Inject GH_HOST configuration step into compiled agent job for GHE Cloud data residency#21408
Merged
Inject GH_HOST configuration step into compiled agent job for GHE Cloud data residency#21408
Conversation
…ta residency GH_HOST support Co-authored-by: lpcox <15877973+lpcox@users.noreply.github.com>
Copilot
AI
changed the title
[WIP] Fix GH_HOST injection in GHE Cloud workflows
Inject GH_HOST configuration step into compiled agent job for GHE Cloud data residency
Mar 17, 2026
pelikhan
approved these changes
Mar 17, 2026
Contributor
There was a problem hiding this comment.
Pull request overview
Injects a compiler-generated step to configure the gh CLI host for GitHub Enterprise Cloud data residency (*.ghe.com) so compiled workflows don’t fail on the first gh invocation due to missing GH_HOST.
Changes:
- Inject a new
Configure gh CLI for GitHub Enterprisestep into the compiled agent job immediately after creating the temp directory. - Add/update unit tests to validate the injected step’s presence and ordering.
- Regenerate golden test outputs and compiled workflow lockfiles to reflect the new step.
Reviewed changes
Copilot reviewed 179 out of 179 changed files in this pull request and generated no comments.
Show a summary per file
| File | Description |
|---|---|
| pkg/workflow/compiler_yaml_main_job.go | Emits the new compiler-generated gh CLI configuration step before user steps. |
| pkg/workflow/configure_ghe_step_test.go | Adds a test asserting the step exists and is ordered correctly. |
| pkg/workflow/checkout_runtime_order_test.go | Updates step-order assertions to account for the injected step. |
| pkg/workflow/testdata/wasm_golden/TestWasmGolden_CompileFixtures/with-imports.golden | Golden output updated to include the injected step. |
| pkg/workflow/testdata/wasm_golden/TestWasmGolden_CompileFixtures/smoke-copilot.golden | Golden output updated to include the injected step. |
| pkg/workflow/testdata/wasm_golden/TestWasmGolden_CompileFixtures/basic-copilot.golden | Golden output updated to include the injected step. |
| .github/workflows/workflow-skill-extractor.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/workflow-normalizer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/workflow-health-manager.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/workflow-generator.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/weekly-safe-outputs-spec-review.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/weekly-issue-summary.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/weekly-editors-health-check.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/video-analyzer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/update-astro.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/unbloat-docs.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/ubuntu-image-analyzer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/typist.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/tidy.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/test-workflow.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/test-project-url-default.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/test-dispatcher.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/test-create-pr-error-handling.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/terminal-stylist.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/technical-doc-writer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/super-linter.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/sub-issue-closer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/step-name-alignment.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/static-analysis-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/stale-repo-identifier.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-workflow-call.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-workflow-call-with-inputs.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-update-cross-repo-pr.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-test-tools.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-temporary-id.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-project.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-multi-pr.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-gemini.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-create-cross-repo-pr.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-copilot.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-copilot-arm.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-codex.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-claude.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-call-workflow.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-agent-scoped-approved.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-agent-public-none.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-agent-public-approved.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-agent-all-none.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/smoke-agent-all-merged.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/slide-deck-maintainer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/sergo.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/semantic-function-refactor.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/security-review.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/security-compliance.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/security-alert-burndown.campaign.g.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/scout.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/schema-consistency-checker.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/safe-output-health.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/research.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/repository-quality-improver.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/repo-tree-map.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/repo-audit-analyzer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/release.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/refiner.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/q.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/python-data-charts.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/prompt-clustering-analysis.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/pr-triage-agent.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/pr-nitpick-reviewer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/portfolio-analyst.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/poem-bot.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/plan.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/pdf-summary.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/org-health-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/notion-issue-summary.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/metrics-collector.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/mergefest.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/mcp-inspector.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/lockfile-stats.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/layout-spec-maintainer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/jsweep.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/issue-triage-agent.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/issue-monster.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/issue-arborist.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/instructions-janitor.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/hourly-ci-cleaner.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/grumpy-reviewer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/gpclean.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/go-pattern-detector.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/go-logger.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/go-fan.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/glossary-maintainer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/github-remote-mcp-auth-test.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/github-mcp-tools-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/github-mcp-structural-analysis.