Skip to content

[q] Add explicit permissions to 7 workflows #2605

New issue
New issue
Closed
#2607
Closed
[q] Add explicit permissions to 7 workflows#2605
#2607
Labels
automationworkflow-optimization
@github-actions

Description

@github-actions
github-actions
bot
opened on Oct 27, 2025

Q Workflow Optimization Report

Investigation Summary

This PR is the result of a /q investigate permissions command investigation into workflow permissions across the gh-aw repository, analyzing live workflow run data from the past 7 days.

Issues Found (from live data)

Missing Explicit Permissions

Problem: 7 workflows lacked explicit permissions: declarations, relying on GitHub Actions default permissions.

Evidence from Live Runs:

  • Run #18840321667 (Smoke Copilot): 9 warnings - "Permission denied and could not request permission from user"
  • Pattern: copilot-permission-denied
  • Root Cause: Missing explicit permission declarations led to reliance on defaults
  • Data Sources: Analyzed 15 workflow runs over 7 days (2M+ tokens, $1.64 cost)

Workflows Without Explicit Permissions

  1. smoke-copilot.md
  2. smoke-claude.md
  3. smoke-codex.md
  4. smoke-opencode.md
  5. smoke-copilot.firewall.md
  6. daily-news.md
  7. notion-issue-summary.md

Changes Made

Added Explicit Permissions

All 7 workflows now have explicit permissions: declarations following the principle of least privilege:

Smoke Workflows (5 files)

Pattern: Read-only main job + safe-outputs for write operations

permissions:
  contents: read    # For reading repository code
  actions: read     # For workflow metadata

Files modified:

  • smoke-copilot.md
  • smoke-claude.md
  • smoke-codex.md
  • smoke-opencode.md
  • smoke-copilot.firewall.md

Key Point: These workflows use safe-outputs.create-issue with strict: true, so write permissions are handled by separate safe-outputs jobs.

Daily News Workflow

permissions:
  contents: read      # For reading repository code
  discussions: write  # Required for safe-outputs create-discussion job
  actions: read       # For workflow metadata

Note: Uses safe-outputs.create-discussion but NOT in strict mode, so requires explicit write permission.

Notion Issue Summary Workflow

permissions:
  contents: read    # For reading repository code
  issues: read      # For reading issue content
  actions: read     # For workflow metadata

Note: Read-only workflow, no safe-outputs used.

Validation

All modified workflows compiled successfully using gh-aw compile:

  • ✅ smoke-copilot.md (202.8 KB)
  • ✅ smoke-claude.md (177.7 KB)
  • ✅ smoke-codex.md (160.1 KB)
  • ✅ smoke-opencode.md (136.9 KB)
  • ✅ smoke-copilot.firewall.md (202.9 KB)
  • ✅ daily-news.md (210.3 KB)
  • ✅ notion-issue-summary.md (163.1 KB)

Expected Improvements

Security

  • Explicit permission model: No longer relies on implicit GitHub Actions defaults
  • Reduced attack surface: Main AI jobs run with minimal read-only permissions
  • Compliance: Follows principle of least privilege

Reliability

  • Protection from default changes: Workflows won't break if GitHub changes default permissions
  • Clear documentation: Each workflow explicitly declares what it can access
  • Safe-outputs pattern: Write operations isolated in separate jobs

Maintainability

  • Self-documenting: Permissions field shows exactly what each workflow can do
  • Easier auditing: Clear view of permission requirements
  • Consistent pattern: All workflows follow same permission model

Key Learnings

  1. Strict Mode Behavior: Workflows with strict: true cannot have write permissions in main job
  2. Safe-Outputs Architecture: Issue/discussion creation happens in separate jobs with appropriate permissions
  3. Explicit > Implicit: All workflows should declare permissions explicitly
  4. Read-Only Default: Main AI jobs should have minimal read permissions

Investigation Details

Data Sources (all from live workflow runs - no fabricated data):

  • Workflow Runs Analyzed: 15 runs
  • Time Period: Last 7 days (2025-10-20 to 2025-10-27)
  • Total Duration: 40.4 minutes
  • Total Tokens: 2,053,997
  • Total Cost: $1.64
  • Run IDs: 18840301682, 18840299097, 18821713918, 18821735224, and 11 others
  • Logs Location: /tmp/gh-aw/aw-mcp/logs/

References

Note: This PR modifies only .md workflow files. Lock files (.lock.yml) will be regenerated automatically after merge.

AI generated by Q

Note

This was originally intended as a pull request, but the git push operation failed.

Workflow Run: View run details and download patch artifact

The patch file is available as an artifact (aw.patch) in the workflow run linked above.
To apply the patch locally:

# Download the artifact from the workflow run https://github.com/githubnext/gh-aw/actions/runs/18840301682
# (Use GitHub MCP tools if gh CLI is not available)
gh run download 18840301682 -n aw.patch
# Apply the patch
git am aw.patch
Show patch preview (135 of 135 lines) 
From 56f423c02aa790a4c81f6671942f07d90deed501 Mon Sep 17 00:00:00 2001
From: Q <github-actions[bot]@users.noreply.github.com>
Date: Mon, 27 Oct 2025 12:12:50 +0000
Subject: [PATCH] Add explicit permissions to 7 workflows

- Add explicit permissions declarations to workflows that relied on defaults
- Follow principle of least privilege (read-only for main AI job)
- Safe-outputs jobs receive write permissions automatically
- Fixes missing permissions in smoke tests and daily-news workflows

Workflows updated:
- smoke-copilot.md: contents:read, actions:read
- smoke-claude.md: contents:read, actions:read
- smoke-codex.md: contents:read, actions:read
- smoke-opencode.md: contents:read, actions:read
- smoke-copilot.firewall.md: contents:read, actions:read
- daily-news.md: contents:read, discussions:write, actions:read
- notion-issue-summary.md: contents:read, issues:read, actions:read

Related to #2594 - Q investigation of workflow permissions
---
 .github/workflows/daily-news.md             | 5 +++++
 .github/workflows/notion-issue-summary.md   | 4 ++++
 .github/workflows/smoke-claude.md           | 3 +++
 .github/workflows/smoke-codex.md            | 3 +++
 .github/workflows/smoke-copilot.firewall.md | 3 +++
 .github/workflows/smoke-copilot.md          | 3 +++
 .github/workflows/smoke-opencode.md         | 3 +++
 7 files changed, 24 insertions(+)

diff --git a/.github/workflows/daily-news.md b/.github/workflows/daily-news.md
index 77454d6..512795a 100644
--- a/.github/workflows/daily-news.md
+++ b/.github/workflows/daily-news.md
@@ -7,6 +7,11 @@ on:
 
 engine: copilot
 
+permissions:
+  contents: read      # For reading repository code
+  discussions: write  # Required for safe-outputs create-discussion job
+  actions: read       # For workflow metadata
+
 network:
   firewall: true
 
diff --git a/.github/workflows/notion-issue-summary.md b/.github/workflows/notion-issue-summary.md
index d5dcd37..205721f 100644
--- a/.github/workflows/notion-issue-summary.md
+++ b/.gith
... (truncated)

Metadata

Metadata

Assignees

No one assigned

    Labels

    automationworkflow-optimization

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions