Conversation
Co-authored-by: Mossaka <5447827+Mossaka@users.noreply.github.com> Agent-Logs-Url: https://github.com/github/gh-aw/sessions/067566d0-9ac7-4d1e-a52e-8e06062ad34d
|
✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟 |
|
✅ All tools validated successfully! Agent Container Smoke Test confirms agent container is ready. |
|
📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing... |
|
🎬 THE END — Smoke Claude MISSION: ACCOMPLISHED! The hero saves the day! ✨ |
There was a problem hiding this comment.
Pull request overview
Updates the default gh-aw-firewall (AWF) version used by the codebase and regenerated workflow lock files so workflows run against AWF v0.25.0.
Changes:
- Bumped
DefaultFirewallVersionfromv0.24.5tov0.25.0. - Updated pinned AWF version references across workflow
.lock.ymlfiles (env vars, install script args, image tags, and container image refs).
Reviewed changes
Copilot reviewed 130 out of 178 changed files in this pull request and generated 1 comment.
Show a summary per file
| File | Description |
|---|---|
| pkg/constants/constants.go | Bumps the default AWF version constant to v0.25.0. |
| .github/workflows/workflow-health-manager.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/workflow-generator.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/weekly-blog-post-writer.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/test-workflow.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/test-project-url-default.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/test-dispatcher.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/super-linter.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/sub-issue-closer.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/smoke-gemini.lock.yml | Updates AWF version pins (install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/smoke-call-workflow.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/security-compliance.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/schema-feature-coverage.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/repo-tree-map.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/refiner.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/q.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/pr-triage-agent.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/poem-bot.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/plan.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/pdf-summary.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/notion-issue-summary.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/metrics-collector.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/issue-triage-agent.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/issue-monster.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/grumpy-reviewer.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/gpclean.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/github-remote-mcp-auth-test.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/firewall.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/example-permissions-warning.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/duplicate-code-detector.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/dictation-prompt.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/dev.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/dependabot-go-checker.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/dependabot-burner.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/daily-team-status.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/daily-secrets-analysis.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/daily-observability-report.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/daily-malicious-code-scan.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/daily-fact.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/craft.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/contribution-check.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/codex-github-remote-mcp-test.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/code-simplifier.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/ci-coach.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/changeset.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/brave.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/bot-detection.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/archie.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/ai-moderator.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
| .github/workflows/ace-editor.lock.yml | Updates AWF version pins (env/install/images/image-tag) to 0.25.0/v0.25.0. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| @@ -361,7 +361,7 @@ const DefaultGitHubMCPServerVersion Version = "v0.32.0" | |||
| const DefaultGitHubLockdown = false | |||
|
|
|||
| // DefaultFirewallVersion is the default version of the gh-aw-firewall (AWF) binary | |||
| const DefaultFirewallVersion Version = "v0.24.5" | |||
| const DefaultFirewallVersion Version = "v0.25.0" | |||
There was a problem hiding this comment.
PR description says all workflow lock files were recompiled, but the repo still contains a lock file pinned to the old AWF version (pkg/cli/workflows/example-blocked-domains.lock.yml still references v0.24.5). Please re-run the workflow lock compilation (or update that file) so all lock files consistently reference v0.25.0.
There was a problem hiding this comment.
Good catch! The lock file compilation step should ensure all files are updated consistently when bumping firewall versions.
📰 BREAKING: Report filed by Smoke Copilot
Agent Container Tool Check
Result: 12/12 tools available ✅ Overall Status: PASS
|
|
Smoke Test: Copilot - 23458288522 |
Overall: ❌ FAIL — Serena MCP tools not available
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
Smoke test review: Version bumps from v0.24.5 → v0.25.0 look consistent across env vars and install scripts. LGTM! 🚀
📰 BREAKING: Report filed by Smoke Copilot
| GH_AW_INFO_ALLOWED_DOMAINS: '["defaults"]' | ||
| GH_AW_INFO_FIREWALL_ENABLED: "true" | ||
| GH_AW_INFO_AWF_VERSION: "v0.24.5" | ||
| GH_AW_INFO_AWF_VERSION: "v0.25.0" |
There was a problem hiding this comment.
Version bump from v0.24.5 to v0.25.0 looks correct. Consider adding a comment here documenting what changed in this firewall version for future reviewers.
| GH_HOST: github.com | ||
| - name: Install AWF binary | ||
| run: bash ${RUNNER_TEMP}/gh-aw/actions/install_awf_binary.sh v0.24.5 | ||
| run: bash ${RUNNER_TEMP}/gh-aw/actions/install_awf_binary.sh v0.25.0 |
There was a problem hiding this comment.
The install script version is updated to v0.25.0 — consistent with the env var above. 👍
|
📰 VERDICT: Smoke Copilot has concluded. All systems operational. This is a developing story. 🎤 |
|
Smoke test (Codex) for run 23458288465
Warning
|
|
Commit pushed:
|
|
💥 Smoke Test Run §23458288477 — PARTIAL PASS Core tests #1–11: ✅ ✅ ✅ ✅ ✅ ✅ ✅ ✅ ✅ ✅ ✅ Skipped: #15 (thread node IDs unavailable), #18 (no safe PR to close)
|
There was a problem hiding this comment.
💥 Automated smoke test review - all systems nominal!
💥 [THE END] — Illustrated by Smoke Claude
| GH_AW_INFO_ALLOWED_DOMAINS: '["defaults"]' | ||
| GH_AW_INFO_FIREWALL_ENABLED: "true" | ||
| GH_AW_INFO_AWF_VERSION: "v0.24.5" | ||
| GH_AW_INFO_AWF_VERSION: "v0.25.0" |
There was a problem hiding this comment.
Version bump looks correct — v0.24.5 → v0.25.0 for GH_AW_INFO_AWF_VERSION. Consistent with the firewall version update across all lock files.
| GH_AW_INFO_ALLOWED_DOMAINS: '["defaults"]' | ||
| GH_AW_INFO_FIREWALL_ENABLED: "true" | ||
| GH_AW_INFO_AWF_VERSION: "v0.24.5" | ||
| GH_AW_INFO_AWF_VERSION: "v0.25.0" |
There was a problem hiding this comment.
AWF version updated correctly in agent-performance-analyzer.lock.yml. The GH_AW_INFO_AWF_VERSION change to v0.25.0 matches the DefaultFirewallVersion constant bump.
Bumps
DefaultFirewallVersionfromv0.24.5tov0.25.0inpkg/constants/constants.goand recompiles all workflow lock files.Changes
DefaultFirewallVersionconstant:v0.24.5→v0.25.0.lock.ymlworkflow files to pick up the new version✨ PR Review Safe Output Test - Run 23458288477