[sandbox]
name = "copilot-sandbox"
base_image = "node:22-alpine"
[agent]
preferred = "copilot"
compatibility_mode = "native"
[resources]
vcpus = 2
memory_mb = 1024
[secrets]
GITHUB_TOKEN = "api.github.com"
[security]
profile = "moderate"
[security.domains]
allow = ["api.github.com", "copilot-proxy.githubusercontent.com"]
[template]
description = "GitHub Copilot CLI agent sandbox"
category = "Agent Sandboxes"
help_text = """
How to use: Start the sandbox and run your workflow inside /workspace.
Example command: ls -la /workspace
Binaries available: node, npm, npx
Services and ports: No long-running service is configured by default; only explicitly mapped ports are exposed.
"""