75 into main May 15, 2026
13 checks passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/npm_and_yarn-7682a531bb branch May 15, 2026 19:25
@simongdavies simongdavies mentioned this pull request May 15, 2026
Merged
simongdavies added a commit that referenced this pull request May 15, 2026
@simongdavies
docs: changelog for v0.6.1 (#152)
d841dbd 
Patch release covering three PRs merged after v0.6.0:

• #149 — README quick-install section near the top for faster onboarding
• #150 — @github/copilot dependency bump 1.0.39 → 1.0.48
• #151 — agent REPL UX overhaul (skill hot-reload, /skills <name> rewrite,
  marked-terminal v7 tight-list patch, MCP prerequisite surfacing, profile
  preview as markdown table, sandbox verbose-trace debug-log routing,
  built-in skill shadow protection, plus 2 review-round fixes for /skills
  reload rewrite + path traversal in skill detection)

Signed-off-by: Simon Davies <simongdavies@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@simongdavies