copilot-coding-agent

The provided repository documentation describes a legitimate automation to assign GitHub Copilot to issues and let the Copilot Coding Agent open Draft PRs. There is no direct evidence in the supplied text of malicious code or exfiltration. However, security risks are meaningful because the setup requires a repo-scoped PAT, and the critical executable artifacts (setup and assign scripts, workflow YAML) are not included for review — these could contain remote-fetch behavior or unsafe handling of secrets. Recommendations: (1) review the exact contents of scripts/copilot-setup-workflow.sh, scripts/copilot-assign-issue.sh, and deployed workflow YAML before running setup; (2) prefer least-privilege tokens or OIDC where possible and avoid logging secrets; (3) enforce branch protections, require human review before merging Copilot PRs, and audit any third-party integrations for data exposure.