Skip to content

Document Copilot CLI permissions-config.json schema and persisted approvals#44916

Merged
hubwriter merged 6 commits into
github:mainfrom
danmoseley:copilot-cli-permissions-config-docs
Jun 26, 2026
Merged

Document Copilot CLI permissions-config.json schema and persisted approvals#44916
hubwriter merged 6 commits into
github:mainfrom
danmoseley:copilot-cli-permissions-config-docs

Conversation

@danmoseley

@danmoseley danmoseley commented Jun 25, 2026

Copy link
Copy Markdown
Contributor

Note

This pull request was created with the help of GitHub Copilot, and parts of the documentation were AI-generated. All schema details were verified against the Copilot CLI source.

What this changes

Expands the documentation for the Copilot CLI permissions-config.json file, which was previously documented only at a surface level.

content/copilot/reference/copilot-cli-reference/cli-config-dir-reference.md

  • Documents the file-resolution order (--config-dirCOPILOT_HOME~/.copilot/permissions-config.json) and the legacy extensionless file.
  • Documents the locations keying rules (Git root; linked worktrees resolve to the main repo root; submodules use their own directory; non-Git uses the cwd).
  • Adds a full schema table covering locations, tool_approvals, and allowed_directories, and every approval kind (commands, read, write, memory, mcp, mcp-sampling, custom-tool, extension-management, extension-permission-access) with their per-kind fields (commandIdentifiers, serverName, toolName, operation, extensionName).
  • Adds copy-pasteable example configurations and an explicit list of what the file does not support (deny/ask rules, default modes, URL rules, tool filtering, repository-local policy), pointing to the relevant CLI options instead.

content/copilot/how-tos/copilot-cli/use-copilot-cli/allowing-tools.md

  • Adds a short "persisted permissions" note explaining that answering "yes, always" to a prompt saves the decision to ~/.copilot/permissions-config.json, with a cross-link to the reference section.

Why

Users have reported that permissions-config.json is hard to configure because the schema, fields, and file location were not documented in enough detail — particularly when migrating settings from other agent CLIs.

Verification

The documented schema, approval kinds, and per-kind fields were checked against the product source. Examples are valid JSON and consistent with the schema table. Locally ran npm ci and the docs content linter (lint-content) on the changed files; the repo's pre-commit content lint also passed.

danmoseley and others added 2 commits June 25, 2026 16:43
@danmoseley
Improve Copilot CLI permissions config docs
aec5663 
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@danmoseley
Clarify persisted Copilot CLI approvals
128719b 
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Copilot AI review requested due to automatic review settings June 25, 2026 22:43
@github-actions github-actions Bot added the triage Do not begin working on this issue until triaged by the team label Jun 25, 2026
@github-actions

github-actions Bot commented Jun 25, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

How to review these changes 👓

Thank you for your contribution. To review these changes, choose one of the following options:

A Hubber will need to deploy your changes internally to review.

Table of review links

Note: Please update the URL for your staging server or codespace.

The table shows the files in the content directory that were changed in this pull request. This helps you review your changes on a staging server. Changes to the data directory are not included in this table.

Source Review Production What Changed
copilot/how-tos/copilot-cli/use-copilot-cli/allowing-tools.md fpt
ghec
 fpt
ghec
copilot/reference/copilot-cli-reference/cli-config-dir-reference.md fpt
ghec
 fpt
ghec

Key: fpt: Free, Pro, Team; ghec: GitHub Enterprise Cloud; ghes: GitHub Enterprise Server

🤖 This comment is automatically generated.

Copilot AI reviewed Jun 25, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Expands the GitHub Copilot CLI documentation for permissions-config.json, covering where it’s stored, how location scoping works, and the approval schema so users can reliably migrate or author persisted tool/path approvals.

Changes:

  • Added detailed reference documentation for permissions-config.json (resolution order, location keying, schema, approval kinds, and examples).
  • Documented command identifier and directory matching behavior used by persisted approvals.
  • Added a “persisted permissions” explanation and cross-links from the tool-permissions how-to.
Show a summary per file
File Description
content/copilot/reference/copilot-cli-reference/cli-config-dir-reference.md Adds full reference coverage for permissions-config.json location resolution, schema, approval kinds, and examples.
content/copilot/how-tos/copilot-cli/use-copilot-cli/allowing-tools.md Explains persisted approvals and links to the detailed reference section.

