Organization firewall settings for Copilot cloud agent

Published: 1 month ago (April 3, 2026 at 10:12 AM EDT)

1 min read

Source: GitHub Changelog

Header image with a screenshot of the organization firewall settings UI for Copilot cloud agent

Organization‑wide firewall management for Copilot cloud agent

Copilot cloud agent includes a built‑in agent firewall to control Copilot’s internet access and help protect against prompt injection and data exfiltration. Until now, the firewall was configured at the repository level by repository admins.

Organization admins can now manage the agent firewall across all repositories in their organization. This makes it easier to roll out Copilot cloud agent at scale with the right defaults and guardrails for your needs.

What admins can control

Turn the firewall on or off across all repositories, or allow each repository to decide.
Turn the recommended allowlist on or off across all repositories, or allow each repository to decide.
Add entries to an organization‑wide custom allowlist, covering all repositories (e.g., allowing access to an internal package registry).
Control whether repository admins are allowed to add their own custom allowlist entries.

By default, all settings allow each repository to decide, preserving existing behavior.

Learn more

For detailed instructions, see “Customizing the agent firewall for Copilot cloud agent” in the GitHub Docs: https://docs.github.com/copilot/how-tos/use-copilot-agents/coding-agent/customize-the-agent-firewall.

Organization firewall settings for Copilot cloud agent

Organization‑wide firewall management for Copilot cloud agent

What admins can control

Learn more

Related posts

Copilot usage metrics now identify active and passive Copilot code review users

Organization runner controls for Copilot cloud agent

GPT-5.1 Codex, GPT-5.1-Codex-Max, and GPT-5.1-Codex-Mini deprecated

Copilot SDK in public preview