Upgrade to gh-aw 0.68.3 and compile all workflow#26798
Open
tadelesh wants to merge 1 commit into
Open
Conversation
tadelesh
requested review from
a team,
RickWinter and
jhendrixMSFT
as code owners
Contributor
There was a problem hiding this comment.
Pull request overview
This PR updates the repository’s GitHub Agentic Workflows (gh-aw) artifacts to align with gh-aw v0.68.3 and regenerates the affected workflow lock files.
Changes:
- Regenerated
mgmt-review.lock.ymlwith gh-awv0.68.3(updated pinned action SHAs, container images, and compiled workflow scaffolding). - Updated
issue-triage.lock.ymlrunner/permissions as part of the recompile. - Updated gh-aw documentation links and the local action lock registry.
Reviewed changes
Copilot reviewed 4 out of 4 changed files in this pull request and generated 4 comments.
| File | Description |
|---|---|
| .github/workflows/mgmt-review.lock.yml | Recompiled lock file for the management PR review workflow using gh-aw v0.68.3 and updated pinned dependencies/images. |
| .github/workflows/issue-triage.lock.yml | Recompiled lock file for issue triage; changes include runner label and expanded job permissions. |
| .github/aw/actions-lock.json | Updated locked action refs; adds additional entries beyond the versions referenced by current workflows. |
| .github/agents/agentic-workflows.agent.md | Updated documentation links to gh-aw v0.68.3 prompt/config references. |
Comments suppressed due to low confidence (2)
.github/workflows/issue-triage.lock.yml:85
- PR description says “No real workflow change”, but this hunk changes the runner label and expands token permissions (adds
discussions: writeand changespull-requeststowrite). Please either update the PR description to reflect these functional/security-impacting changes or adjust the compiled workflow to keep behavior/permissions equivalent to the prior version.
runs-on: ubuntu-slim
permissions:
actions: read
contents: read
discussions: write
issues: write
pull-requests: write
.github/workflows/issue-triage.lock.yml:1381
- The
safe_outputsjob is granteddiscussions: writeandpull-requests: write. If this workflow’s safe outputs are intended to operate only on issues, please disable PR/discussion targets in the workflow source so the compiled lock file can drop these write permissions.
runs-on: ubuntu-slim
permissions:
contents: read
discussions: write
issues: write
pull-requests: write
Member
Author
|
@benbp Could you help to approve this? |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No real workflow change. Just consolidate version and compile gh aw.
@benbp Please help to review this PR.