Skip to content

feat(sdk): upgrade to @github/copilot-sdk 1.0.0-beta.8 + remote-session support#189

Merged
devartifex merged 5 commits into
masterfrom
devartifex/sdk-upgrade-and-deps
May 28, 2026
Merged

feat(sdk): upgrade to @github/copilot-sdk 1.0.0-beta.8 + remote-session support#189
devartifex merged 5 commits into
masterfrom
devartifex/sdk-upgrade-and-deps

Conversation

@devartifex
Copy link
Copy Markdown
Owner

@devartifex devartifex commented May 27, 2026
edited by Copilot AI
Loading

Description

Migrates copilot-unleashed to @github/copilot-sdk 1.0.0-beta.8, consolidates the open Dependabot bumps, and adds the supported remote-session pieces from the new SDK: per-session remoteSession wiring, the ENABLE_REMOTE_SESSIONS server flag, and GET /api/sessions/last for one-tap resume.

This PR no longer ships an in-app remote-session listing API. During verification, the earlier /api/sessions/remote route and cloud-sessions.ts wrapper were removed after confirming the assumed public listing endpoint was not actually available to integrators. The README now documents that limitation instead of advertising a non-working viewer.

Additional follow-up fixes included in this PR:

  • corrected remaining SDK 1.0 config renames (cwdworkingDirectory)
  • threaded copilotConfigDir into /api/sessions/last so it reads the configured session state directory
  • enforced the ENABLE_REMOTE_SESSIONS kill-switch server-side
  • hardened destroyPoolEntry so the graceful-stop timeout cleanup is leak-safe and only falls back to forceStop() when needed

Type of Change

  • 🐛 Bug fix (non-breaking change that fixes an issue)
  • ✨ New feature (non-breaking change that adds functionality)
  • 💥 Breaking change (fix or feature that would cause existing functionality to change)
  • ♻️ Refactoring (no functional changes)
  • 📝 Documentation
  • 🔧 CI/Build/Infrastructure
  • 🔒 Security fix

Testing

  • I have added/updated unit tests for my changes (npm run test:unit)
  • I have added/updated E2E tests if this changes UI behavior (npx playwright test)
  • All existing tests pass
  • I have tested on all 3 device profiles (desktop, mobile, iPhone) if UI changed
  • I have updated docs/TEST-MATRIX.md if this PR adds or modifies a feature

Quality Checklist

  • My code follows the project conventions (TypeScript strict, Svelte 5 runes, factory functions)
  • I have run npm run check with no new errors
  • I have run npm run build successfully
  • Self-reviewed my own code for clarity and correctness
  • Added comments only where the code needs clarification
  • No console.log or debug code left in

Security (for public repo)

  • No secrets, API keys, or credentials in code or comments
  • No references to private repos, internal infrastructure, or deployment details
  • Input validation added for any new user-facing inputs
  • XSS prevention maintained (DOMPurify for HTML rendering)
  • SSRF protection maintained for any new URL inputs

Screenshots / Recordings

@devartifex
feat(sdk): upgrade to @github/copilot-sdk 1.0.0-beta.8 + remote sessions
6932c48 
Consolidates 9 dependabot PRs and migrates to the latest beta SDK so we can
expose cloud / remote-session control (the feature behind 'copilot --remote' /
'/remote' in the official CLI).

Dependency bumps
- @github/copilot-sdk 0.2.2 -> 1.0.0-beta.8 (pinned exact; beta API)
- @sveltejs/kit ^2.57.1 -> ^2.61.1
- svelte ^5.55.4 -> ^5.55.9
- vite ^8.0.8 -> ^8.0.14, ws ^8.18 -> ^8.21
- dompurify ^3.4 -> ^3.4.7, marked ^18.0.2 -> ^18.0.4
- dev-deps group: @playwright/test, vite-plugin-svelte, @types/node,
  @vitest/coverage-v8, jsdom, lint-staged, svelte-check

SDK breaking-change migration
- CopilotClient now takes a RuntimeConnection (forStdio/forUri/forTcp)
- githubToken -> gitHubToken; cwd -> workingDirectory
- COPILOT_HOME env -> baseDirectory option
- SystemPromptSection -> SystemMessageSection
- onPermissionRequest optional; getQuota({}) takes params object
- hook input shapes: timestamp is Date; cwd dropped from session/error hooks;
  workingDirectory required on Pre/Post tool hook inputs
- session-fs.ts removed (runtime writes session-state under baseDirectory)

New SDK features wired in (all unit tested)
- Per-session remoteSession mode (off | export | on), threaded through
  CreateSessionOptions and the WS new-session handler; persisted setting field
  added (default off).
- Cloud sessions REST wrapper (cloud-sessions.ts) talking to
  api.individual.githubcopilot.com/agents/sessions (the same endpoint the
  official CLI uses for the remote-sessions view), with timeout + graceful
  error handling.
- New GET /api/sessions/remote returns authenticated user's cloud sessions
  (passes through 401/403, 502 on other upstream errors).
- New GET /api/sessions/last using client.getLastSessionId() +
  getSessionMetadata() for one-tap resume.
- Graceful + forceful shutdown: destroyPoolEntry races client.stop() against
  a 5s timer and falls back to client.forceStop() to prevent hung CLI subs.

