chore: upgrade gh-aw-mcpg to v0.1.25

[Copilot]

Bumps the default MCP Gateway image from v0.1.22 to v0.1.25.

Changes

• pkg/constants/constants.go: DefaultMCPGatewayVersion → v0.1.25
• All 177 workflow lock files recompiled to pick up the new version

What's new in v0.1.25

Fixes false-positive DIFC integrity filtering in the GitHub guard:

• GraphQL-shaped responses from list_issues/list_pull_requests now correctly parsed
• Backend enrichment for missing author_association in GraphQL responses
• Sub-methods of pull_request_read/issue_read no longer get incorrect per-item labeling
• Error responses (isError=true) skipped from domain object parsing
• search_issues/search_pull_requests now extract repo scope from query strings

---

---

✨ PR Review Safe Output Test - Run 23412714990

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• chore: upgrade gh-aw-mcpg to v0.1.25 #22321 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

💥 [THE END] — Illustrated by Smoke Claude · ◷

[github-actions]

✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟

[github-actions]

📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing...

[github-actions]

✅ All tools validated successfully! Agent Container Smoke Test confirms agent container is ready.

[github-actions]

🎬 THE END — Smoke Claude MISSION: ACCOMPLISHED! The hero saves the day! ✨

[github-actions]

Agent Container Tool Check

Tool	Status	Version
bash	✅	5.2.21
sh	✅	available
git	✅	2.53.0
jq	✅	1.7
yq	✅	4.52.4
curl	✅	8.5.0
gh	✅	2.87.3
node	✅	20.20.1
python3	✅	3.12.3
go	✅	1.24.13
java	✅	10.0.102
dotnet	❌	NOT FOUND

Result: 11/12 tools available ⚠️

Overall Status: FAIL — dotnet (.NET runtime) is not installed in the agent container.

🔧 Tool validation by Agent Container Smoke Test · ◷

[github-actions]

🧪 Smoke Test §23412714968

Test	Result
GitHub MCP	✅
mcpscripts-gh	✅
Serena MCP	❌
Playwright	✅
Web Fetch	✅
File Write	✅
Bash	✅
Discussion	✅
Build	✅
Discussion Create	✅
Workflow Dispatch	✅
PR Review	✅

Overall: ⚠️ PARTIAL PASS (11/12) — Serena MCP not available

Author: @Copilot | Assignees: @pelikhan, @Copilot

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• chore: upgrade gh-aw-mcpg to v0.1.25 #22321 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

📰 BREAKING: Report filed by Smoke Copilot · ◷

[github-actions]

Smoke test review: PR upgrades DefaultMCPGatewayVersion from v0.1.22 → v0.1.25 and recompiles all 177 lock files. Change is minimal and focused. LGTM.

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• #22321 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

📰 BREAKING: Report filed by Smoke Copilot

[github-actions]

✅ Version bump from v0.1.22 to v0.1.25 looks good. This is a clean single-constant change.

[github-actions]

📰 VERDICT: Smoke Copilot has concluded. All systems operational. This is a developing story. 🎤

[github-actions]

Smoke Test (Codex)

• Merged PRs: Deep-clean .github/aw/*.md: remove invalid patterns and deprecated references #22313 Deep-clean .github/aw/*.md: remove invalid patterns and deprecated references; Rename tools.github.repos to tools.github.allowed-repos #22311 Rename tools.github.repos to tools.github.allowed-repos
• GitHub MCP: ✅
• Serena MCP (activate + find_symbol >=3): ✅
• Playwright (title contains "GitHub"): ✅
• Web-fetch (contains "GitHub"): ✅
• File write/read (/tmp/gh-aw/agent/smoke-test-codex-23412714972.txt): ✅
• Build (GOCACHE=/tmp/go-cache GOMODCACHE=/tmp/go-mod make build): ✅
• Overall status: PASS

Warning

**⚠️ Firewall blocked 1 domain**

The following domain was blocked by the firewall during workflow execution:

• ab.chatgpt.com

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "ab.chatgpt.com"

See Network Configuration for more information.

🔮 The oracle has spoken through Smoke Codex · ◷

[github-actions]

Smoke Test 23412714990 — PARTIAL

Test	Result
1 GitHub MCP	✅
2 GH CLI	✅
3 Serena activate	✅ / find_symbol
4 Make build	✅
5 Playwright	✅
6 Tavily search	✅
7 File write	✅
8 Bash tool	✅
9 Discussion comment	✅
10 AW MCP status	✅
11 Slack safe-output	✅
12 Update PR	✅
13 PR review comments	✅
14 Submit review	✅
15 Resolve thread	⚠️ skipped (DIFC)
16 Add reviewer	✅
17 Push to branch	✅
18 Close PR	⚠️ skipped

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• chore: upgrade gh-aw-mcpg to v0.1.25 #22321 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

💥 [THE END] — Illustrated by Smoke Claude · ◷

[github-actions]

💥 Automated smoke test review - all systems nominal!

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• #22321 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

💥 [THE END] — Illustrated by Smoke Claude

[github-actions]

Commit pushed: 1c83d87

Generated by Changeset Generator

[Copilot]

Pull request overview

Updates the default MCP Gateway (gh-aw-mcpg) container version to v0.1.25 and regenerates workflow lock files so compiled workflows reference the new gateway image.

Changes:

• Bump DefaultMCPGatewayVersion from v0.1.22 to v0.1.25.
• Regenerate workflow lockfiles to replace ghcr.io/github/gh-aw-mcpg:v0.1.22 with :v0.1.25.
• Add a Changesets entry to publish a patch release describing the bump.

Reviewed changes

Copilot reviewed 179 out of 179 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
pkg/constants/constants.go	Bumps the default MCP Gateway version constant to v0.1.25.
.github/workflows/workflow-health-manager.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/workflow-generator.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/weekly-issue-summary.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/video-analyzer.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/update-astro.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/ubuntu-image-analyzer.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/tidy.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/test-workflow.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/test-project-url-default.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/test-dispatcher.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/test-create-pr-error-handling.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/super-linter.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/step-name-alignment.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/static-analysis-report.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/stale-repo-identifier.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/smoke-test-tools.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/smoke-project.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/smoke-call-workflow.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/smoke-agent-scoped-approved.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/smoke-agent-public-none.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/smoke-agent-public-approved.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/smoke-agent-all-none.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/smoke-agent-all-merged.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/security-compliance.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/schema-feature-coverage.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/schema-consistency-checker.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/research.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/repo-tree-map.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/release.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/refiner.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/pr-triage-agent.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/poem-bot.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/plan.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/pdf-summary.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/org-health-report.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/metrics-collector.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/mergefest.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/lockfile-stats.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/layout-spec-maintainer.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/issue-triage-agent.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/issue-monster.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/issue-arborist.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/instructions-janitor.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/hourly-ci-cleaner.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/grumpy-reviewer.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/gpclean.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/github-mcp-tools-report.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/github-mcp-structural-analysis.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/firewall.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/firewall-escape.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/example-permissions-warning.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/draft-pr-cleanup.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/discussion-task-miner.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/dev.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/delight.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/deep-report.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/daily-team-status.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/daily-security-red-team.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/daily-issues-report.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/daily-fact.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/daily-code-metrics.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/daily-choice-test.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/craft.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/copilot-session-insights.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/copilot-agent-analysis.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/contribution-check.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/commit-changes-analyzer.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/codex-github-remote-mcp-test.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/code-simplifier.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/cli-version-checker.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/ci-doctor.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/ci-coach.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/changeset.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/bot-detection.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/artifacts-summary.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/ai-moderator.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.github/workflows/ace-editor.lock.yml	Regenerated lockfile to use gh-aw-mcpg:v0.1.25.
.changeset/patch-bump-gh-aw-mcpg-v0-1-25.md	Adds a Changesets entry describing the MCP Gateway version bump.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.