Skip to content

Add GitHub Copilot Coding Agent setup configuration to resolve firewall blocking issues #160

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 2 commits into
base: main
Choose a base branch
from
Draft

Add GitHub Copilot Coding Agent setup configuration to resolve firewall blocking issues #160

wants to merge 2 commits into from

Conversation

Copilot
Copy link
Contributor

@Copilot Copilot AI commented Sep 9, 2025
edited
Loading

This PR resolves firewall blocking issues that prevent GitHub Copilot Coding Agent from accessing external URLs like esm.ubuntu.com during CI operations.

Problem

The Copilot agent was encountering firewall blocks when trying to access:

  • Ubuntu package repositories (esm.ubuntu.com)
  • npm registry and Node.js dependencies
  • Homebrew formulae and system packages
  • Docker registries and other development dependencies

This resulted in setup failures and warnings about blocked network access.

Solution

Added comprehensive configuration to pre-install dependencies and document required allowlist entries:

1. Setup Steps Configuration (.github/copilot/setup-steps.yml)

  • Pre-installs system packages before firewall restrictions are applied
  • Configures Homebrew and installs mkcert for SSL certificate generation
  • Sets up Node.js environment and installs npm dependencies
  • Creates SSL certificates and RabbitMQ configuration files
  • Starts Docker Compose services
  • Installs Playwright browsers for testing

2. Comprehensive Allowlist Documentation (.github/copilot/ALLOWLIST.md)

Documents all URLs/hosts that should be added to the Copilot agent's firewall allowlist:

  • Ubuntu repositories (esm.ubuntu.com, security.ubuntu.com, archive.ubuntu.com)
  • Node.js ecosystem (registry.npmjs.org, nodejs.org)
  • GitHub dependencies (github.com, raw.githubusercontent.com, api.github.com)
  • Homebrew (formulae.brew.sh, ghcr.io)
  • Docker registries (docker.io, registry-1.docker.io)
  • Certificate authorities and CDNs

3. Documentation Update

Added development section to README explaining the Copilot agent configuration and its purpose.

Benefits

  • Prevents firewall blocking errors during agent execution
  • Pre-configures environment before restrictions are applied
  • Provides clear guidance for repository admins on allowlist configuration
  • Maintains all existing functionality while enabling full Copilot agent support

All changes are minimal and focused specifically on resolving the firewall access issues without affecting the existing codebase or CI workflows.

Fixes #159.

💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.

@Copilot @baelter
Add GitHub Copilot Coding Agent setup configuration and allowlist
5169d3b 
Co-authored-by: baelter <1399369+baelter@users.noreply.github.com>
@Copilot Copilot AI changed the title [WIP] Fix copilot coding agent warnings Add GitHub Copilot Coding Agent setup configuration to resolve firewall blocking issues Sep 9, 2025
@Copilot Copilot AI requested a review from baelter September 9, 2025 12:02
Copilot finished work on behalf of baelter September 9, 2025 12:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@baelter baelter Awaiting requested review from baelter baelter is a code owner

@carlhoerberg carlhoerberg Awaiting requested review from carlhoerberg carlhoerberg will be requested when the pull request is marked ready for review carlhoerberg is a code owner

@dentarg dentarg Awaiting requested review from dentarg dentarg will be requested when the pull request is marked ready for review dentarg is a code owner

@antondalgren antondalgren Awaiting requested review from antondalgren antondalgren will be requested when the pull request is marked ready for review antondalgren is a code owner

@ThomasSarlin ThomasSarlin Awaiting requested review from ThomasSarlin ThomasSarlin will be requested when the pull request is marked ready for review ThomasSarlin is a code owner

Assignees

@baelter baelter

Copilot code review Copilot

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Fix copilot coding agent warnings
2 participants
@Copilot @baelter