Prev Next

AI / GitHub Copilot CLI Fundamentals Interview Questions

What is the directory trust model in GitHub Copilot CLI and why does it exist?

Copilot CLI has the ability to read, modify, and execute files in your working directory - which poses a security risk if you run it in an untrusted location (e.g. a directory containing malicious files). The directory trust model requires you to explicitly confirm trust before Copilot can act on files.

When you run copilot in a directory for the first time, you are presented with a trust prompt with three options:

Trust prompt options
OptionEffect
1. NoCopilot CLI exits - no files in this directory are accessed
2. Yes, for this session onlyCopilot can work with files in this folder for the current session only - asked again next time
3. Yes, and remember this folderCopilot trusts this folder permanently for all future sessions - not asked again when starting from this folder
# Starting Copilot CLI in a directory for the first time:
$ copilot
During this GitHub Copilot CLI session, Copilot may attempt to
read, modify, and execute files in and below this folder.
Do you trust the files in this folder?
> 1. No
  2. Yes, for this session only
  3. Yes, and remember this folder for future sessions

Why it matters: if you navigate into a directory containing maliciously crafted files and run Copilot CLI, those files could potentially influence the AI to execute harmful commands. The trust model ensures you consciously acknowledge the risk before granting Copilot file access.

What happens if you select 'No' at the Copilot CLI directory trust prompt?
What does selecting 'Yes, and remember this folder' at the trust prompt do?

Invest now in Acorns!!! 🚀 Join Acorns and get your $5 bonus!

Invest now in Acorns!!! 🚀
Join Acorns and get your $5 bonus!

Earn passively and while sleeping

Acorns is a micro-investing app that automatically invests your "spare change" from daily purchases into diversified, expert-built portfolios of ETFs. It is designed for beginners, allowing you to start investing with as little as $5. The service automates saving and investing. Disclosure: I may receive a referral bonus.

Invest now!!! Get Free equity stock (US, UK only)!

Use Robinhood app to invest in stocks. It is safe and secure. Use the Referral link to claim your free stock when you sign up!.

The Robinhood app makes it easy to trade stocks, crypto and more.


Webull! Receive free stock by signing up using the link: Webull signup.

More Related questions...

What is GitHub Copilot CLI and how does it differ from the deprecated gh copilot extension? What are the prerequisites for installing GitHub Copilot CLI? How do you install GitHub Copilot CLI? How do you authenticate GitHub Copilot CLI and what token types are supported? What is the directory trust model in GitHub Copilot CLI and why does it exist? How do you start an interactive Copilot CLI session and what are the two main usage modes? What are slash commands in GitHub Copilot CLI and what are the most important ones? What are the operating modes in GitHub Copilot CLI and how do you switch between them? What is the copilot-instructions.md file and how does it affect Copilot CLI behaviour? How does model selection work in GitHub Copilot CLI? What is the /pr slash command in GitHub Copilot CLI and what can it do? What is the /fleet slash command and what problem does it solve? What is remote control in GitHub Copilot CLI and how does it work? What are Copilot CLI hooks and what can they be used for? What is the AGENTS.md file and how does it differ from copilot-instructions.md? What is the /chronicle slash command and what session history features does it provide? What is MCP (Model Context Protocol) support in Copilot CLI and how do you use it? What is the COPILOT_HOME environment variable and where does Copilot CLI store its config? What are experimental features in Copilot CLI and how do you enable them? What is AI Credits billing in GitHub Copilot CLI and how does it work? How does Copilot CLI read and understand repository context? What are the keyboard shortcuts available in an interactive Copilot CLI session? What is the difference between GitHub Copilot CLI and Copilot in VS Code? What is GitHub Copilot Workspace and how does it differ from Copilot CLI? What are common Copilot CLI troubleshooting steps and how do you debug issues? How does Copilot CLI differ between Copilot Individual, Business, and Enterprise plans? How do you use Copilot CLI effectively with private repositories? What are best practices for writing effective prompts in GitHub Copilot CLI? How can you use GitHub Copilot CLI in CI/CD pipelines and automation workflows? What security considerations should developers be aware of when using GitHub Copilot CLI? What is the --delegate flag and how does the /delegate slash command work? What logging and diagnostic capabilities does GitHub Copilot CLI provide? What does GitHub Copilot CLI's diff and undo capability provide? What are the Windows-specific considerations for GitHub Copilot CLI? What is the full list of GitHub Copilot CLI command-line flags and their purposes? How does GitHub Copilot CLI integrate with GitHub issues? What are the key differences when using Copilot CLI on macOS vs Linux? What is the overall workflow for using Copilot CLI on a real development task from start to finish?
Show more question and Answers...

Database

Comments & Discussions