Copilot CLI hooks add agent guardrails

This is less flashy than a new model, but more important for teams trying to make agentic coding usable in real repositories.

• –Hooks move Copilot CLI closer to enterprise-grade agent orchestration: deterministic shell logic can sit between the model and risky actions.
• –Pre-tool enforcement is the key primitive because it turns policy from a written guideline into an execution gate.
• –Repository-scoped `.github/hooks/*.json` files make guardrails shareable, reviewable, and version-controlled.
• –The tradeoff is operational burden: teams now need to maintain hook scripts carefully or risk blocking normal developer flow.