msco-pi-lot 0.1.0

package/.env.example

@@ -0,0 +1,7 @@
+MICROSOFT_COPILOT_ACCESS_TOKEN=
+MICROSOFT_COPILOT_COOKIE=
+MICROSOFT_COPILOT_CONVERSATION_ID=
+MICROSOFT_COPILOT_CLIENT_SESSION_ID=
+MICROSOFT_COPILOT_MODE=reasoning
+MICROSOFT_COPILOT_TRACE=0
+MICROSOFT_COPILOT_TRACE_FILE=logs/copilot-session.ndjson

package/.github/workflows/ci.yml

@@ -0,0 +1,79 @@
+name: CI
+
+on:
+  push:
+    branches: ["main", "master"]
+  pull_request:
+    branches: ["main", "master"]
+
+jobs:
+  lint:
+    name: Lint and Typecheck
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Use Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '18'
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Run linter
+        run: npm run lint --if-present
+
+      - name: Run type checks
+        run: npm run typecheck --if-present
+
+  build:
+    name: Build
+    runs-on: ubuntu-latest
+    needs: lint
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Use Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '18'
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Build project
+        env:
+          CI: true
+        run: npm run build --if-present
+
+  test:
+    name: Run tests matrix
+    needs: build
+    runs-on: ${{ matrix.os }}
+    strategy:
+      matrix:
+        node-version: [18, 20]
+        os: [ubuntu-latest, windows-latest, macos-latest]
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Use Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ matrix.node-version }}
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Run tests
+        env:
+          CI: true
+        run: npm test --if-present
+

package/.github/workflows/publish.yml

@@ -0,0 +1,45 @@
+name: Publish Package
+
+on:
+  push:
+    tags:
+      - 'v*.*.*'
+
+jobs:
+  publish:
+    name: Publish to npm
+    runs-on: ubuntu-latest
+    if: "github.event_name == 'push' && startsWith(github.ref, 'refs/tags/')"
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Use Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          registry-url: 'https://registry.npmjs.org'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Build (TypeScript)
+        if: hashFiles('tsconfig.json') != ''
+        run: npm run build --if-present
+
+      - name: Run tests
+        run: npm test --if-present
+
+      - name: Configure npm auth
+        run: |
+          echo "//registry.npmjs.org/:_authToken=${{ secrets.NPM_TOKEN }}" > ~/.npmrc
+
+      - name: Verify package.json not private
+        run: |
+          node -e "const p=require('./package.json'); if(p.private){console.error('package.json has private: true — aborting publish'); process.exit(1);} console.log('package.json OK');"
+
+      - name: Publish to npm
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+        run: |
+          npm publish --access public