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/functional-pragmatist.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/firewall.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/firewall-escape.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/example-workflow-analyzer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/example-permissions-warning.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/duplicate-code-detector.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/draft-pr-cleanup.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/docs-noob-tester.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/discussion-task-miner.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/dictation-prompt.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/developer-docs-consolidator.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/dev.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/dev-hawk.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/dependabot-go-checker.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/dependabot-burner.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/delight.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/deep-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/dead-code-remover.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-workflow-updater.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-testify-uber-super-expert.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-team-status.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-team-evolution-insights.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-syntax-error-quality.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-semgrep-scan.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-security-red-team.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-secrets-analysis.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-safe-outputs-conformance.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-safe-output-optimizer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-repo-chronicle.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-rendering-scripts-verifier.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-regulatory.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-performance-summary.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-observability-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-news.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-multi-device-docs-tester.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-mcp-concurrency-analysis.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-malicious-code-scan.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-issues-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-function-namer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-firewall-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-file-diet.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-fact.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-doc-updater.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-doc-healer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-copilot-token-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-compiler-quality.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-code-metrics.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-cli-tools-tester.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-cli-performance.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-choice-test.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-assign-issue-to-user.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/daily-architecture-diagram.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/craft.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/copilot-session-insights.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/copilot-pr-prompt-analysis.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/copilot-pr-nlp-analysis.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/copilot-pr-merged-report.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/copilot-cli-deep-research.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/copilot-agent-analysis.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/contribution-check.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/constraint-solving-potd.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/commit-changes-analyzer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/codex-github-remote-mcp-test.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/code-simplifier.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/code-scanning-fixer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/cloclo.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/cli-version-checker.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/cli-consistency-checker.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/claude-code-user-docs-review.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/ci-doctor.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/ci-coach.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/changeset.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/breaking-change-checker.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/brave.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/bot-detection.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/blog-auditor.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/auto-triage-issues.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/audit-workflows.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/artifacts-summary.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/archie.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/ai-moderator.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/agent-persona-explorer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/agent-performance-analyzer.lock.yml | Regenerated compiled lockfile including the injected step. |
| .github/workflows/ace-editor.lock.yml | Regenerated compiled lockfile including the injected step. |
Comments suppressed due to low confidence (4)
pkg/workflow/configure_ghe_step_test.go:1
- This test won’t compile: "for j := range i + 1" attempts to range over an int. Replace it with a conventional counted loop (e.g., iterate j from 0 to i inclusive) to compute endIdx.
pkg/workflow/checkout_runtime_order_test.go:1 - The length guard is inconsistent with later indexing: the test accesses stepNames[6], which requires len(stepNames) >= 7. Update the guard (and its error message) to require at least 7 steps to avoid an index-out-of-range panic.
pkg/workflow/checkout_runtime_order_test.go:1 - The length guard is inconsistent with later indexing: the test accesses stepNames[6], which requires len(stepNames) >= 7. Update the guard (and its error message) to require at least 7 steps to avoid an index-out-of-range panic.
pkg/workflow/compiler_yaml_main_job.go:1 - The comment suggests this applies to "GHES" as well as ".ghe.com", but the PR description is specifically about GHE Cloud data residency (.ghe.com). To avoid misleading future readers, consider tightening the wording to match the actual supported host patterns handled by configure_gh_for_ghe.sh (e.g., “GHE Cloud data residency (*.ghe.com)”).
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
You can also share your feedback on Copilot code review. Take the survey.
Contributor
|
📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing... |
Contributor
|
✅ All tools validated successfully! Agent Container Smoke Test confirms agent container is ready. |
Contributor
|
✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟 |
Contributor
|
🎬 THE END — Smoke Claude MISSION: ACCOMPLISHED! The hero saves the day! ✨ |
Contributor
Agent Container Tool Check
Result: 12/12 tools available ✅ Overall Status: PASS
|
Contributor
Smoke Test (Codex)Merged PR titles: "docs(aw): add "Creating Command Workflows" section to create-agentic-workflow.md"; "fix(cli): resolve 10 consistency issues across command help text"
Warning
|
Contributor
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
Contributor
There was a problem hiding this comment.
💥 Automated smoke test review - all systems nominal!
💥 [THE END] — Illustrated by Smoke Claude
| // picks up the correct host without manual per-step configuration. | ||
| // Must run after the setup action (so the script is available at /opt/gh-aw/actions/) | ||
| // and before any custom steps that invoke gh CLI commands. | ||
| yaml.WriteString(" - name: Configure gh CLI for GitHub Enterprise\n") |
Contributor
There was a problem hiding this comment.
The new step correctly injects the GHE configuration before custom user steps. Consider extracting the step name string as a named constant to make it referenceable in tests (currently tests use strings.Contains with the raw string "run: bash /opt/gh-aw/actions/configure_gh_for_ghe.sh").
| t.Logf("Agent job section:\n%s", agentJobSection[:min(1500, len(agentJobSection))]) | ||
| } | ||
|
|
||
| if !strings.Contains(agentJobSection, "run: bash /opt/gh-aw/actions/configure_gh_for_ghe.sh") { |
Contributor
There was a problem hiding this comment.
Good use of strings.Contains to verify the step injection. It may be worth adding an additional assertion that the step appears after Create gh-aw temp directory and before any custom steps, to guard against insertion-order regressions.
Contributor
|
Smoke Test 23203502701 Results —
Overall:
|
Contributor
There was a problem hiding this comment.
This PR injects a GHE configuration step across all compiled lock files. The change is consistent and well-placed. Two minor observations left as inline comments: (1) consider a no-op guard for GitHub.com runs, (2) ensure the token isn't echoed in step logs. Overall, the pattern looks correct for GHE Cloud data residency support.
📰 BREAKING: Report filed by Smoke Copilot
| - name: Configure gh CLI for GitHub Enterprise | ||
| run: bash /opt/gh-aw/actions/configure_gh_for_ghe.sh | ||
| env: | ||
| GH_TOKEN: ${{ github.token }} |
Contributor
There was a problem hiding this comment.
The GH_TOKEN: $\{\{ github.token }} env var is used here for GHE configuration. This is correct since the token needs to be available for gh auth login or similar — just make sure configure_gh_for_ghe.sh doesn't log or expose the token value in step output.
| persist-credentials: false | ||
| - name: Create gh-aw temp directory | ||
| run: bash /opt/gh-aw/actions/create_gh_aw_tmp_dir.sh | ||
| - name: Configure gh CLI for GitHub Enterprise |
Contributor
There was a problem hiding this comment.
✅ Good addition — the GHE configuration step is correctly placed before Git credentials setup. Consider whether configure_gh_for_ghe.sh should be a no-op on GitHub.com (e.g., check if GH_HOST is set before running) to avoid unnecessary overhead on standard runs.
Contributor
|
📰 VERDICT: Smoke Copilot has concluded. All systems operational. This is a developing story. 🎤 |
…d fix reply_to_pr_review_comment smoke test (#21421) * Initial plan * fix: add set_issue_type to actions safe_outputs_tools.json and fix reply_to_pr_review_comment smoke test instruction Co-authored-by: lpcox <15877973+lpcox@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: lpcox <15877973+lpcox@users.noreply.github.com>
github-actions bot
added a commit
that referenced
this pull request
Mar 17, 2026
The compiled agent job now automatically runs configure_gh_for_ghe.sh before agent execution (injected in #21408). Update the GHES section to reflect that no manual configuration is required for the agent itself; manual sourcing is only needed for custom steps outside the agent sandbox. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This was referenced Mar 17, 2026
pelikhan
added a commit
that referenced
this pull request
Mar 17, 2026
…21437) The compiled agent job now automatically runs configure_gh_for_ghe.sh before agent execution (injected in #21408). Update the GHES section to reflect that no manual configuration is required for the agent itself; manual sourcing is only needed for custom steps outside the agent sandbox. Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> Co-authored-by: Peli de Halleux <pelikhan@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
On GHE Cloud data residency (
*.ghe.com) instances, compiled workflows fail at the firstghCLI step becauseGH_HOSTis never set, causingghto report no known GitHub host.Changes
pkg/workflow/compiler_yaml_main_job.go— Injects a new compiler-generated step immediately afterCreate gh-aw temp directoryand before any user-definedsteps::The existing
configure_gh_for_ghe.shscript detectsGITHUB_SERVER_URLand either exits early (no-op ongithub.com) or authenticates theghCLI and writesGH_HOST=<slug>.ghe.comtoGITHUB_ENV, propagating the correct host to all subsequent steps in the job.The Copilot CLI install step already pins
GH_HOST: github.comat step level (it downloads from github.com regardless of the workflow's enterprise host), so there is no conflict.pkg/workflow/configure_ghe_step_test.go— New test asserting the step is present and ordered correctly relative toCreate gh-aw temp directoryand user custom steps.pkg/workflow/checkout_runtime_order_test.go— Updated step-index assertions to account for the new step.pkg/workflow/testdata/wasm_golden/and.github/workflows/*.lock.yml— Golden files and all 173 compiled lock files regenerated.Warning
Firewall rules blocked me from connecting to one or more addresses (expand for details)
I tried to connect to the following addresses, but was blocked by firewall rules:
https://api.github.com/graphql/usr/bin/gh /usr/bin/gh api graphql -f query=query($owner: String!, $name: String!) { repository(owner: $owner, name: $name) { hasDiscussionsEnabled } } -f owner=github -f name=gh-aw(http block)/usr/bin/gh /usr/bin/gh api graphql -f query=query($owner: String!, $name: String!) { repository(owner: $owner, name: $name) { hasDiscussionsEnabled } } -f owner=github -f name=gh-aw 64/pkg/tool/linurev-parse /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel x_amd64/link /usr/bin/git git(http block)/usr/bin/gh /usr/bin/gh api graphql -f query=query($owner: String!, $name: String!) { repository(owner: $owner, name: $name) { hasDiscussionsEnabled } } -f owner=github -f name=gh-aw git /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git fda67115..HEAD gh /usr/bin/git git(http block)https://api.github.com/orgs/test-owner/actions/secrets/usr/bin/gh gh api /orgs/test-owner/actions/secrets --jq .secrets[].name GOSUMDB GOWORK 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE ules/.bin/sh GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh api /orgs/test-owner/actions/secrets --jq .secrets[].name --show-toplevel go /usr/bin/git -json tmain.go 0/x64/bin/node git rev-�� --show-toplevel ache/go/1.25.0/x64/pkg/tool/linux_amd64/link /usr/bin/git SameOutput384497git GO111MODULE 167798/b392/impo--show-toplevel git(http block)https://api.github.com/repos/actions/ai-inference/git/ref/tags/v1/usr/bin/gh gh api /repos/actions/ai-inference/git/ref/tags/v1 --jq .object.sha -bool -buildtags imeOrderInCustomSteps -errorsas -ifaceassert -nilfunc git push�� -v origin /usr/bin/bash(http block)/usr/bin/gh gh api /repos/actions/ai-inference/git/ref/tags/v1 --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel x_amd64/vet /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel x_amd64/vet /usr/bin/git git(http block)/usr/bin/gh gh api /repos/actions/ai-inference/git/ref/tags/v1 --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel git /usr/bin/git git rev-�� --show-toplevel git /opt/pipx_bin/bash --show-toplevel git /usr/bin/git bash(http block)https://api.github.com/repos/actions/checkout/git/ref/tags/v3/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v3 --jq .object.sha se 0264726/b117/vet.cfg ache/go/1.25.0/x64/pkg/tool/linux_amd64/vet(http block)/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v3 --jq .object.sha --show-toplevel git /usr/bin/basename bin 2>/dev/nullgit --others /usr/local/bin/b--show-toplevel basename /tmp��(http block)/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v3 --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel git /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel git /usr/bin/git git(http block)https://api.github.com/repos/actions/checkout/git/ref/tags/v5/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v5 --jq .object.sha(http block)/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v5 --jq .object.sha INVALID,NEW -j DROP(http block)/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v5 --jq .object.sha -t security /usr/bin/git OUTPUT -d 168.63.129.16 git rev-�� --show-toplevel 53 /usr/bin/git ACCEPT(http block)https://api.github.com/repos/actions/checkout/git/ref/tags/v6/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v6 --jq .object.sha -bool -buildtags /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet -errorsas -ifaceassert -nilfunc /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet -ato�� -bool -buildtags /usr/sbin/git -errorsas -ifaceassert -nilfunc git(http block)/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v6 --jq .object.sha -unreachable=false /tmp/go-build1190264726/b080/vet.cfg /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet(http block)/usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v6 --jq .object.sha --show-toplevel x_amd64/vet /usr/bin/git(http block)https://api.github.com/repos/actions/github-script/git/ref/tags/v8/usr/bin/gh gh api /repos/actions/github-script/git/ref/tags/v8 --jq .object.sha -bool -buildtags ache/go/1.25.0/x64/pkg/tool/linux_amd64/compile -errorsas -ifaceassert -nilfunc ache/go/1.25.0/x64/pkg/tool/linux_amd64/compile -ato�� 09431/b357/_pkg_.a -buildtags 09431/b357=> -errorsas b/gh-aw/pkg/workrev-parse -nilfunc git(http block)/usr/bin/gh gh api /repos/actions/github-script/git/ref/tags/v8 --jq .object.sha -bool -buildtags /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet -errorsas -ifaceassert -nilfunc /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet -ato�� -bool -buildtags /opt/hostedtoolcache/go/1.25.0/x64/bin/sh -errorsas -ifaceassert -nilfunc sh(http block)/usr/bin/gh gh api /repos/actions/github-script/git/ref/tags/v8 --jq .object.sha -unreachable=false /tmp/go-build1190264726/b077/vet.cfg(http block)https://api.github.com/repos/actions/setup-go/git/ref/tags/v4/usr/bin/gh gh api /repos/actions/setup-go/git/ref/tags/v4 --jq .object.sha -bool -buildtags /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet -errorsas -ifaceassert -nilfunc /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet -ato�� rt -buildtags /home/REDACTED/.local/bin/sh -errorsas -ifaceassert -nilfunc sh(http block)/usr/bin/gh gh api /repos/actions/setup-go/git/ref/tags/v4 --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel(http block)/usr/bin/gh gh api /repos/actions/setup-go/git/ref/tags/v4 --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel git /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel git /usr/bin/git git(http block)https://api.github.com/repos/actions/setup-node/git/ref/tags/v4/usr/bin/gh gh api /repos/actions/setup-node/git/ref/tags/v4 --jq .object.sha -unreachable=false /tmp/go-build1190264726/b095/vet.cfg /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet(http block)/usr/bin/gh gh api /repos/actions/setup-node/git/ref/tags/v4 --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel(http block)/usr/bin/gh gh api /repos/actions/setup-node/git/ref/tags/v4 --jq .object.sha --show-toplevel git ache/go/1.25.0/x64/pkg/tool/linux_amd64/vet --show-toplevel git /usr/bin/git ache/go/1.25.0/x64/pkg/tool/linux_amd64/vet rev-�� --show-toplevel git /usr/bin/git --show-toplevel git /usr/bin/git git(http block)https://api.github.com/repos/actions/setup-node/git/ref/tags/v6/usr/bin/gh gh api /repos/actions/setup-node/git/ref/tags/v6 --jq .object.sha -json GO111MODULE $name) { hasDiscussionsEnabled } } GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go(http block)https://api.github.com/repos/actions/upload-artifact/git/ref/tags/v4/usr/bin/gh gh api /repos/actions/upload-artifact/git/ref/tags/v4 --jq .object.sha --get-regexp --local ache/go/1.25.0/x64/pkg/tool/linux_amd64/vet(http block)/usr/bin/gh gh api /repos/actions/upload-artifact/git/ref/tags/v4 --jq .object.sha --show-toplevel /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet /usr/bin/git -unreachable=falgit /tmp/go-build119rev-parse ache/go/1.25.0/x--show-toplevel git rev-�� --show-toplevel ache/go/1.25.0/x64/pkg/tool/linux_amd64/vet /usr/bin/git -bool -buildtags /usr/local/bin/g--show-toplevel