Describe the bug
Linux subagents can run commands that the permission pattern only captures "/" as the directory which is super dangerous, without giving me the exact command will be run and context around it like a regular agent.
Affected version
No response
Steps to reproduce the behavior
- run copilot-cli
- ask it to run a command in subagent that require additional permission
- find that permission itself got prompted, but reasoning/context isn't
Expected behavior
I should be able to see which agent and its full glory
Additional context
No response
Describe the bug
Linux subagents can run commands that the permission pattern only captures "/" as the directory which is super dangerous, without giving me the exact command will be run and context around it like a regular agent.
Affected version
No response
Steps to reproduce the behavior
Expected behavior
I should be able to see which agent and its full glory
Additional context
No response