Config
- New ENABLE_REMOTE_SESSIONS env var (default true) wired into
  CopilotClient.enableRemoteSessions; sessions still need per-session opt-in.

Verification
- svelte-check: 0 errors / 0 warnings
- vitest: 430 passed (41 files); +21 new tests covering cloud-sessions,
  /api/sessions/remote, /api/sessions/last, remoteSession threading, and
  forceStop fallback
- npm run build succeeds; smoke boot: /health returns 200

Supersedes dependabot PRs #170, #172, #177, #178, #181, #182, #185, #186, #188.
Out of scope (left open with comments): #176 (node:26-slim too new),
#167 (release-please v5 breaking inputs), #187 (@github/copilot CLI is not a
direct dep). Playwright E2E should be run in CI.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@github-actions github-actions Bot added documentation Improvements or additions to documentation backend sdk labels May 27, 2026
@devartifex devartifex mentioned this pull request May 27, 2026
Closed
This was referenced May 27, 2026
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
@devartifex
fix: drop /api/sessions/remote — endpoint does not exist in public CLI
07f321d 
Investigating node_modules/@github/copilot/app.js (the official CLI we
ship in node_modules via @github/copilot-sdk peer) showed that the
hostname I guessed earlier — api.individual.githubcopilot.com — is not
present anywhere in the bundle. The CLI only uses:

  - api.githubcopilot.com (default)
  - api.enterprise.githubcopilot.com (enterprise plan)

And the agents endpoint is per-session (PUT/GET /agents/sessions/{id}),
not a list. There is no 'list all my remote sessions' REST endpoint in
the public CLI; that view is rendered on github.com using a different,
internal API path that requires a Copilot bearer (exchanged from the GH
OAuth token via a CLI-internal endpoint not exposed to integrators).

Rather than ship a route that returns 502/empty results, I'm removing:

  - src/lib/server/copilot/cloud-sessions.ts
  - src/lib/server/copilot/cloud-sessions.test.ts
  - src/routes/api/sessions/remote/+server.ts
  - src/routes/api/sessions/remote/server.test.ts

What stays (and is fully tested):

  - Per-session remoteSession mode wired through CreateSessionOptions
    and the WS new-session handler — the SDK takes care of publishing
    to api.githubcopilot.com under the hood when this is set.
  - GET /api/sessions/last (uses real SDK getLastSessionId + getSessionMetadata)
  - destroyPoolEntry forceStop fallback
  - ENABLE_REMOTE_SESSIONS env var

New Playwright spec tests/sessions-endpoints.spec.ts hits the new
/api/sessions/last on a real built server and verifies the 401 path
end-to-end. Full suite: 57 desktop Playwright tests + 419 unit tests
all pass.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@devartifex
Copy link
Copy Markdown
Owner Author

devartifex commented May 27, 2026

Update after Playwright run

Ran the full Playwright suite (--project=desktop): 57 passed in 5.4m — no regressions from the SDK migration.

Also discovered (and fixed) one wrong assumption during E2E investigation:

Removed /api/sessions/remote + cloud-sessions.ts. Searching the official CLI we ship in node_modules/@github/copilot/app.js showed that api.individual.githubcopilot.com does not exist — the CLI only uses api.githubcopilot.com (and the agents endpoint is per-session PUT/GET, not a list). The 'list my remote sessions' view on github.com is rendered via an internal API path requiring a Copilot bearer that's exchanged through a CLI-internal endpoint not exposed to integrators. Shipping a route that always 502s would be worse than not shipping it.

What stays (and is now Playwright-tested):

  • Per-session remoteSession: "off"|"export"|"on" mode — the SDK handles publishing to api.githubcopilot.com when set.
  • GET /api/sessions/last — covered by a new Playwright spec hitting the real built server.
  • destroyPoolEntry forceStop() fallback.
  • ENABLE_REMOTE_SESSIONS env var.

Why no live remote-session E2E test: would publish real sessions to production Copilot infrastructure under a test account, can't be hermetic. The unit tests cover the wiring; manual smoke procedure is in the README diff.

@devartifex
docs(readme): SDK 1.0.0-beta.8 + remote-session publishing
d9f9cdb 
- Bump copilot-sdk badge & tech-stack line to v1.0.0-beta.8.
- New Features bullets for remote session publishing and resume-last-session.
- New 'Remote session publishing' subsection under CLI <-> Browser Sync
  explaining what off/export/on do AND being explicit about what's NOT in
  this release (no in-app remote session browser, no steering of other
  remote sessions) so future users don't expect that capability.
- Add ENABLE_REMOTE_SESSIONS env var to the All-options table.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@devartifex
Copy link
Copy Markdown
Owner Author

devartifex commented May 27, 2026

@copilot please review this PR — the SDK 1.0.0-beta.8 upgrade, the new /api/sessions/last route, the per-session remoteSession mode wiring, the forceStop fallback in destroyPoolEntry, and the README's honest disclaimer that there's no in-app remote-session viewer. Focus areas: (1) is the Promise.race + setTimeout pattern in session-pool.ts leak-safe? (2) does the remoteSession whitelist in new-session.ts cover all SDK values? (3) any obvious regressions from the API renames? Thanks.

