[pull] main from github:main#45
Merged
pull[bot] merged 16 commits intoAndroid-studio61:mainfrom May 8, 2026
Merged
Conversation
…30875) * Initial plan * test: align automatic lockdown public repo expectation with info logging Agent-Logs-Url: https://github.com/github/gh-aw/sessions/628ab6b6-c3ee-4c2a-a1be-480d27f33956 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
…repo dispatch flows (#30877)
… example, pr bullet char (#30895) * Initial plan * fix: address CLI consistency issues - write+ terminology, mcp list-tools example, pr bullet char Agent-Logs-Url: https://github.com/github/gh-aw/sessions/1b59de1a-d45a-4e71-b3d2-19f683164e6a Co-authored-by: gh-aw-bot <259018956+gh-aw-bot@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: gh-aw-bot <259018956+gh-aw-bot@users.noreply.github.com>
…30894) * Initial plan * refactor(agentdrain): rename match→findBestMatchingCluster and firstKey→computeTreeBucketKey Agent-Logs-Url: https://github.com/github/gh-aw/sessions/05ac3666-2e05-4f02-8869-cffcf42dd364 Co-authored-by: gh-aw-bot <259018956+gh-aw-bot@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: gh-aw-bot <259018956+gh-aw-bot@users.noreply.github.com>
…#30882) * Initial plan * feat: optimize test-quality-sentinel workflow Agent-Logs-Url: https://github.com/github/gh-aw/sessions/3ea5a23f-1f60-4c59-80bc-ec21f8078260 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * fix: clarify test-quality-sentinel agent instructions Agent-Logs-Url: https://github.com/github/gh-aw/sessions/3ea5a23f-1f60-4c59-80bc-ec21f8078260 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
…ent bash variable expansion (#30879) * Initial plan * fix: escape bare $schema in double-quoted AWF config printf to prevent bash variable expansion When AllowedDomains contains a GitHub Actions expression (${{ }}), shellEscapeArg switches to double-quote wrapping for the entire AWF config JSON. Inside that double-quoted bash string the JSON key $schema was expanded by bash as a variable — always empty — which produced "" as the key and caused AWF to reject the config with: Error loading --config: Invalid AWF config: config. is not supported Fix: add escapeBareShellDollarSigns() which replaces every $ that is NOT the start of a ${{ }} expression with \$, preventing bash variable expansion. ${{ }} GitHub Actions expressions are left untouched so the runner can evaluate them before the shell runs. Fixes: AWF JSON-config printf emits unescaped $schema Agent-Logs-Url: https://github.com/github/gh-aw/sessions/42052bb9-c390-4568-a862-9e444c35a2ed Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * fix: add missing trailing comma in shell_test.go struct literal The test case for the JSON $schema / GitHub Actions expression mix was missing a trailing comma after the expected: field in the struct literal. Go requires comma-terminated fields in composite literals; without it the code would not compile under strict formatting checks. Agent-Logs-Url: https://github.com/github/gh-aw/sessions/5e45fe27-8fb4-450d-b268-1d3428562217 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
…-05-07) (#30904) Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
…flow (#30901) * Initial plan * fix(workflow): switch hippo embed maintenance to interactive audit flow Agent-Logs-Url: https://github.com/github/gh-aw/sessions/af76c326-1319-4001-9921-f67cded98f9a Co-authored-by: gh-aw-bot <259018956+gh-aw-bot@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: gh-aw-bot <259018956+gh-aw-bot@users.noreply.github.com>
… in `gh aw compile` (#30839) * Initial plan * fix: reconcile dependabot ignores for compiler-managed action refs Agent-Logs-Url: https://github.com/github/gh-aw/sessions/2a5f9207-7a19-45e6-bf9a-e93f6b895ada Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * fix: handle null dependabot ignore and warn on reconcile failures Agent-Logs-Url: https://github.com/github/gh-aw/sessions/b2b8b2e2-9d67-41c4-80e8-2b4927a465f7 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * chore: document yaml null forms in dependabot ignore parser Agent-Logs-Url: https://github.com/github/gh-aw/sessions/b2b8b2e2-9d67-41c4-80e8-2b4927a465f7 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * refactor: centralize dependabot path resolution and yaml handling Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6a125e1c-d070-485b-8109-74ba12701041 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * perf: streamline managed dependabot comment detection Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6a125e1c-d070-485b-8109-74ba12701041 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * chore: document reflection fallbacks in dependabot yaml normalization Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6a125e1c-d070-485b-8109-74ba12701041 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * chore: clarify reflection fallback logs and quote assumptions Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6a125e1c-d070-485b-8109-74ba12701041 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * docs: clarify compiler-managed dependabot ignore reconciliation Agent-Logs-Url: https://github.com/github/gh-aw/sessions/868fb3ed-0a16-466d-94b0-c718c1ef2582 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> Co-authored-by: Peli de Halleux <pelikhan@users.noreply.github.com>
* chore: update GitHub Actions versions - 2026-05-07 - microsoft/apm-action: v1.5.1 → v1.6.0 - github/stale-repos: v9.0.8 → v9.0.9 - Removed stale pinned versions for actions/cache/save@v4, actions/checkout@v4, actions/setup-python@v5 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * chore: initial plan for merge main and recompile Agent-Logs-Url: https://github.com/github/gh-aw/sessions/e1ca8688-13a3-4465-9dcd-2bed1f8161b4 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * chore: merge main and recompile workflow lock files Agent-Logs-Url: https://github.com/github/gh-aw/sessions/e1ca8688-13a3-4465-9dcd-2bed1f8161b4 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> --------- Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
…epo PR workflows (#30878) * Initial plan * fix: resolve safe-outputs workflow input expressions in config generation Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6340fd05-1d07-4c32-ba41-126e4046144c Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * test: tighten env key dedupe and readability for dynamic safe outputs regression Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6340fd05-1d07-4c32-ba41-126e4046144c Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * refactor: clarify env var formatter naming and env dedupe behavior Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6340fd05-1d07-4c32-ba41-126e4046144c Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * style: simplify input env var formatting and document env merge helper Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6340fd05-1d07-4c32-ba41-126e4046144c Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * test: add direct coverage for workflow input env var formatting Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6340fd05-1d07-4c32-ba41-126e4046144c Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * fix: support bracket notation for workflow input extraction Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6eced4f9-a33c-4277-9e7a-d4ad15f26ff7 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * docs: clarify workflow input regex identifier constraints Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6eced4f9-a33c-4277-9e7a-d4ad15f26ff7 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * refactor: deduplicate workflow input expression extraction loop logic Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6eced4f9-a33c-4277-9e7a-d4ad15f26ff7 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> * fix: keep dash-compatible dot notation while adding bracket support Agent-Logs-Url: https://github.com/github/gh-aw/sessions/6eced4f9-a33c-4277-9e7a-d4ad15f26ff7 Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> Co-authored-by: Peli de Halleux <pelikhan@users.noreply.github.com>
…lanner agent job (#30876)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
See Commits and Changes for more details.
Created by
pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please sponsor : )
Summary by cubic
Sync with upstream to refresh GitHub Actions locks, centralize workflow tool-stack config, and trim charting docs. This keeps actions up to date, reduces duplication, and simplifies maintenance.
Dependencies
github/codeql-action/upload-sarifto v4.35.4.actions/cache/save@v4.Refactors
shared/meta-analysis-base.mdto share the gh-proxy tool stack; removed duplicated tool configs..github/aw/charts.mdverbosity by cutting redundant guidance.Written for commit c29dd1d. Summary will update on new commits.