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Matthew Gribben
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,100 @@
+# msco-pi-lot
+
+Microsoft Copilot provider extension for `pi`.
+
+<img width="1094" height="1200" alt="image" src="https://github.com/user-attachments/assets/fb12fb42-bc43-4e18-b77d-4f1d27ababe1" />
+
+
+## Install
+
+Install directly from GitHub:
+
+```bash
+pi install https://github.com/atomic-reactor/msco-pi-lot
+```
+
+You can also pin a ref:
+
+```bash
+pi install https://github.com/atomic-reactor/msco-pi-lot@main
+```
+
+After install, restart `pi` and select the `microsoft-copilot/copilot` model.
+
+For interactive use, log in once from inside `pi`:
+
+```text
+/login microsoft-copilot
+```
+
+Paste your Microsoft Copilot access token when prompted. `pi` stores the credential in `~/.pi/agent/auth.json`. You can remove it later with:
+
+```text
+/logout microsoft-copilot
+```
+
+## Configuration
+
+Interactive login only supports pasting an access token. For headless or non-interactive use, you can still set Copilot credentials in your shell or in a local `.env` file next to the installed package:
+
+```dotenv
+MICROSOFT_COPILOT_ACCESS_TOKEN=
+MICROSOFT_COPILOT_COOKIE=
+MICROSOFT_COPILOT_CONVERSATION_ID=
+MICROSOFT_COPILOT_CLIENT_SESSION_ID=
+MICROSOFT_COPILOT_MODE=reasoning
+MICROSOFT_COPILOT_TRACE=0
+MICROSOFT_COPILOT_TRACE_FILE=logs/copilot-session.ndjson
+```
+
+Legacy `COPILOT_*` variable names are still accepted.
+
+Only `MICROSOFT_COPILOT_ACCESS_TOKEN` is required. Cookie-based settings remain optional transport tweaks, not a login method.
+
+## Behavior
+
+- Registers one `pi` model: `microsoft-copilot/copilot`
+- Maps `pi` thinking levels to Copilot modes:
+  - `off`, `minimal`, `low` -> `smart`
+  - `medium`, `high`, `xhigh` -> `reasoning`
+- Bootstraps a Copilot conversation over HTTP when needed
+- Persists conversation state per `pi` session
+- Supports local tool use through a prompt-mediated tool loop
+- Uses Copilot server config to size prompts conservatively against the live `maxTextMessageLength`
+
+## Known Issues
+
+- This is still a basic integration. It gets Microsoft Copilot working inside `pi`, but it is not yet on par with a full agentic coding agent.
+- Microsoft Copilot will sometimes fail to respond at all. In those cases the request may stall or end without a useful answer, and retrying is often the only workaround.
+- Microsoft Copilot will sometimes behave as if it is running in a browser context. When that happens it may try to inspect browser tabs or page state that do not exist in `pi`, which can cause the response to stall or go off track.
+
+## Development
+
+Install dependencies:
+
+```bash
+npm install
+```
+
+Run tests:
+
+```bash
+npm test
+```
+
+For local extension loading during development:
+
+```bash
+pi -e ./src/index.ts
+```
+
+## Tracing
+
+Enable websocket and bootstrap tracing with:
+
+```dotenv
+MICROSOFT_COPILOT_TRACE=1
+MICROSOFT_COPILOT_TRACE_FILE=logs/copilot-session.ndjson
+```
+
+Trace output is masked, but you should still treat it as sensitive and keep it out of git.

package/package.json

@@ -0,0 +1,44 @@
+{
+  "name": "msco-pi-lot",
+  "version": "0.1.0",
+  "description": "Microsoft Copilot provider extension for pi coding agent.",
+  "license": "MIT",
+  "type": "module",
+  "main": "./src/index.ts",
+  "exports": "./src/index.ts",
+  "pi": {
+    "extensions": [
+      "./src/index.ts"
+    ]
+  },
+  "scripts": {
+    "test": "vitest --run"
+  },
+  "keywords": [
+    "pi",
+    "pi-extension",
+    "pi-package",
+    "microsoft-copilot",
+    "copilot-provider",
+    "coding-agent",
+    "msco",
+    "pi-plugin"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "git@github.com:atomic-reactor/msco-pi-lot.git"
+  },
+  "dependencies": {
+    "dotenv": "^16.6.1",
+    "ws": "^8.18.3"
+  },
+  "peerDependencies": {
+    "@mariozechner/pi-ai": "*",
+    "@mariozechner/pi-coding-agent": "*"
+  },
+  "devDependencies": {
+    "@types/node": "^24.5.2",
+    "typescript": "^5.9.2",
+    "vitest": "^3.2.4"
+  }
+}

