Overview
- Copilot Actions, which lets AI agents click, type, and interact with apps and files to complete multi‑step tasks, is limited to Windows Insiders in an experimental preview and remains off by default.
- Microsoft says Windows-integrated agents must be digitally signed, run under a separate standard agent account, and operate inside an isolated Agent workspace with access restricted to known folders unless the user grants more.
- Security leaders acknowledge novel risks such as cross‑prompt injection, and Microsoft confirms active red‑teaming with more granular security and privacy controls planned before wider release.
- Related capabilities are arriving in stages, with Copilot Voice for hands‑free activation and Copilot Vision for on‑screen context assistance beginning broader rollout ahead of Actions.
- Microsoft frames Windows 11 as an AI‑native platform for business, highlighting Copilot+ PCs for on‑device performance and Windows 365 Cloud PCs plus existing management tools for deployment at scale.