| title | Automating tasks with Copilot CLI and GitHub Actions | ||
|---|---|---|---|
| shortTitle | Automate with Actions | ||
| intro | Integrate {% data variables.copilot.copilot_cli %} into your {% data variables.product.prodname_actions %} workflows. | ||
| product | {% data reusables.gated-features.copilot-cli %} | ||
| versions |
|
||
| contentType | how-tos | ||
| category |
|
||
| redirect_from |
|
||
| docsTeamMetrics |
|
You can run {% data variables.copilot.copilot_cli %} in a {% data variables.product.prodname_actions %} workflow to automate AI-powered tasks as part of your CI/CD process. For example, you can summarize recent repository activity, generate reports, or scaffold project content. {% data variables.copilot.copilot_cli %} runs on the Actions runner like any other CLI tool, so you can install it during a job and invoke it from workflow steps.
You can define a job in a {% data variables.product.prodname_actions %} workflow that: installs {% data variables.copilot.copilot_cli_short %} on the runner, authenticates it, runs it in programmatic mode, and then handles the results. Programmatic mode is designed for scripts and automation and lets you pass a prompt non-interactively.
Workflows can follow this pattern:
- Trigger: Start the workflow on a schedule, in response to repository events, or manually.
- Setup: Checkout code, set up environment.
- Install: Install {% data variables.copilot.copilot_cli %} on the runner.
- Authenticate: Ensure the CLI has the necessary permissions to access the repository and make changes.
- Run {% data variables.copilot.copilot_cli_short %}: Invoke {% data variables.copilot.copilot_cli_short %} with a prompt describing the task you want to automate.
The following workflow generates details of changes made today in the default branch of the repository and displays these details as the summary for the workflow run.
name: Daily summary
on:
workflow_dispatch:
# Run this workflow daily at 5:30pm UTC
schedule:
- cron: '30 17 * * *'
permissions:
contents: read
jobs:
daily-summary:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: {% data reusables.actions.action-checkout %}
with:
fetch-depth: 0
- name: Set up Node.js environment
uses: {% data reusables.actions.action-setup-node %}
- name: Install Copilot CLI
run: npm install -g @github/copilot
- name: Run Copilot CLI
env:
{% raw %}COPILOT_GITHUB_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }}{% endraw %}
run: |
copilot -p "Review the git log for this repository and write a bullet point summary of all code changes that were made today, with links to the relevant commit on GitHub. Above the bullet list give a description (max 100 words) summarizing the changes made. Write the details to summary.md" --allow-tool='shell(git:*)' --allow-tool=write --no-ask-user
cat summary.md >> "$GITHUB_STEP_SUMMARY"The following sections explain each part of this workflow.
In this example, the workflow runs on a daily schedule and can also be triggered manually.
The workflow_dispatch trigger lets you run the workflow manually from the Actions tab of your repository on {% data variables.product.github %}, which is useful when testing changes to your prompt or workflow configuration.
The schedule trigger runs the workflow automatically at a specified time using cron syntax.
on:
# Allows manual triggering of this workflow
workflow_dispatch:
# Run this workflow daily at 11:55pm UTC
schedule:
- cron: '55 23 * * *'Set up the job so {% data variables.copilot.copilot_cli_short %} can access your repository and run on the Actions runner. This allows {% data variables.copilot.copilot_cli_short %} to analyze the repository context, when generating the daily summary.
The permissions block defines the scope granted to the built-in GITHUB_TOKEN. Because this workflow reads repository data and prints a summary to the logs, it requires contents: read.
permissions:
contents: read
jobs:
daily-summary:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: {% data reusables.actions.action-checkout %}
with:
fetch-depth: 0Install {% data variables.copilot.copilot_cli_short %} on the runner so your workflow can invoke it as a command. You can install {% data variables.copilot.copilot_cli %} using any supported installation method. For a full list of installation options, see AUTOTITLE.
In this example, the workflow installs {% data variables.copilot.copilot_cli %} globally with npm.
- name: Set up Node.js environment
uses: {% data reusables.actions.action-setup-node %}
- name: Install Copilot CLI
run: npm install -g @github/copilotTo allow {% data variables.copilot.copilot_cli_short %} to run on an Actions runner, you need to authenticate a {% data variables.product.github %} user account with a valid {% data variables.product.prodname_copilot_short %} license.
Step 1: Create a {% data variables.product.pat_generic %} (PAT) with the "Copilot Requests" permission:
- Go to your personal settings for creating a {% data variables.product.pat_v2 %}: github.com/settings/personal-access-tokens/new.
- Create a new PAT with the "Copilot Requests" permission.
- Copy the token value.
Step 2: Store the PAT as an Actions repository secret:
- In your repository, go to Settings > Secrets and variables > Actions and click New repository secret.
- Give the secret a name that you will use in the workflow. In this example we're using
PERSONAL_ACCESS_TOKENas the name of the secret. - Paste the token value into the "Secret" field and click Add secret.
The workflow sets a special environment variable with the value of the repository secret. {% data variables.copilot.copilot_cli_short %} supports several special environment variables for authentication. In this example, the workflow uses COPILOT_GITHUB_TOKEN, which is specific to {% data variables.copilot.copilot_cli_short %} and allows you to set different permissions for {% data variables.product.prodname_copilot_short %} than you might use elsewhere with the built-in GITHUB_TOKEN environment variable.
- name: Run Copilot CLI
env:
{% raw %}COPILOT_GITHUB_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }}{% endraw %}Use copilot -p PROMPT [OPTIONS] to run the CLI programmatically and exit when the command completes.
The CLI prints its response to standard output, which is recorded in the log for the Actions workflow run. However, to make the details of changes easier to access, this example adds this information to the summary for the workflow run.
run: |
copilot -p "Review the git log for this repository and write a bullet point summary of all code changes that were made today, with links to the relevant commit on GitHub. Above the bullet list give a description (max 100 words) summarizing the changes made. Write the details to summary.md" --allow-tool='shell(git:*)' --allow-tool=write --no-ask-user
cat summary.md >> "$GITHUB_STEP_SUMMARY"This example uses several options after the CLI prompt:
--allow-tool='shell(git:*)'allows {% data variables.product.prodname_copilot_short %} to run Git commands to analyze the repository history. This is necessary to generate the summary of recent changes.--allow-tool='write'allows {% data variables.product.prodname_copilot_short %} to write the generated summary to a file on the runner.--no-ask-userprevents the CLI from prompting for user input, which is important when running in an automated workflow where there is no user to respond to requests for additional input.
After you confirm the workflow generates a summary of changes, you can adapt the same pattern to other automation tasks. Start by changing the prompt you pass to copilot -p PROMPT, then decide what you want to do with the output. For example, you could:
- Create a pull request to update a changelog file in the repository with the day's changes.
- Email the summary to the repository maintainers.