Copilot's findings

  • Files reviewed: 2/2 changed files
  • Comments generated: 1

Comment thread content/copilot/how-tos/copilot-cli/use-copilot-cli/allowing-tools.md Outdated
danmoseley and others added 2 commits June 25, 2026 16:46
@danmoseley
Potential fix for pull request finding
00d0dd2 
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
@danmoseley
Note automatic removal of orphaned location entries
c05b0e9 
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@chaiphet6669-afk

chaiphet6669-afk commented Jun 26, 2026

Copy link
Copy Markdown

https://tree-sitter.github.io/tree-sitter/#third-party

I see you've shared the README.md file from your fork of the swift-tree-sitter repository. This is a Swift API wrapper for the tree-sitter incremental parsing system.

Key points about this project:

  • Two main components:

    • SwiftTreeSitter - A low-level wrapper closely matching the C runtime API
    • SwiftTreeSitterLayer - A higher-level abstraction supporting nested languages and async operations

  • Core features:

    • Close coverage of the C API with Swift/Foundation types
    • Standard query result mapping for syntax highlighting and injections
    • Query predicate/directive support
    • Nested language support
    • Swift concurrency support

  • Integration: It's available as an SPM package with examples for integrating both components

  • Language support: The README includes an extensive table of 50+ tree-sitter language parsers with SPM support

Is there something specific you'd like to do with this repository? I can help you with:

  • Creating issues or pull requests
  • Understanding the code structure
  • Making modifications to files
  • Setting up workflows or configurations
  • Or anything else related to your fork

What would you like to work on?

chaiphet6669-afk
chaiphet6669-afk reviewed Jun 26, 2026
View reviewed changes

@chaiphet6669-afk chaiphet6669-afk left a comment
edited
Loading

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • ``content/copilot/how-tos/copilot-cli/use-copilot-cli/allowing-tools.md
content/copilot/reference/copilot-cli-reference/cli-config-dir-reference.md
> ```````
26f0db85d799f5477fbe902bc8c1f2e706e314dehttps://tree-sitter.github.io/tree-sitter/#third-party

@chaiphet6669-afk chaiphet6669-afk mentioned this pull request Jun 26, 2026
Open
hubwriter
hubwriter reviewed Jun 26, 2026
View reviewed changes
Comment thread content/copilot/reference/copilot-cli-reference/cli-config-dir-reference.md Outdated
hubwriter
hubwriter approved these changes Jun 26, 2026
View reviewed changes

@hubwriter hubwriter left a comment
edited
Loading

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@danmoseley - This looks good. The docs file content/copilot/reference/copilot-cli-reference/cli-config-dir-reference.md is auto-updated by AI based on the docs in the dev repo so the lack of detail suggests this was missing from the internal docs. Thanks for adding.

I've made one correction, changing:

Saved URL rules are stored in config.json, not in permissions-config.json.

to:

Saved URL rules are stored in settings.json, not in permissions-config.json.

@hubwriter hubwriter enabled auto-merge June 26, 2026 10:58
@hubwriter hubwriter added this pull request to the merge queue Jun 26, 2026
Merged via the queue into github:main with commit 65ff838 Jun 26, 2026
40 checks passed
@github-actions

github-actions Bot commented Jun 26, 2026

Copy link
Copy Markdown
Contributor

Thanks very much for contributing! Your pull request has been merged 🎉 You should see your changes appear on the site in approximately 24 hours. If you're looking for your next contribution, check out our help wanted issues

@danmoseley danmoseley deleted the copilot-cli-permissions-config-docs branch June 26, 2026 15:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments
@hubwriter hubwriter hubwriter approved these changes
+1 more reviewer
@chaiphet6669-afk chaiphet6669-afk chaiphet6669-afk left review comments
Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

triage Do not begin working on this issue until triaged by the team

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@danmoseley @chaiphet6669-afk @hubwriter @janiceilene