@devartifex
fix: address rubber-duck PR review findings
b973d59 
- MCP server config: rename cwd → workingDirectory (SDK 1.0 rename)
- /api/sessions/last: pass copilotConfigDir to createCopilotClient so
  the SDK reads from the correct baseDirectory
- new-session handler: honor ENABLE_REMOTE_SESSIONS server kill-switch;
  ignore client-supplied remoteSession when the feature is disabled
- destroyPoolEntry: clear timeout on stop() resolve, attach .catch() to
  the in-flight stop promise (no unhandled rejection), guard forceStop
  with a settled flag so it cannot race a clean stop

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@devartifex
Copy link
Copy Markdown
Owner Author

devartifex commented May 27, 2026

Rubber-duck review pass — summary

I ran a local critique pass on this PR (since the Copilot reviewer doesn't appear to be enabled on this repo — the REST request to add it returned 200 but never produced a review_requested event; likely needs Copilot Pro+/Enterprise plus repo settings enable).

🔴 Fixed in b973d59

  1. MCP server config renamecwdworkingDirectory (SDK 1.0 breaking rename, the only spot still using the old name)
  2. /api/sessions/last was reading the wrong session directorycreateCopilotClient(token) was missing config.copilotConfigDir, so the SDK defaulted to ~/.copilot instead of the configured COPILOT_CONFIG_DIR
  3. ENABLE_REMOTE_SESSIONS kill-switch was bypassableremoteSession from the WS client was forwarded to the SDK even when the server feature flag was off. Now ignored when disabled.
  4. destroyPoolEntry race conditions — 5s timeout wasn't cleared on a fast stop(), the in-flight stop() promise had no .catch() (potential unhandled rejection), and forceStop() could race a clean stop. Now guarded with a settled flag and proper cleanup.

🟢 Deferred (out of scope / cosmetic)

  • /api/sessions/last spawns a CLI subprocess per request — fine for current usage, would only matter if a UI starts polling it
  • remoteSession whitelist is case-sensitive (silently ignores "OFF"/"On") — UI sends lowercase already

Verified

  • svelte-check: 0/0
  • vitest: 420 passing (+1 new test for configDir threading)
  • npm run build: ok
  • Playwright desktop suite: 57+3 passing

Copy link
Copy Markdown
Contributor

Copilot AI commented May 27, 2026

@copilot please review this PR — the SDK 1.0.0-beta.8 upgrade, the new /api/sessions/last route, the per-session remoteSession mode wiring, the forceStop fallback in destroyPoolEntry, and th...

Reviewed current HEAD (b973d59) and I don’t see any remaining issues in those areas.

  1. destroyPoolEntry is leak-safe now: the 5s timer is cleared in stopPromise.finally, stop() is wrapped with .catch() so it can’t surface an unhandled rejection, and forceStop() only runs if the timeout wins before graceful stop settles. The only remaining failure mode would be an SDK-internal stop() promise that never settles even after forceStop(), but there’s no timer or rejection leak on our side.
  2. The remoteSession whitelist matches the SDK exactly in 1.0.0-beta.8: RemoteSessionMode is "off" | "export" | "on" (node_modules/@github/copilot-sdk/dist/generated/rpc.d.ts).
  3. I don’t see any obvious rename regressions in the touched paths: the client factory uses gitHubToken/workingDirectory/baseDirectory, MCP server config maps cwdworkingDirectory, and /api/sessions/last now threads copilotConfigDir into createCopilotClient.

I also re-ran focused validation locally: npm run build, npm run check, and the targeted Vitest files for session-pool, session.ts, and /api/sessions/last all passed.

Copilot AI changed the title feat(sdk): upgrade to @github/copilot-sdk 1.0.0-beta.8 + remote sessions feat(sdk): upgrade to @github/copilot-sdk 1.0.0-beta.8 + remote-session support May 27, 2026
@devartifex
ci: bump e2e timeout from 15 to 30 minutes
7282c3f 
The Playwright desktop suite grew to 126 tests. With 1 CI worker
and 2 retries (CI defaults from playwright.config.ts), the worst-
case wall clock now exceeds the prior 15-minute budget — every
recent CI run on this repo (including dependabot PRs) has been
hitting the job timeout during the Playwright step.

This is a narrow infra fix: extend the budget so the suite can
actually finish. It does not skip, disable, or weaken any tests.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@github-actions github-actions Bot added the ci label May 28, 2026
@devartifex devartifex merged commit e3eb9e2 into master May 28, 2026
7 of 8 checks passed
@devartifex devartifex mentioned this pull request May 28, 2026
Open
@github-actions github-actions Bot mentioned this pull request May 28, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

backend ci copilot-config documentation Improvements or additions to documentation sdk tests types

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@devartifex