Skip to content

Commit fdc9f0a

Browse files
lpcoxCopilot
andauthored
chore: upgrade and recompile all workflows to gh-aw v0.69.2 (#2144)
* chore: upgrade and recompile all workflows to gh-aw v0.69.2 - Upgrade gh-aw/actions/setup v0.68.7 → v0.69.2 - Upgrade gh-aw-actions/setup v0.68.7 → v0.69.2 - Upgrade gh-aw-actions/setup-cli v0.68.7 → v0.69.2 - Upgrade actions/github-script v8 → v9.0.0 - Recompile all 29 workflow lock files - Post-process smoke/build-test lock files Co-authored-by: Copilot <[email protected]> * chore: bump mcpg to v0.2.29 in smoke-claude, smoke-codex, smoke-copilot Set sandbox.mcp.version: v0.2.29 in frontmatter to test the GraphQL fix for gh pr list / gh issue list via the CLI proxy. Disables strict mode in these three workflows to allow the sandbox.mcp.version field (internal implementation detail). Tracking issue: github/gh-aw-mcpg#4276 Co-authored-by: Copilot <[email protected]> * fix: correct double-indentation of [shell_environment_policy] in Codex config.toml The postprocess script had an extra ${indent} before $3 in the replacement string, but $3 already captures the indent prefix. This caused [shell_environment_policy] to be double-indented (20 spaces instead of 10). Fix: remove the redundant ${indent} from the replacement string. Co-authored-by: Copilot <[email protected]> * fix: use custom openai-proxy provider to disable WebSocket in Codex config.toml The built-in 'openai' provider ID is reserved in Codex and cannot be overridden via [model_providers.openai] — Codex requires a 'name' field and treats it as a custom provider definition, causing 'Error loading config.toml: missing field `name` in `model_providers.openai`'. Fix: define a custom 'openai-proxy' provider that: - points to the AWF api-proxy sidecar at http://172.30.0.30:10000 - sets supports_websockets=false to force REST (Codex v0.121+ ignores OPENAI_BASE_URL for WebSocket, connecting directly to wss://api.openai.com) - uses OPENAI_API_KEY (placeholder injected by AWF); the sidecar replaces it with the real key before forwarding to OpenAI Also set model_provider = "openai-proxy" to activate the custom provider. Co-authored-by: Copilot <[email protected]> --------- Co-authored-by: Copilot <[email protected]>
1 parent 737a5e9 commit fdc9f0a

35 files changed

Lines changed: 1224 additions & 1134 deletions

.github/agents/agentic-workflows.agent.md

Lines changed: 11 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ Workflows may optionally include:
3030
- Workflow files: `.github/workflows/*.md` and `.github/workflows/**/*.md`
3131
- Workflow lock files: `.github/workflows/*.lock.yml`
3232
- Shared components: `.github/workflows/shared/*.md`
33-
- Configuration: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/github-agentic-workflows.md
33+
- Configuration: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/github-agentic-workflows.md
3434

3535
## Problems This Solves
3636

@@ -52,7 +52,7 @@ When you interact with this agent, it will:
5252
### Create New Workflow
5353
**Load when**: User wants to create a new workflow from scratch, add automation, or design a workflow that doesn't exist yet
5454

55-
**Prompt file**: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/create-agentic-workflow.md
55+
**Prompt file**: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/create-agentic-workflow.md
5656

5757
**Use cases**:
5858
- "Create a workflow that triages issues"
@@ -62,7 +62,7 @@ When you interact with this agent, it will:
6262
### Update Existing Workflow
6363
**Load when**: User wants to modify, improve, or refactor an existing workflow
6464

65-
**Prompt file**: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/update-agentic-workflow.md
65+
**Prompt file**: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/update-agentic-workflow.md
6666

6767
**Use cases**:
6868
- "Add web-fetch tool to the issue-classifier workflow"
@@ -72,7 +72,7 @@ When you interact with this agent, it will:
7272
### Debug Workflow
7373
**Load when**: User needs to investigate, audit, debug, or understand a workflow, troubleshoot issues, analyze logs, or fix errors
7474

75-
**Prompt file**: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/debug-agentic-workflow.md
75+
**Prompt file**: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/debug-agentic-workflow.md
7676

7777
**Use cases**:
7878
- "Why is this workflow failing?"
@@ -82,7 +82,7 @@ When you interact with this agent, it will:
8282
### Upgrade Agentic Workflows
8383
**Load when**: User wants to upgrade workflows to a new gh-aw version or fix deprecations
8484

85-
**Prompt file**: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/upgrade-agentic-workflows.md
85+
**Prompt file**: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/upgrade-agentic-workflows.md
8686

8787
**Use cases**:
8888
- "Upgrade all workflows to the latest version"
@@ -92,7 +92,7 @@ When you interact with this agent, it will:
9292
### Create a Report-Generating Workflow
9393
**Load when**: The workflow being created or updated produces reports — recurring status updates, audit summaries, analyses, or any structured output posted as a GitHub issue, discussion, or comment
9494

