OSS
GitHub Ships 'Agentic Autofix' in Public Preview — Copilot Now Explores, Fixes, and Re-Runs CodeQL Before Opening a PR
GitHub launched agentic autofix for code-scanning alerts in public preview (mid-July 2026): Copilot explores relevant files, proposes a remediation, and re-runs CodeQL to confirm the alert is actually closed before opening a draft pull request for review. It's a meaningful step past suggestion-only autofix toward a closed-loop, self-verifying security agent inside the default developer platform. For builders, it means security remediation increasingly arrives as reviewable PRs rather than inline hints.
Source
↳ Follow the thread