Conversation
…ty-gate The pre_activation gate checks github.actor role (admin/maintainer/write). When Copilot reviewer submits a review, it's the actor but not a repo collaborator, so activation fails. Adding it to bots[] bypasses the role check for this specific bot. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
There was a problem hiding this comment.
Pull request overview
This PR fixes a workflow activation issue where the Copilot reviewer bot (copilot-pull-request-reviewer) could not trigger the review-responder and quality-gate gh-aw workflows because the bot isn't a repo collaborator with admin/maintainer/write role, causing the pre-activation gate to fail.
Changes:
- Added
bots: [copilot-pull-request-reviewer]to the frontmatter of bothreview-responder.mdandquality-gate.mdto bypass the role check for the Copilot bot. - Updated the corresponding
.lock.ymlfiles with new frontmatter hashes reflecting the config change.
Reviewed changes
Copilot reviewed 4 out of 4 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
.github/workflows/review-responder.md |
Added bots allowlist for Copilot reviewer bot |
.github/workflows/quality-gate.md |
Added bots allowlist for Copilot reviewer bot |
.github/workflows/review-responder.lock.yml |
Updated frontmatter hash to match new config |
.github/workflows/quality-gate.lock.yml |
Updated frontmatter hash to match new config |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
There was a problem hiding this comment.
Pull request overview
This PR fixes an activation issue where the Copilot reviewer bot (copilot-pull-request-reviewer) couldn't trigger the review-responder and quality-gate gh-aw workflows because the bot isn't a repo collaborator and fails the pre_activation role check. Adding bots: [copilot-pull-request-reviewer] to the workflow frontmatter allows the bot to bypass that check.
Changes:
- Added
bots: [copilot-pull-request-reviewer]to the frontmatter ofreview-responder.mdandquality-gate.md - Updated the corresponding
.lock.ymlfiles with new frontmatter hashes
Reviewed changes
Copilot reviewed 4 out of 4 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
.github/workflows/review-responder.md |
Added bots allowlist for the Copilot reviewer bot |
.github/workflows/quality-gate.md |
Added bots allowlist for the Copilot reviewer bot |
.github/workflows/review-responder.lock.yml |
Updated frontmatter hash to reflect the .md change |
.github/workflows/quality-gate.lock.yml |
Updated frontmatter hash to reflect the .md change |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
check_membership.cjs has a bug where the error branch from a 404 (GitHub App actors are not users) exits before the bot allowlist fallback is evaluated. This makes the bots: field ineffective. Workaround: roles: all skips the permission check entirely so check_membership.cjs is not included in pre_activation. Previous attempts that didn't fix this: - PR #64: bots: at top level (ignored by compiler) - PR #65: bots: under on: (correct placement, but runtime bug) - PR #72: added Copilot to bots list (correct actor, but bot check unreachable) Tracked for removal when upstream is fixed: #74 Upstream bug: github/gh-aw#21098 Closes #75 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
The pre_activation gate checks github.actor role (admin/maintainer/write). When Copilot reviewer submits a review, it's the actor but not a repo collaborator, so activation fails with action_required.
Fix: add
bots: [copilot-pull-request-reviewer]to both workflows so the Copilot bot bypasses the role check.