Add MCP Inspector agentic workflow for shared MCP server auditing

[Copilot]

This PR adds a new agentic workflow that systematically inspects and documents all shared MCP (Model Context Protocol) server configurations in the repository.

What's New

A new workflow .github/workflows/mcp-inspector.md that:

• Imports all shared MCP configurations from .github/workflows/shared/mcp/*.md (16 out of 17 configurations)
• Systematically reads each configuration file to extract server details, connection types, available tools, and required secrets
• Generates a comprehensive inspection report with inventory tables and server statistics
• Creates discussions in the "Audits" category to share findings with the team

Workflow Details

Engine: GitHub Copilot CLI (copilot) with strict mode enabled

Schedule: Runs weekly on Mondays at 10am UTC (also manually triggerable)

MCP Servers Inspected: arxiv, ast-grep, brave, context7, datadog, deepwiki, fabric-rti, gh-aw, markitdown, microsoft-docs, notion, sentry, serena, server-memory, slack, tavily

Output Format:

# 🔍 MCP Inspector Report

## Summary
- Servers Inspected: 16
- By Type: HTTP: X, Container: Y, Local: Z

## Inventory Table
| Server | Type | Tools | Secrets | Status |
|--------|------|-------|---------|--------|
| ...    | ...  | ...   | ...     | ✅/⚠️/❌ |

Key Features

• Cache Memory Storage: Saves inspection data to /tmp/gh-aw/cache-memory/mcp-inspections/ for historical trend analysis
• Safe Outputs: Uses safe-outputs.create-discussion to create discussions without requiring write permissions on the main job
• Comprehensive Analysis: Documents server configuration status, available tools, secret requirements, and any issues
• Actionable Recommendations: Provides suggestions for improving MCP configurations

Note on azure.md

The azure.md configuration file is not imported due to a schema validation issue with the entrypointArgs field. The workflow still manually inspects this file and includes it in the report.

Validation

• ✅ Compiles successfully (257.2 KB lock file generated)
• ✅ All imports processed correctly
• ✅ MCP servers properly configured in compiled workflow
• ✅ Workflow recognized by gh-aw status command

This workflow helps maintain visibility into our MCP server ecosystem and identify configuration issues or improvements needed.

Original prompt

Add a shared mcp inspector agentic workflow.

• imports all shared agentic workflows under shared/mcp
• prompts the agent to systematically read the source of the shared agentic workflow and investigate the list of available tools.

Generate a table listing the MCP server name, and statistics about the available tools / error state.

Generate a discussion with the results under "Audits"

---

💬 Share your feedback on Copilot coding agent for the chance to win a $200 gift card! Click here to start the survey.

[pelikhan]

@copilot use copilot engine, strict mode

[Copilot]

@copilot use copilot engine, strict mode

Changed engine to copilot. Strict mode was already enabled in the workflow. (commit: TBD)