git(http block)/usr/bin/gh gh api /repos/actions/upload-artifact/git/ref/tags/v4 --jq .object.sha --show-toplevel git /usr/bin/ls --show-toplevel git /usr/bin/git ls -lh /tmp/gh-aw/aw-master.patch git /usr/bin/git --show-toplevel git /usr/bin/git git(http block)https://api.github.com/repos/astral-sh/setup-uv/git/ref/tags/eac588ad8def6316056a12d4907a9d4d84ff7a3b/usr/bin/gh gh api /repos/astral-sh/setup-uv/git/ref/tags/eac588ad8def6316056a12d4907a9d4d84ff7a3b --jq .object.sha -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE node(http block)https://api.github.com/repos/github/gh-aw/usr/bin/gh gh api /repos/github/gh-aw --jq .visibility /tmp/go-build853232291/b357/_pkgGOINSECURE -trimpath 64/bin/go -p main -lang=go1.25 go env -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go(http block)https://api.github.com/repos/github/gh-aw-actions/git/ref/tags/v1.0.0/usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v1.0.0 --jq .object.sha e=false --local ache/go/1.25.0/x64/pkg/tool/linux_amd64/vet credential.helpegit %H %ct %D 5705974f9d6ee742--show-toplevel ache/go/1.25.0/x64/pkg/tool/linux_amd64/vet(http block)/usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v1.0.0 --jq .object.sha --show-toplevel /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet /usr/bin/git _ghe\|Create gh-git /tmp/go-build119rev-parse sh git rev-�� --show-toplevel /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet /usr/bin/sed -bool -buildtags /opt/pipx_bin/ba--show-toplevel sed(http block)/usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v1.0.0 --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel git /usr/bin/git git chec�� -b feature-branch /usr/bin/git --show-toplevel git /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw-actions/git/ref/tags/v1.2.3/usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v1.2.3 --jq .object.sha e=false --local ache/go/1.25.0/x64/pkg/tool/linux_amd64/compile(http block)/usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v1.2.3 --jq .object.sha --show-toplevel /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet /usr/bin/git p directory\|cregit /tmp/go-build119rev-parse /opt/hostedtoolc--show-toplevel git rev-�� --show-toplevel /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/vet /usr/bin/git -bool -buildtags /snap/bin/bash git(http block)/usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v1.2.3 --jq .object.sha --show-toplevel ache/go/1.25.0/x64/pkg/tool/linux_amd64/vet /usr/lib/git-core/git --show-toplevel git /usr/bin/git /usr/lib/git-core/git main�� run --auto /usr/bin/git --detach git 2576546/b357/vet--show-toplevel git(http block)https://api.github.com/repos/github/gh-aw/actions/runs/1/artifacts/usr/bin/gh gh run download 1 --dir test-logs/run-1 GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet env -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE sh(http block)/usr/bin/gh gh run download 1 --dir test-logs/run-1 /opt/hostedtoolcache/node/24.14.0/x64/bin/node /usr/bin/git GOMODCACHE go /usr/bin/git git rev-�� --show-toplevel git ache/go/1.25.0/x64/bin/go --show-toplevel x_amd64/compile /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw/actions/runs/12345/artifacts/usr/bin/gh gh run download 12345 --dir test-logs/run-12345 GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE dx8vjli/anhRzj_4w5xdpYssTV74 env -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh run download 12345 --dir test-logs/run-12345 /usr/bin/git /usr/bin/git -v go /usr/bin/git git rev-�� 3847-57076/test-3253018340/.github/workflows git 0/x64/bin/node --show-toplevel go /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw/actions/runs/12346/artifacts/usr/bin/gh gh run download 12346 --dir test-logs/run-12346 GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE /bin/sh(http block)/usr/bin/gh gh run download 12346 --dir test-logs/run-12346 /usr/bin/git 0/x64/bin/node --get-regexp ^remote\..