Merge main branch and recompile workflows by Copilot · Pull Request #7608 · github/gh-aw

Copilot · 2025-12-25T10:54:00Z

Merged latest main branch into security fix PR and recompiled all workflow lock files to sync with updated dependencies and schema changes.

Changes

Merge: Integrated 3937 commits from main using --allow-unrelated-histories (grafted branch)
Conflict resolution: Preserved security fix in sanitize_content_core.cjs, adopted main versions for all other files
Recompilation: Updated 123 workflow lock files with latest action pins and embedded JavaScript

Security fix preserved

The single atomic regex replacement for XML comment removal remains intact:

// Before (vulnerable to injection via chained operations)
s = s.replace(/<!--[\s\S]*?-->/g, "").replace(/<!--[\s\S]*?--!>/g, "");

// After (atomic operation prevents injection)
s = s.replace(/<!--[\s\S]*?--!?>/g, "");

Notes

One workflow (smoke-copilot.md) has pre-existing validation error unrelated to this merge
Embedded JavaScript in pkg/workflow/js/ updated via build system

💬 We'd love your input! Share your thoughts on Copilot coding agent in our 2 minute survey.

…#7585)

… files (#7582)

…7590)

…nt documentation (#7598)

…7603)

Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>

Copilot AI and others added 9 commits December 24, 2025 22:22

Replace custom JSON handler with StreamableHTTPHandler in mcp-gateway (…

137528b

…#7585)

Add oneOf schema constraints for mutually exclusive field pairs (#7583)

7a3e1e7

Add debug logging to CLI utility and configuration files (#7594)

de8b23c

Make actions/setup/ the source of truth for both shell and JavaScript…

960d768

… files (#7582)

Consolidate MCPServerConfig into single definition in parser package (#…

5c6cfec

…7590)

Add minItems constraints to array fields requiring values (#7597)

3642f04

Migrate MCP relationship prose to JSON Schema constraints with $comme…

5a344f7

…nt documentation (#7598)

Optimize CI integration test matrix by splitting bottleneck groups (#…

9e54901

…7603)

Initial plan

71967e9

Copilot AI assigned Copilot and pelikhan Dec 25, 2025

Copilot AI mentioned this pull request Dec 25, 2025

[security-fix] Fix incomplete multi-character sanitization in removeXmlComments (Alert #90) #7588

Closed

Copilot started work on behalf of pelikhan December 25, 2025 10:54 View session

Copilot AI and others added 2 commits December 25, 2025 11:02

Merge main branch

956a987

Recompile workflows after merging main

21ff090

Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>

Copilot AI changed the title ~~[WIP] Fix incomplete multi-character sanitization in removeXmlComments~~ Merge main branch and recompile workflows Dec 25, 2025

Copilot AI requested a review from pelikhan December 25, 2025 11:08

Copilot finished work on behalf of pelikhan December 25, 2025 11:08

pelikhan marked this pull request as ready for review December 25, 2025 11:15

pelikhan merged commit 19fbfd6 into main-1bac2aba4e03afba Dec 25, 2025

pelikhan deleted the copilot/sub-pr-7588 branch December 25, 2025 11:15

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge main branch and recompile workflows#7608

Merge main branch and recompile workflows#7608
pelikhan merged 11 commits intomain-1bac2aba4e03afbafrom
copilot/sub-pr-7588

Copilot AI commented Dec 25, 2025 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

Copilot AI commented Dec 25, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Changes

Security fix preserved

Notes

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Copilot AI commented Dec 25, 2025 •

edited

Loading