package/src/core/config.ts

@@ -0,0 +1,71 @@
+import dotenv from "dotenv";
+import { maskCookie } from "./mask-secrets.js";
+import type { CopilotConfig, CopilotMode } from "../types.js";
+
+const DEFAULTS = Object.freeze({
+  mode: "reasoning" as CopilotMode,
+  channel: "edge",
+  apiVersion: "2",
+  debug: false,
+  trace: false,
+  origin: "https://copilot.microsoft.com",
+  userAgent:
+    "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36 Edg/146.0.0.0"
+});
+
+const ALLOWED_MODES = new Set<CopilotMode>(["reasoning", "smart"]);
+
+function parseBooleanFlag(value: string | undefined, fallback: boolean): boolean {
+  if (!value) {
+    return fallback;
+  }
+
+  return value === "1" || value.toLowerCase() === "true";
+}
+
+function readEnv(env: NodeJS.ProcessEnv, canonical: string, legacy?: string): string | undefined {
+  return env[canonical] || (legacy ? env[legacy] : undefined);
+}
+
+function normalizeMode(value: string | undefined): CopilotMode {
+  const mode = (value || DEFAULTS.mode) as CopilotMode;
+  if (!ALLOWED_MODES.has(mode)) {
+    throw new Error(`Unsupported Copilot mode "${mode}". Expected one of: reasoning, smart`);
+  }
+  return mode;
+}
+
+export interface LoadConfigOptions {
+  env?: NodeJS.ProcessEnv;
+  loadDotEnv?: boolean;
+  dotenvPath?: string;
+}
+
+export function loadConfig(options: LoadConfigOptions = {}): CopilotConfig {
+  if (options.loadDotEnv !== false) {
+    dotenv.config({ path: options.dotenvPath, quiet: true });
+  }
+
+  const env = options.env ?? process.env;
+
+  return {
+    cookie: readEnv(env, "MICROSOFT_COPILOT_COOKIE", "COPILOT_COOKIE") || "",
+    conversationId: readEnv(env, "MICROSOFT_COPILOT_CONVERSATION_ID", "COPILOT_CONVERSATION_ID") || undefined,
+    clientSessionId: readEnv(env, "MICROSOFT_COPILOT_CLIENT_SESSION_ID", "COPILOT_CLIENT_SESSION_ID") || undefined,
+    mode: normalizeMode(readEnv(env, "MICROSOFT_COPILOT_MODE", "COPILOT_MODE")),
+    channel: readEnv(env, "MICROSOFT_COPILOT_CHANNEL", "COPILOT_CHANNEL") || DEFAULTS.channel,
+    apiVersion: readEnv(env, "MICROSOFT_COPILOT_API_VERSION", "COPILOT_API_VERSION") || DEFAULTS.apiVersion,
+    debug: parseBooleanFlag(readEnv(env, "MICROSOFT_COPILOT_DEBUG", "COPILOT_DEBUG"), DEFAULTS.debug),
+    trace: parseBooleanFlag(readEnv(env, "MICROSOFT_COPILOT_TRACE", "COPILOT_TRACE"), DEFAULTS.trace),
+    traceFile: readEnv(env, "MICROSOFT_COPILOT_TRACE_FILE", "COPILOT_TRACE_FILE") || undefined,
+    origin: DEFAULTS.origin,
+    userAgent: DEFAULTS.userAgent
+  };
+}
+
+export function maskConfigForLog(config: CopilotConfig): Record<string, unknown> {
+  return {
+    ...config,
+    cookie: maskCookie(config.cookie)
+  };
+}

package/src/core/ids.ts

@@ -0,0 +1,5 @@
+import { randomUUID } from "node:crypto";
+
+export function generateClientSessionId(): string {
+  return randomUUID();
+}

package/src/core/mask-secrets.ts

@@ -0,0 +1,19 @@
+function maskLongValue(value: string): string {
+  if (value.length <= 10) {
+    return "*".repeat(value.length);
+  }
+
+  return `${value.slice(0, 6)}...${value.slice(-4)}`;
+}
+
+export function maskSecret(value: string): string {
+  return value ? maskLongValue(value) : "";
+}
+
+export function maskCookie(value: string): string {
+  if (!value) {
+    return "";
+  }
+
+  return value.replace(/=([^;]+)/g, "=***");
+}

package/src/core/session-trace.ts

@@ -0,0 +1,51 @@
+import { mkdirSync, appendFileSync } from "node:fs";
+import { dirname, join } from "node:path";
+import { maskCookie, maskSecret } from "./mask-secrets.js";
+
+function sanitize(value: unknown): unknown {
+  if (typeof value === "string") {
+    return value
+      .replace(/accessToken=([^&]+)/g, (_match, secret) => `accessToken=${maskSecret(secret)}`)
+      .replace(/("accessToken":")([^"]+)(")/g, `$1***$3`)
+      .replace(/("Authorization":"Bearer )([^"]+)(")/g, `$1***$3`)
+      .replace(/("Cookie":")([^"]+)(")/g, (_match, prefix, cookie, suffix) => `${prefix}${maskCookie(cookie)}${suffix}`);
+  }
+
+  if (Array.isArray(value)) {
+    return value.map(sanitize);
+  }
+
+  if (value && typeof value === "object") {
+    return Object.fromEntries(
+      Object.entries(value as Record<string, unknown>).map(([key, entry]) => {
+        if (key === "accessToken" || key === "Authorization") {
+          return [key, "***"];
+        }
+        if (key === "cookie" || key === "Cookie") {
+          return [key, typeof entry === "string" ? maskCookie(entry) : "***"];
+        }
+        return [key, sanitize(entry)];
+      })
+    );
+  }
+
+  return value;
+}
+
+export class SessionTraceWriter {
+  readonly filePath: string;
+
+  constructor(filePath?: string) {
+    this.filePath = filePath || join("logs", `copilot-session-${Date.now()}.ndjson`);
+    mkdirSync(dirname(this.filePath), { recursive: true });
+  }
+
+  write(type: string, payload?: unknown): void {
+    const row = {
+      timestamp: new Date().toISOString(),
+      type,
+      payload: sanitize(payload)
+    };
+    appendFileSync(this.filePath, `${JSON.stringify(row)}\n`);
+  }
+}

