agents
Verified Safeby j-shelfwood
Overview
Orchestrates autonomous GitHub Copilot CLI agents for coding tasks and integrates with Claude Code via the Model Context Protocol (MCP) server.
Installation
node ~/.local/share/copilot-agent/src/mcp-server/index.jsEnvironment Variables
- AGENT_BIN_PATH
- XDG_CONFIG_HOME
- XDG_DATA_HOME
- AGENT_HOME
- AGENT_METADATA_DIR
- AGENT_METADATA_ARCHIVE_DIR
- AGENT_BIN_DIR
- AGENT_SYSTEM_INSTRUCTIONS_PATH
- COPILOT_BIN
Security Notes
The server implements strict session name validation using regex to prevent shell injection attacks. External commands (`agent` CLI) are executed via `spawn` with argument arrays, mitigating shell interpretation of user input. A critical path traversal vulnerability in `agent-launch` was previously discovered and fixed, demonstrating a proactive approach to security. Additionally, Git operations like commit/push/merge are explicitly blocked for agents to ensure human oversight and prevent autonomous repository modification. While robust, any system executing external shell scripts carries inherent security considerations for the underlying scripts.
Similar Servers
claude-code-subagents-collection
The repository serves as a comprehensive marketplace and registry for Claude Code, offering a wide array of specialized AI agents, commands, hooks, and a catalog of external Model Context Protocol (MCP) servers to enhance development workflows.
claude-codex-settings
A comprehensive toolkit and configuration for developing Claude Code plugins, integrating various external services and APIs, and enhancing AI-assisted coding workflows.
tmux-mcp
Enables AI assistants (like Claude Desktop) to interact with, control, and observe tmux terminal sessions by providing tools for session management and command execution.
claude-code-buddy
An intelligent AI Agent orchestration system for Claude Code, focusing on smart task routing, prompt enhancement, project memory, workflow guidance, and planning, presented via a real-time terminal UI dashboard.