A team creates a custom Copilot cloud agent for release triage. The agent should inspect repository files and search code, but it should not execute shell commands or use the configured Sentry MCP server until those tools are explicitly approved. Evaluate the following statements. 1. The custom agent can read, search, and edit repository content. 2. The Sentry MCP server is configured, but its tools are not enabled by this tools list. 3. Omitting the tools property or using tools: ["*"] would enable all available tools.
---
name: release-triage
description: Reviews release issues and checks repository context before proposing changes.
tools: ["read", "search", "edit"]
mcp-servers:
sentry:
type: local
command: npx
args: ["@sentry/mcp-server@latest"]
env:
SENTRY_ACCESS_TOKEN: ${{ secrets.COPILOT_MCP_SENTRY_ACCESS_TOKEN }}
---
Use this agent when a release issue needs investigation.
Read release notes, search for related code paths, and propose the smallest safe change.
Do not run commands unless the shell execution tool is explicitly made available.Choose an answer
Tap an option to check your answer.
Correct answer: 1=Yes 2=Yes 3=Yes.
Why this is the answer
Statement 1 is correct because the tools: ["read", "search", "edit"] configuration explicitly grants the agent permissions to read, search, and edit repository content. Statement 2 is correct because the mcp-servers block defines the Sentry MCP server, meaning it is configured, but its tools are not included in the tools list, so they are not enabled. Statement 3 is correct because omitting the tools property or using tools: [""] would default to enabling all available tools, including shell execution and any configured MCP server tools, which is why specific tools are listed here to restrict access.
Pass your exam — without the endless answer hunt
Get every verified question and explanation for this exam in one place, and save hours of prep. 1,000+ certifications · 20+ languages · free to start.
Pass your exam faster → No card needed