package/src/index.ts

@@ -0,0 +1,65 @@
+import type { ExtensionAPI, ExtensionContext } from "@mariozechner/pi-coding-agent";
+import { loadConfig, maskConfigForLog } from "./core/config.js";
+import { generateClientSessionId } from "./core/ids.js";
+import { SessionTraceWriter } from "./core/session-trace.js";
+import { createProviderConfig, PROVIDER_NAME } from "./provider.js";
+import { CopilotRuntimeManager } from "./runtime/runtime-manager.js";
+import { CopilotSessionStore, SESSION_ENTRY_TYPE } from "./runtime/session-store.js";
+import type { PersistedCopilotState } from "./types.js";
+
+function reconstructState(sessionStore: CopilotSessionStore, runtimeManager: CopilotRuntimeManager, ctx: ExtensionContext): void {
+  const state = sessionStore.reconstruct(ctx.sessionManager);
+  runtimeManager.updatePersistedState(state, ctx.sessionManager.getSessionId());
+}
+
+function seedFreshState(sessionStore: CopilotSessionStore, runtimeManager: CopilotRuntimeManager, ctx: ExtensionContext): void {
+  const state: PersistedCopilotState = {
+    version: 2,
+    sessionId: ctx.sessionManager.getSessionId(),
+    conversationId: "",
+    clientSessionId: generateClientSessionId(),
+    updatedAt: new Date().toISOString()
+  };
+
+  sessionStore.set(state);
+  runtimeManager.updatePersistedState(state, state.sessionId);
+}
+
+export default function microsoftCopilotExtension(pi: ExtensionAPI): void {
+  const config = loadConfig();
+  const traceWriter = config.trace ? new SessionTraceWriter(config.traceFile) : undefined;
+  const sessionStore = new CopilotSessionStore();
+  const runtimeManager = new CopilotRuntimeManager(
+    config,
+    (sessionId) => sessionStore.get(sessionId),
+    (state: PersistedCopilotState) => {
+      pi.appendEntry(SESSION_ENTRY_TYPE, state);
+      sessionStore.set(state);
+    },
+    { traceWriter }
+  );
+
+  traceWriter?.write("extension.loaded", { config: maskConfigForLog(config) });
+
+  pi.registerProvider(PROVIDER_NAME, createProviderConfig(runtimeManager));
+
+  pi.on("session_start", async (_event, ctx) => {
+    reconstructState(sessionStore, runtimeManager, ctx);
+  });
+  pi.on("session_switch", async (_event, ctx) => {
+    if (_event.reason === "new") {
+      seedFreshState(sessionStore, runtimeManager, ctx);
+      return;
+    }
+    reconstructState(sessionStore, runtimeManager, ctx);
+  });
+  pi.on("session_fork", async (_event, ctx) => {
+    reconstructState(sessionStore, runtimeManager, ctx);
+  });
+  pi.on("session_tree", async (_event, ctx) => {
+    reconstructState(sessionStore, runtimeManager, ctx);
+  });
+  pi.on("session_shutdown", async (_event, ctx) => {
+    runtimeManager.disconnectSession(ctx.sessionManager.getSessionId());
+  });
+}