95-
**Prompt file**: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/report.md
95+
**Prompt file**: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/report.md
9696

9797
**Use cases**:
9898
- "Create a weekly CI health report"
@@ -102,7 +102,7 @@ When you interact with this agent, it will:
102102
### Create Shared Agentic Workflow
103103
**Load when**: User wants to create a reusable workflow component or wrap an MCP server
104104

105-
**Prompt file**: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/create-shared-agentic-workflow.md
105+
**Prompt file**: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/create-shared-agentic-workflow.md
106106

107107
**Use cases**:
108108
- "Create a shared component for Notion integration"
@@ -112,7 +112,7 @@ When you interact with this agent, it will:
112112
### Fix Dependabot PRs
113113
**Load when**: User needs to close or fix open Dependabot PRs that update dependencies in generated manifest files (`.github/workflows/package.json`, `.github/workflows/requirements.txt`, `.github/workflows/go.mod`)
114114

115-
**Prompt file**: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/dependabot.md
115+
**Prompt file**: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/dependabot.md
116116

117117
**Use cases**:
118118
- "Fix the open Dependabot PRs for npm dependencies"
@@ -122,7 +122,7 @@ When you interact with this agent, it will:
122122
### Analyze Test Coverage
123123
**Load when**: The workflow reads, analyzes, or reports test coverage — whether triggered by a PR, a schedule, or a slash command. Always consult this prompt before designing the coverage data strategy.
124124

125-
**Prompt file**: https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/test-coverage.md
125+
**Prompt file**: https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/test-coverage.md
126126

127127
**Use cases**:
128128
- "Create a workflow that comments coverage on PRs"
@@ -169,10 +169,10 @@ gh aw compile --validate
169169

170170
## Important Notes
171171

172-
- Always reference the instructions file at https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/github-agentic-workflows.md for complete documentation
172+
- Always reference the instructions file at https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/github-agentic-workflows.md for complete documentation
173173
- Use the MCP tool `agentic-workflows` when running in GitHub Copilot Cloud
174174
- Workflows must be compiled to `.lock.yml` files before running in GitHub Actions
175175
- **Bash tools are enabled by default** - Don't restrict bash commands unnecessarily since workflows are sandboxed by the AWF
176176
- Follow security best practices: minimal permissions, explicit network access, no template injection
177-
- **Network configuration**: Use ecosystem identifiers (`node`, `python`, `go`, etc.) or explicit FQDNs in `network.allowed`. Bare shorthands like `npm` or `pypi` are **not** valid. See https://github.com/github/gh-aw/blob/v0.68.7/.github/aw/network.md for the full list of valid ecosystem identifiers and domain patterns.
177+
- **Network configuration**: Use ecosystem identifiers (`node`, `python`, `go`, etc.) or explicit FQDNs in `network.allowed`. Bare shorthands like `npm` or `pypi` are **not** valid. See https://github.com/github/gh-aw/blob/v0.69.2/.github/aw/network.md for the full list of valid ecosystem identifiers and domain patterns.
178178
- **Single-file output**: When creating a workflow, produce exactly **one** workflow `.md` file. Do not create separate documentation files (architecture docs, runbooks, usage guides, etc.). If documentation is needed, add a brief `## Usage` section inside the workflow file itself.

.github/aw/actions-lock.json

Lines changed: 9 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -40,20 +40,20 @@
4040
"version": "v4.0.0",
4141
"sha": "4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd"
4242
},
43-
"github/gh-aw-actions/setup-cli@v0.68.7": {
43+
"github/gh-aw-actions/setup-cli@v0.69.2": {
4444
"repo": "github/gh-aw-actions/setup-cli",
45-
"version": "v0.68.7",
46-
"sha": "f52802884d655622f0a2dfd6d6a2250983c95523"
45+
"version": "v0.69.2",
46+
"sha": "dca90cae5e2ec0ef2275f97efcb832793c86e082"
4747
},
48-
"github/gh-aw-actions/setup@v0.68.7": {
48+
"github/gh-aw-actions/setup@v0.69.2": {
4949
"repo": "github/gh-aw-actions/setup",
50-
"version": "v0.68.7",
51-
"sha": "f52802884d655622f0a2dfd6d6a2250983c95523"
50+
"version": "v0.69.2",
51+
"sha": "dca90cae5e2ec0ef2275f97efcb832793c86e082"
5252
},
53-
"github/gh-aw/actions/setup@v0.68.7": {
53+
"github/gh-aw/actions/setup@v0.69.2": {
5454
"repo": "github/gh-aw/actions/setup",
55-
"version": "v0.68.7",
56-
"sha": "f916d5de5199f770e46151d455ab1f0288981cc9"
55+
"version": "v0.69.2",
56+
"sha": "f0002540c946a84f7f6f0deb67e53d2ea89b9567"
5757
},
5858
"softprops/[email protected]": {
5959
"repo": "softprops/action-gh-release",

0 commit comments

Comments
 (0)