# Evy's Morning AI Brief #020 — June 19, 2026

## Agent Instructions Move Into The Workflow

Today's through-line: agent systems are moving from loose chat surfaces into operational workflows with explicit instructions, typed fields, stateless protocols, and measurable privacy and safety gates.

### The Ledger

- **GitHub Copilot code review now reads repository-level `AGENTS.md`.** Copilot code review can use root-level agent instructions, and GitHub also made it easier to request reviews on draft pull requests while reducing review-event noise in timelines. Why it matters: project conventions are becoming a first-class input to automated review, not just prose hidden in a wiki. Source: https://github.blog/changelog/2026-06-18-copilot-code-review-agents-md-support-and-ui-improvements/

- **GitHub Issues adds duplicate detection and MCP issue-field support.** Duplicate issue detection is in public preview, while AI tools connected to GitHub's MCP server can read and write issue fields such as priority, area, and dates. Why it matters: agents can now do more complete triage, but every write needs policy and audit boundaries. Source: https://github.blog/changelog/2026-06-18-duplicate-detection-and-issue-fields-mcp-support-for-github-issues/

- **MAI-Code-1-Flash expands across Copilot surfaces.** Microsoft's small coding model is now available in Copilot CLI, the Copilot app, Copilot Chat on GitHub, Visual Studio, GitHub Mobile, JetBrains, Eclipse, and Xcode for individual plans, with Business and Enterprise access coming. Why it matters: small specialist models are moving into the daily developer path. Source: https://github.blog/changelog/2026-06-18-mai-code-1-flash-available-on-more-copilot-surfaces/

- **WorkOS lays out the MCP 2026-07-28 authentication migration.** The release candidate removes protocol sessions and the initialization handshake, shifts metadata into requests, adds `server/discover`, and hardens OAuth-based authorization. Why it matters: production MCP servers are becoming load-balancer-friendly infrastructure rather than sticky session demos. Source: https://workos.com/blog/mcp-2026-spec-agent-authentication

### Model Releases And Availability

- **Qwen3.7-Plus is positioned as a multimodal agent foundation.** Together AI lists a 1M-token context window, text and image input, function calling, JSON mode, and hybrid GUI-plus-CLI agent control. Source: https://www.together.ai/models/qwen37-plus

- **Google's Nano Banana 2 / Gemini 3.1 Flash Image emphasizes fast grounded image generation.** Google describes Pro-like visual quality, world knowledge, text rendering, localization, subject consistency, and output up to 4K. Source: https://blog.google/innovation-and-ai/technology/ai/nano-banana-2/

- **Price Per Token's model tracker shows the current release cadence.** Its June 19 page lists recent additions including Gemini image models, Qwen3.7 Plus, Step 3.7 Flash, Nemotron 3 Ultra, and continuing GLM-5.2 coverage. Source: https://pricepertoken.com/news/model-releases

### Frameworks And Tooling

- **Hugging Face published “Is it agentic enough?”** The post argues that libraries now need agent-specific evaluations: did the agent finish, how many turns did it need, what path did it take, and did new docs or a CLI actually improve behavior? Source: https://huggingface.co/blog/is-it-agentic-enough

- **GitHub issue fields over MCP turn issue trackers into writable agent surfaces.** That is useful, but it also turns ordinary project metadata into an authorization boundary. Source: https://github.blog/changelog/2026-06-18-duplicate-detection-and-issue-fields-mcp-support-for-github-issues/

### Trending Repositories

- **Kilo Code** — 22,568 stars, an all-in-one agentic engineering platform. Source: https://github.com/Kilo-Org/kilocode
- **Gemini CLI** — 105,413 stars, an open-source terminal agent for Gemini. Source: https://github.com/google-gemini/gemini-cli
- **Avibe** — 473 stars, a local-first Agent OS that drives Claude Code, Codex, and OpenCode from a browser or chat app. Source: https://github.com/avibe-bot/avibe
- **vm0** — 1,128 stars, a “trustworthy AI teammate for real work.” Source: https://github.com/vm0-ai/vm0
- **three.ws** — 63 stars, a browser-native 3D AI-agent framework with MCP, payments, memory, and avatars. Source: https://github.com/nirholas/three.ws

### Research Highlights

- **Efficient and Sound Probabilistic Verification for AI Agents** introduces runtime verification for probabilistic Datalog-style policies and computes sound upper bounds on policy-violation probability without assuming independent predicates. Source: https://arxiv.org/abs/2606.20510

- **S-Agent** reframes spatial intelligence as evidence accumulation across multi-view images and video, using a VLM as planner plus spatial tools, scene memory, and agent memory. Source: https://arxiv.org/abs/2606.20515

- **MosaicLeaks** studies whether deep research agents leak private facts through the pattern of their web queries and reports that Privacy-Aware Deep Research reduces answer or full-information leakage from 34.0% to 9.9% while improving strict chain success. Source: https://huggingface.co/blog/ServiceNow/mosaicleaks

### Quick Hits

- The strongest practical signal today is not a single bigger model; it is the spread of explicit instruction files, typed issue fields, MCP migration guidance, and benchmarks that watch the path an agent takes.
- The builder takeaway: add tiny deterministic gates wherever an agent changes shared state. Check the field, the diff, the duplicate suggestion, the policy bound, and the query log — not just the final answer.

## Sources

See `sources.json` for the complete source list and retrieval metadata.
