Cross-SDK: derive requestPermission from handler presence on session.create

TS, C#, Go, and Python all currently hardcoded requestPermission: true
on session.create regardless of whether the caller supplied an
onPermissionRequest handler. (Resume / join paths already derived from
handler presence.)

The runtime supports the presence-derived shape: when no client opts
in via requestPermission=true, the session short-circuits permission
prompts with user-not-available instead of broadcasting. So the
hardcoded true forced the runtime to broadcast permission events to
clients that would never respond, wasting a roundtrip and creating a
discrepancy between create and resume.

Aligns all four SDKs to: requestPermission := onPermissionRequest != null
on both session.create and session.resume. (Rust will land the same
shape in its API-review-fixes commit on this branch.)

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

Author: SteveSandersonMS

dotnet/src/Client.cs

@@ -594,7 +594,7 @@ public async Task<CopilotSession> CreateSessionAsync(SessionConfig config, Cance
                 config.ExcludedTools,
                 config.Provider,
                 config.EnableSessionTelemetry,
-                (bool?)true,
+                config.OnPermissionRequest != null ? true : null,
                 config.OnUserInputRequest != null ? true : null,
                 config.OnExitPlanModeRequest != null ? true : null,
                 config.OnAutoModeSwitchRequest != null ? true : null,
@@ -752,7 +752,7 @@ public async Task<CopilotSession> ResumeSessionAsync(string sessionId, ResumeSes
                 config.ExcludedTools,
                 config.Provider,
                 config.EnableSessionTelemetry,
-                (bool?)true,
+                config.OnPermissionRequest != null ? true : null,
                 config.OnUserInputRequest != null ? true : null,
                 config.OnExitPlanModeRequest != null ? true : null,
                 config.OnAutoModeSwitchRequest != null ? true : null,

go/client.go

@@ -665,7 +665,9 @@ func (c *Client) CreateSession(ctx context.Context, config *SessionConfig) (*Ses
 		config.Hooks.OnErrorOccurred != nil) {
 		req.Hooks = Bool(true)
 	}
-	req.RequestPermission = Bool(true)
+	if config.OnPermissionRequest != nil {
+		req.RequestPermission = Bool(true)
+	}
 
 	traceparent, tracestate := getTraceContext(ctx)
 	req.Traceparent = traceparent
@@ -839,7 +841,9 @@ func (c *Client) ResumeSessionWithOptions(ctx context.Context, sessionID string,
 	req.InfiniteSessions = config.InfiniteSessions
 	req.GitHubToken = config.GitHubToken
 	req.RemoteSession = config.RemoteSession
-	req.RequestPermission = Bool(true)
+	if config.OnPermissionRequest != nil {
+		req.RequestPermission = Bool(true)
+	}
 
 	if len(config.Commands) > 0 {
 		cmds := make([]wireCommand, 0, len(config.Commands))

nodejs/src/client.ts

@@ -830,7 +830,7 @@ export class CopilotClient {
                 provider: config.provider,
                 enableSessionTelemetry: config.enableSessionTelemetry,
                 modelCapabilities: config.modelCapabilities,
-                requestPermission: true,
+                requestPermission: !!config.onPermissionRequest,
                 requestUserInput: !!config.onUserInputRequest,
                 requestElicitation: !!config.onElicitationRequest,
                 requestExitPlanMode: !!config.onExitPlanModeRequest,

python/copilot/client.py

@@ -1493,8 +1493,8 @@ async def create_session(
         if excluded_tools is not None:
             payload["excludedTools"] = excluded_tools
 
-        # Always enable permission request callback
-        payload["requestPermission"] = True
+        # Enable permission request callback if handler provided
+        payload["requestPermission"] = bool(on_permission_request)
 
         # Enable user input request callback if handler provided
         if on_user_input_request:
@@ -1888,8 +1888,8 @@ async def resume_session(
             else True
         )
 
-        # Always enable permission request callback
-        payload["requestPermission"] = True
+        # Enable permission request callback if handler provided
+        payload["requestPermission"] = bool(on_permission_request)
 
         if on_user_input_request:
             payload["requestUserInput"] = True