package/src/protocol/messages.ts

@@ -0,0 +1,150 @@
+import type { CopilotMode, CopilotRequestConfig } from "../types.js";
+
+const SUPPORTED_FEATURES = ["partial-generated-images"];
+
+const SUPPORTED_CARDS = [
+  "weather",
+  "local",
+  "image",
+  "inlineImage",
+  "sports",
+  "video",
+  "inlineVideo",
+  "healthcareEntity",
+  "healthcareInfo",
+  "safetyHelpline",
+  "quiz",
+  "finance",
+  "recipe",
+  "personalArtifacts",
+  "flashcard",
+  "navigation",
+  "person",
+  "consentV2",
+  "composeEmail"
+];
+
+const SUPPORTED_UI_COMPONENTS = {
+  Badge: "1.2",
+  Basic: "1.2",
+  Box: "1.2",
+  Button: "1.2",
+  Card: "1.2",
+  Caption: "1.2",
+  Chart: "1.2",
+  Checkbox: "1.2",
+  Col: "1.2",
+  DatePicker: "1.2",
+  Divider: "1.2",
+  Form: "1.2",
+  Icon: "1.2",
+  Image: "1.2",
+  Label: "1.2",
+  ListView: "1.2",
+  ListViewItem: "1.2",
+  Map: "1.3",
+  Markdown: "1.2",
+  Pressable: "1.3",
+  RadioGroup: "1.2",
+  Row: "1.2",
+  Select: "1.2",
+  Spacer: "1.2",
+  Text: "1.2",
+  Textarea: "1.2",
+  Title: "1.2",
+  Transition: "1.2"
+};
+
+const SUPPORTED_ACTIONS: string[] = [];
+
+export function buildWebSocketUrl(config: CopilotRequestConfig, clientSessionId: string): URL {
+  const url = new URL("wss://copilot.microsoft.com/c/api/chat");
+  url.searchParams.set("api-version", config.apiVersion);
+  url.searchParams.set("clientSessionId", clientSessionId);
+  url.searchParams.set("accessToken", config.accessToken);
+  url.searchParams.set("channel", config.channel);
+  url.searchParams.set("edgetab", "1");
+  return url;
+}
+
+export function buildWebSocketHeaders(config: CopilotRequestConfig): Record<string, string> {
+  const headers: Record<string, string> = {
+    Origin: config.origin,
+    "User-Agent": config.userAgent
+  };
+
+  if (config.cookie) {
+    headers.Cookie = config.cookie;
+  }
+
+  return headers;
+}
+
+export function buildSetOptionsEvent(): Record<string, unknown> {
+  return {
+    event: "setOptions",
+    supportedFeatures: SUPPORTED_FEATURES,
+    supportedCards: SUPPORTED_CARDS,
+    supportedUIComponents: SUPPORTED_UI_COMPONENTS,
+    ads: null,
+    supportedActions: SUPPORTED_ACTIONS
+  };
+}
+
+export function buildReportLocalConsentsEvent(): Record<string, unknown> {
+  return {
+    event: "reportLocalConsents",
+    grantedConsents: []
+  };
+}
+
+export function buildMessagePreviewEvent(input: {
+  conversationId: string;
+  prompt: string;
+}): Record<string, unknown> {
+  return buildPromptEvent({
+    event: "messagePreview",
+    conversationId: input.conversationId,
+    prompt: input.prompt,
+    mode: "smart"
+  });
+}
+
+export function buildSendEvent(input: {
+  conversationId: string;
+  prompt: string;
+  mode: CopilotMode;
+}): Record<string, unknown> {
+  return buildPromptEvent({
+    event: "send",
+    conversationId: input.conversationId,
+    prompt: input.prompt,
+    mode: input.mode
+  });
+}
+
+export function buildPongEvent(input: { pingId?: string; lastEventId?: string }): Record<string, unknown> {
+  return {
+    event: "pong",
+    id: input.pingId || `${input.lastEventId || "0"}.0001`
+  };
+}
+
+function buildPromptEvent(input: {
+  event: "messagePreview" | "send";
+  conversationId: string;
+  prompt: string;
+  mode: CopilotMode;
+}): Record<string, unknown> {
+  return {
+    event: input.event,
+    conversationId: input.conversationId,
+    content: [
+      {
+        type: "text",
+        text: input.prompt
+      }
+    ],
+    mode: input.mode
+  };
+}