From cdf7493f74b09891a1d956cbd839ea096feb1af7 Mon Sep 17 00:00:00 2001 From: Mara Nikola Kiefer Date: Fri, 27 Feb 2026 13:48:57 +0100 Subject: [PATCH 1/2] docs: update fine-grained PAT repository access instructions for Copilot authentication --- docs/src/content/docs/reference/auth.mdx | 9 +-------- 1 file changed, 1 insertion(+), 8 deletions(-) diff --git a/docs/src/content/docs/reference/auth.mdx b/docs/src/content/docs/reference/auth.mdx index f39373dadf..2725f7d1c8 100644 --- a/docs/src/content/docs/reference/auth.mdx +++ b/docs/src/content/docs/reference/auth.mdx @@ -81,7 +81,7 @@ If using Copilot as your AI engine, you need a GitHub Actions Secret set to a Gi [**Create a fine-grained PAT**](https://github.com/settings/personal-access-tokens/new?name=COPILOT_GITHUB_TOKEN&description=GitHub+Agentic+Workflows+-+Copilot+engine+authentication&user_copilot_requests=read) (this link pre-fills the token name, description, and Copilot Requests permission). Verify the following settings before generating: 1. **Resource owner** is your **user account**, not an organization. -2. **Repository access** is set to **Public repositories**, even if you will be using it with private repositories. This is required for the "Copilot Requests" permission to be available. +2. **Repository access** is set to the repositories that will use the workflow (recommended: select specific repos for least privilege; public repos is also valid if you want broader scope). 3. Under **Permissions → Account permissions**, **Copilot Requests** is set to **Read**. 4. Click **Generate token** and copy the token value. 5. Add the PAT to your GitHub Actions repository secrets as `COPILOT_GITHUB_TOKEN`, either by CLI or GitHub UI. @@ -90,13 +90,6 @@ If using Copilot as your AI engine, you need a GitHub Actions Secret set to a Gi gh aw secrets set COPILOT_GITHUB_TOKEN --value "" ``` -