Commit 33a4c7d
Updating permissions for agentic workflows (#39071)
## Updating permissions for agentic workflows
Adds the `copilot-requests: write` permission to the GitHub Agentic
Workflow definitions and recompiles their generated lock files.
### What changed
- Added `copilot-requests: write` under `permissions:` in each agentic
workflow `.md` source file.
- Recompiled every corresponding `.lock.yml` via `gh aw compile` so the
generated output matches the source.
As a result of recompiling, the workflows now rely on the
`copilot-requests: write` permission instead of the
`COPILOT_GITHUB_TOKEN` secret, so the lock files drop the
`COPILOT_GITHUB_TOKEN` secret reference and its validation step.
### Affected workflows
- agent-observability
- archie
- dash
- dexter
- docs-consistency-check
- fix-test-failures
- issue-triage
- mgmt-guidance
- mgmt-review
- scribe
- sentinel
- tester
- upgrade-agentic-workflows
### Checklist
- [x] Add `copilot-requests: write` permission to workflow `.md` sources
- [x] Recompile `.lock.yml` files from their `.md` counterparts
- [x] Add PR description
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: xirzec <639216+xirzec@users.noreply.github.com>1 parent a5cdd18 commit 33a4c7d
26 files changed
Lines changed: 291 additions & 343 deletions
File tree
- .github/workflows
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
28 | 28 | | |
29 | 29 | | |
30 | 30 | | |
| 31 | + | |
31 | 32 | | |
32 | 33 | | |
33 | 34 | | |
| |||
0 commit comments