[gh-aw-guide-sync] Refresh gh-aw-guide for v0.79.4 and v0.79.6#20
Closed
github-actions[bot] wants to merge 1 commit into
Closed
[gh-aw-guide-sync] Refresh gh-aw-guide for v0.79.4 and v0.79.6#20github-actions[bot] wants to merge 1 commit into
github-actions[bot] wants to merge 1 commit into
Conversation
Apply updates from stable releases v0.79.4 and v0.79.6: Breaking changes (P0): - dangerously-disable-sandbox-agent now requires string justification (≥20 chars) - user-invokable and disable-model-invocation fields removed from schema New features (P2): - models: frontmatter for custom model pricing - safe-outputs.timeout-minutes configurable (default raised 30→45 min) - create-check-run target: pr / * for PR-targeted check runs - copilot-requests: write explicitly recommended for Copilot workflows Security (P1/P2): - AWF 0.27.2 firewall runtime update - Container image digest pinning restored (v0.79.6) - Go MCP server 4-process limit guardrail Bug fixes (P2): - Milestone cache scoped per owner/repo - SHA-pinning for setup-cli in custom steps: workflows - Failure-issue permission denials handled gracefully - Windows CLI deadlock fixed Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Owner
|
Closing — superseded by manual refresh that goes further (full v0.79.4 → v0.79.6 → v0.79.8 baseline, not just v0.79.4 / v0.79.6). Canonical commits on
Branch will be auto-deleted by the repo branch-cleanup policy. |
PureWeen
added a commit
that referenced
this pull request
Jun 15, 2026
…aw v0.79.8 PROBLEM: - gh-aw create-pull-request safe-output has no deduplicate-by-title field (only create-issue has that — verified against upstream pkg/workflow/create_issue.go). - This workflow runs on schedule: daily. Each run that found drift opened a brand-new draft PR with a fresh branch suffix. - PureWeen/skills PRs #19, #20, #21, #22, #23 piled up over 5 days for the same v0.79.4 / v0.79.6 sync, because the previous draft was never merged. FIX: - New pre-scraper step 'Dedupe — skip if a sync PR is already open' uses gh pr list with --search '"[gh-aw-guide-sync]" in:title' to count open sync PRs. - If any exist, the staleness check is skipped and a stub staleness.json with changes_detected: false is written so the agent noops downstream instead of producing yet another duplicate PR. - Requires the existing pull-requests: read permission only (no extra scope). SIDE EFFECT: - gh aw was upgraded from v0.77.5 to v0.79.8 to recompile, so the .lock.yml now uses the v0.79.8 compiler (AWF firewall 0.27.2, hardened safe-outputs config, AIC telemetry). This is the same baseline this repo's gh-aw-guide skill now documents. Compile warnings (informational, not blocking): - /tmp/ path in prompt — pre-existing, would be a separate refactor. - 2 GH_AW_* env extractions for shell-injection prevention applied automatically. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Releases covered
Previous guide was current through v0.77.5.
P0/P1/P2 items implemented
🔴 P0 — Breaking changes (factually wrong without update)
dangerously-disable-sandbox-agent: truerejected — now requires string justification ≥ 20 chars (v0.79.4 #38325)SKILL.mduser-invokable:anddisable-model-invocation:removed from schema — produce validation errors (v0.79.4 #38328)references/migrations.md🟠 P1 — Security-relevant changes
references/migrations.mdreferences/architecture.md🟡 P2 — New features, new config options, workflow-author-visible fixes
models:frontmatter — custom model pricing overlay (v0.79.4 #38276)SKILL.mdsafe-outputs.timeout-minutes— configurable safe_outputs timeout; default raised 30 → 45 min (v0.79.4 #38361)SKILL.mdcreate-check-runadded to safe outputs table;target: "pr"/target: "*"for PR-targeted check runs (v0.79.4 #38237)SKILL.mdcopilot-requests: writeexplicitly recommended for all Copilot-targeted workflows (v0.79.4 #38404, v0.79.6 #38410)SKILL.mdghinvocations — resource safety guardrail (v0.79.6 #38544)references/architecture.mdassign_milestoneno longer bleeds across multi-repo runs (v0.79.4 #38342)references/migrations.mdsetup-cliin customsteps:workflows (v0.79.4 #38344)references/migrations.mdissues: writeis absent (v0.79.4 #38273)references/migrations.mdreferences/migrations.mdsync.yamllast_reviewed_releaseupdated tov0.79.6sync.yamlSKILL.mdP3 items skipped (internal/cosmetic)
gh-aw.aicasdoubleValueon OTLP spans (v0.79.6 #38550 #38510 #38580)prefetch_strategyflag onweekly-blog-post-writer(v0.79.6 #38622)agentics-maintenance(v0.79.6 #38616)unknown_model_ai_creditsdetection (v0.79.6 #38615 #38610)Upstream release notes