*\.gh-rev-parse /usr/bin/git git -has�� SameOutput2708370476/001/stability-test.md git /usr/bin/git --show-toplevel go /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw/actions/runs/2/artifacts/usr/bin/gh gh run download 2 --dir test-logs/run-2 GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go env hub/workflows GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE sh(http block)/usr/bin/gh gh run download 2 --dir test-logs/run-2 /usr/bin/git /usr/bin/git --get-regexp ^remote\..*\.gh-rev-parse /usr/bin/git git rev-�� --show-toplevel git ache/go/1.25.0/x64/pkg/tool/linux_amd64/compile --show-toplevel go /usr/bin/git ache/go/1.25.0/x64/pkg/tool/linuorigin(http block)https://api.github.com/repos/github/gh-aw/actions/runs/3/artifacts/usr/bin/gh gh run download 3 --dir test-logs/run-3 GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go env hub/workflows GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE sh(http block)/usr/bin/gh gh run download 3 --dir test-logs/run-3 /usr/bin/git /usr/bin/git --get-regexp ^remote\..*\.gh-rev-parse /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel go /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw/actions/runs/4/artifacts/usr/bin/gh gh run download 4 --dir test-logs/run-4 GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE 64/bin/go GOINSECURE GOMOD s,MFiles,HFiles,--show-toplevel sh(http block)/usr/bin/gh gh run download 4 --dir test-logs/run-4 /usr/bin/git /usr/bin/git --get-regexp ^remote\..*\.gh-init /usr/bin/git git rev-�� 3847-57076/test-2807732364/.github/workflows git ash --show-toplevel go /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw/actions/runs/5/artifacts/usr/bin/gh gh run download 5 --dir test-logs/run-5 GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE sh(http block)/usr/bin/gh gh run download 5 --dir test-logs/run-5 /usr/bin/git /usr/bin/git -v go /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel x_amd64/vet /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw/actions/workflows/usr/bin/gh gh workflow list --json name,state,path GOSUMDB GOWORK 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE 0/x64/bin/sh GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh run list --json databaseId,number,url,status,conclusion,workflowName,createdAt,startedAt,updatedAt,event,headBranch,headSha,displayTitle --workflow nonexistent-workflow-12345 --limit 100 -pack /home/REDACTED/work/gh-aw/gh-aw/pkg/sliceutil/sliceutil.go /home/REDACTED/work/gh-aw/gh-aw/pkg/sliceutil/sliceutil_test.go env */*.ts' '**/*.jsGOSUMDB GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh run list --json databaseId,number,url,status,conclusion,workflowName,createdAt,startedAt,updatedAt,event,headBranch,headSha,displayTitle --workflow nonexistent-workflow-12345 --limit 6 GOMOD erignore 51RFpkM/58sERvdostatus env ty-test.md GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE bO/taHUd9uw6bYgspLnkVpK/UWhjPi0cYTXO4VNc859R(http block)https://api.github.com/repos/github/gh-aw/git/ref/tags/v1.0.0/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v1.0.0 --jq .object.sha(http block)/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v1.0.0 --jq .object.sha --show-toplevel x_amd64/compile /usr/bin/git(http block)/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v1.0.0 --jq .object.sha --show-toplevel git /usr/bin/git 40\} ature-branch.patrev-parse /usr/bin/git git rev-�� --show-toplevel git(http block)https://api.github.com/repos/github/gh-aw/git/ref/tags/v1.2.3/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v1.2.3 --jq .object.sha -json GO111MODULE ode GOINSECURE GOMOD GOMODCACHE go tion�� -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v1.2.3 --jq .object.sha --show-toplevel go /usr/bin/git -json l /opt/hostedtoolc--show-toplevel X8RIYu_/63uEyfFkwiIOe7Y0f2gl rev-�� --show-toplevel /opt/hostedtoolcache/go/1.25.0/x64/pkg/tool/linux_amd64/compile 90ed913d8c91330d0070bb4ac5474e78-d /tmp/go-build203git -trimpath /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw/git/ref/tags/v2.0.0/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v2.0.0 --jq .object.sha -json GO111MODULE ache/go/1.25.0/xGOMODCACHE GOINSECURE GOMOD GOMODCACHE go tion�� -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v2.0.0 --jq .object.sha -json GO111MODULE 0/x64/bin/node GOINSECURE GOMOD GOMODCACHE go tion�� -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v2.0.0 --jq .object.sha y-frontmatter.md go /usr/bin/git -json l /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel t /usr/bin/git git(http block)https://api.github.com/repos/github/gh-aw/git/ref/tags/v3.0.0/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v3.0.0 --jq .object.sha -json GO111MODULE x86_64/node GOINSECURE GOMOD GOMODCACHE go tion�� -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v3.0.0 --jq .object.sha nly go /usr/bin/git -json GO111MODULE e/git git rev-�� --show-toplevel e/git /usr/sbin/iptables /tmp/go-build203infocmp -trimpath /usr/bin/git iptables(http block)https://api.github.com/repos/githubnext/agentics/git/ref/tags//usr/bin/gh gh api /repos/githubnext/agentics/git/ref/tags/# --jq .object.sha -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE sh -c npx prettier --cGOSUMDB GOPROXY 64/bin/go GOSUMDB GOWORK 64/bin/go sh(http block)https://api.github.com/repos/nonexistent/action/git/ref/tags/v999.999.999/usr/bin/gh gh api /repos/nonexistent/action/git/ref/tags/v999.999.999 --jq .object.sha(http block)/usr/bin/gh gh api /repos/nonexistent/action/git/ref/tags/v999.999.999 --jq .object.sha --show-toplevel x_amd64/cgo /usr/bin/git(http block)/usr/bin/gh gh api /repos/nonexistent/action/git/ref/tags/v999.999.999 --jq .object.sha --show-toplevel git /usr/bin/git ature-branch.patgit /opt/hostedtoolcrev-parse /usr/bin/git git rev-�� --show-toplevel git(http block)https://api.github.com/repos/nonexistent/repo/actions/runs/12345/usr/bin/gh gh run view 12345 --repo nonexistent/repo --json status,conclusion GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE 64/bin/go GOINSECURE GOMOD GOMODCACHE node(http block)/usr/bin/gh gh run view 12345 --repo nonexistent/repo --json status,conclusion --show-toplevel x_amd64/vet /usr/bin/git git rev-�� --show-toplevel git ache/node/24.14.0/x64/bin/node --show-toplevel go /usr/bin/git git(http block)https://api.github.com/repos/owner/repo/actions/workflows/usr/bin/gh gh workflow list --json name,state,path --repo owner/repo 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE ache/go/1.25.0/xGOMODCACHE GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh workflow list --json name,state,path --repo owner/repo 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE tions/setup/js/nGOMODCACHE GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh workflow list --json name,state,path --repo owner/repo /usr/bin/infocmp -json GO111MODULE ache/go/1.25.0/x--show-toplevel infocmp -1 xterm-color ache/go/1.25.0/x64/pkg/tool/linux_amd64/compile /usr/bin/git 167798/b398/_pkggit GO111MODULE 167798/b398=> git(http block)https://api.github.com/repos/owner/repo/contents/file.md/tmp/go-build203167798/b383/cli.test /tmp/go-build203167798/b383/cli.test -test.testlogfile=/tmp/go-build203167798/b383/testlog.txt -test.paniconexit0 -test.v=true -test.parallel=4 -test.timeout=10m0s -test.run=^Test -test.short=true GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE ache/go/1.25.0/xGOMODCACHE GOINSECURE GOMOD GOMODCACHE go(http block)/tmp/go-build704252663/b359/cli.test /tmp/go-build704252663/b359/cli.test -test.paniconexit0 -test.timeout=10m0s -test.count=1 rev-�� --show-toplevel go /usr/bin/git QoH9vXcpG GO111MODULE 0/x64/bin/node git rev-�� --show-toplevel rtcfg /usr/bin/git vaScript26031759git g/sliceutil/slicrev-parse(http block)https://api.github.com/repos/test-owner/test-repo/actions/secrets/usr/bin/gh gh api /repos/test-owner/test-repo/actions/secrets --jq .secrets[].name GOSUMDB GOWORK 64/bin/go GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE tions/node_modulGOMODCACHE GOINSECURE GOMOD GOMODCACHE go(http block)/usr/bin/gh gh api /repos/test-owner/test-repo/actions/secrets --jq .secrets[].name --show-toplevel 64/pkg/tool/linux_amd64/link /usr/bin/git archie.md GO111MODULE 0/x64/bin/node git rev-�� --show-toplevel N5inHPfiWbQ29M6A5H/liMzR8Ds-CnfJ51RFpkM/58sERvdostatus /usr/bin/git SameOutput384497git GO111MODULE _.a git(http block)If you need me to access, download, or install something from one of these locations, you can either:
💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.
✨ PR Review Safe Output Test - Run 23203502426