Skip to content

[agentic-workflows] Upgrade gh-aw from v0.77.5 to v0.79.8 #38961

Open
Open
[agentic-workflows] Upgrade gh-aw from v0.77.5 to v0.79.8#38961
Labels
agentic-workflowsautomateddependencies

Description

@github-actions
github-actions
bot
opened on Jun 15, 2026

Summary

Upgrades the gh-aw agentic workflows tooling from v0.77.5 to v0.79.8 and updates all pinned references.

Changes

  • Ran gh aw upgrade and applied codemods to workflow source files.
  • Re-ran gh aw compile to regenerate .lock.yml files.
  • Bumped the pinned action in .github/workflows/copilot-setup-steps.yml:
    • github/gh-aw-actions/setup-cli@3ea13c02d765410340d533515cb31a7eef2baaf0@c0338fef4749d08c21f8f975fb0e37efa17dda47
    • with.version: v0.77.5v0.79.8
  • Renamed .github/agents/agentic-workflows.agent.mdagentic-workflows.md (v0.79.8 format change — prompts are now resolved locally instead of via GitHub URLs).
  • Added .github/skills/agentic-workflows/SKILL.md (new dispatcher skill introduced in v0.79.8).
  • Added .github/workflows/agentics-maintenance.yml (auto-generated maintenance workflow added by v0.79.8).
  • Updated action versions in all .lock.yml files:
    • actions/github-script v8 → v9
    • actions/checkout v6.0.2 → v6.0.3
    • github/gh-aw-actions/setup v0.77.5 → v0.79.8

Upgrade output

✓ Updated 4 action(s):
  • actions/github-script (v8 → v9)
  • github/gh-aw-actions/setup (v0.77.5 → v0.79.8)
  • actions/checkout (v6.0.2 → v6.0.3)
  • actions/github-script (v9.0.0 → v9)

⚠ Skipping github/gh-aw/actions/setup: cannot resolve SHA for CLI version v0.79.8
  (gh not authenticated in sandbox — SHA resolved via GitHub API instead)

⚠ Failed to resolve digest for 5 Docker images (Docker daemon unavailable in sandbox)

✓ Applied codemods: no fixes needed
✓ Compiled 11 workflow(s): 0 error(s), 0 warning(s)

Manual fixes applied

  • copilot-setup-steps.yml: The upgrade set uses: github/gh-aw-actions/setup-cli@v0.79.8 (no SHA pinning) because gh was unauthenticated in the sandbox. The correct commit SHA c0338fef4749d08c21f8f975fb0e37efa17dda47 was fetched via GitHub API and applied manually.

Unresolved issues

  • Docker image digests could not be resolved in the sandbox (Docker daemon unavailable). The .lock.yml files reference the same image tags as before; their SHA digests can be refreshed by running gh aw compile in a Docker-enabled environment.

Verification

  • gh aw compile exits cleanly (0 errors, 0 warnings, 11 workflows compiled)
  • Only expected files are modified

Warning

Protected Files — Push Permission Denied

This was originally intended as a pull request, but the patch modifies protected files. A human must create the pull request manually.

Protected files

The push was rejected because GitHub Actions does not have workflows permission to push these changes, and is never allowed to make such changes, or other authorization being used does not have this permission.

Create the pull request manually 
# Download the patch from the workflow run
gh run download 27564619898 -n agent -D /tmp/agent-27564619898

# Create a new branch
git checkout -b upgrade-gh-aw-v0.77.5-to-v0.79.8-27f7642b6c05b8d4 main

# Apply the patch (--3way handles cross-repo patches)
git am --3way /tmp/agent-27564619898/aw-upgrade-gh-aw-v0.77.5-to-v0.79.8.patch

# Push the branch and create the pull request
git push origin upgrade-gh-aw-v0.77.5-to-v0.79.8-27f7642b6c05b8d4
gh pr create --title '[agentic-workflows] Upgrade gh-aw from v0.77.5 to v0.79.8' --base main --head upgrade-gh-aw-v0.77.5-to-v0.79.8-27f7642b6c05b8d4 --repo Azure/azure-sdk-for-js

Generated by Upgrade Agentic Workflows · sonnet46 3.7M ·

Metadata

Metadata

Assignees

No one assigned

    Labels

    agentic-workflowsautomateddependencies

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions