fix: chmod -R a+rX to allow directory traversal during artifact upload

[Copilot]

All 34 agentic workflow lock files were failing artifact uploads with EACCES: permission denied, stat '/tmp/gh-aw/sandbox/firewall/audit/...'. AWF runs Docker via sudo, creating root-owned files; the cleanup step used chmod -R a+r to expose them to the runner user — but a+r grants only read permission on directories, not execute (search), so the runner couldn't traverse them.

Change

• chmod -R a+r → chmod -R a+rX in the "Print firewall logs" step across all 34 .lock.yml files (32 existing + 2 added in main: smoke-gemini.lock.yml, smoke-opencode.lock.yml)
• The X flag adds execute to directories only (not regular files), making them traversable without over-permissioning

Note: The chmod -R a+r template is hardcoded inside the gh-aw compiler binary (v0.71.1), not in any .md source file. Direct edits to the lock files are therefore the correct fix within this repository until the upstream gh-aw binary is updated to emit a+rX.

[github-actions]

✅ Coverage Check Passed

Overall Coverage

Metric	Base	PR	Delta
Lines	86.45%	86.53%	📈 +0.08%
Statements	86.39%	86.46%	📈 +0.07%
Functions	90.61%	90.61%	➡️ +0.00%
Branches	79.23%	79.27%	📈 +0.04%

📁 Per-file Coverage Changes (1 files)

File	Lines (Before → After)	Statements (Before → After)
src/container-lifecycle.ts	86.1% → 87.2% (+1.09%)	86.3% → 87.4% (+1.08%)

---

Coverage comparison generated by scripts/ci/compare-coverage.ts

[Copilot]

Pull request overview

This PR fixes GitHub Actions artifact upload failures caused by insufficient directory traversal permissions on root-owned firewall log/audit directories created under /tmp/gh-aw/sandbox/firewall (created via sudo).

Changes:

• Update the “Print firewall logs” step across the agentic workflow lock files to use sudo chmod -R a+rX ... instead of a+r.
• Ensure directories under /tmp/gh-aw/sandbox/firewall become traversable (execute/search bit) so actions/upload-artifact can stat and upload them.

Show a summary per file

File	Description
.github/workflows/update-release-notes.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/test-coverage-reporter.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/test-coverage-improver.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/smoke-services.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/smoke-copilot.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/smoke-copilot-byok.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/smoke-codex.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/smoke-claude.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/smoke-chroot.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/security-review.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/security-guard.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/secret-digger-copilot.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/secret-digger-codex.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/secret-digger-claude.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/refactoring-scanner.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/plan.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/pelis-agent-factory-advisor.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/issue-monster.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/issue-duplication-detector.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/firewall-issue-dispatcher.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/export-audit.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/duplicate-code-detector.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/doc-maintainer.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/dependency-security-monitor.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/copilot-token-usage-analyzer.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/copilot-token-optimizer.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/cli-flag-consistency-checker.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/claude-token-usage-analyzer.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/claude-token-optimizer.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/ci-doctor.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/ci-cd-gaps-assessment.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.
.github/workflows/build-test.lock.yml	Use chmod -R a+rX to allow traversal of firewall dirs for artifact upload.

Copilot's findings

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

• Files reviewed: 32/32 changed files
• Comments generated: 1

[lpcox]

@copilot merge main and address review feedback

[Copilot]

@copilot merge main and address review feedback

Done — merged main (3d7741d).

Regarding the reviewer's concern about editing lock files directly: the chmod -R a+r command is hardcoded as a template string inside the gh-aw binary itself (v0.71.1), not in any .md file in this repo. Running gh aw compile would regenerate the lock files with the old broken a+r. The direct edits to the lock.yml files are the correct fix within this repo until the upstream gh-aw binary is updated to use a+rX.

Also caught and fixed 2 new lock.yml files added in main (smoke-gemini.lock.yml, smoke-opencode.lock.yml) that also had the bug — all 34 lock files now consistently use a+rX.

[github-actions]

Smoke: Copilot BYOK — Run #25394646947

Test	Result
GitHub MCP (list PRs)	✅
GitHub.com connectivity	✅ (pre-step validated)
File write/read (smoke-test-copilot-byok-25394646947.txt)	✅
BYOK inference (this response)	✅

Running in BYOK offline mode (COPILOT_OFFLINE=true) via api-proxy → api.githubcopilot.com

Overall: PASS · PR by @Copilot · Assignees: @lpcox, @Copilot

🔑 BYOK report filed by Smoke Copilot BYOK

[github-actions]

🔬 Smoke Test Results

Test	Status
✅ GitHub MCP connectivity	PASS — fetched PR list successfully
❌ GitHub.com HTTP connectivity	N/A — pre-step data not expanded
❌ File write/read	N/A — pre-step data not expanded

PR: fix: chmod -R a+rX to allow directory traversal during artifact upload
Author: @Copilot | Assignees: @lpcox, @Copilot

Overall: PARTIAL — MCP test passed; pre-computed step outputs were not substituted (template vars unexpanded).

📰 BREAKING: Report filed by Smoke Copilot

[github-actions]

Smoke Test Results

✅ GitHub MCP: Last 2 merged PRs retrieved
✅ Playwright: GitHub page title verified
✅ File Writing: Test file created successfully
✅ Bash Tool: File content verified

Status: PASS

💥 [THE END] — Illustrated by Smoke Claude

[github-actions]

PRs: api-proxy: inject X-Initiator: agent default on all Copilot-bound requests to prevent billing inflation | fix: one-shot-token.so fails to load on musl/Alpine hosts (ARC runners)
✅ GitHub PR review
❌ Safe Inputs GH CLI
✅ Playwright title check
❌ Tavily web search
✅ File writing
✅ Bash file readback
❌ Discussion query tool; oracle comment posted via fallback
✅ npm ci && npm run build
Overall status: FAIL

Warning

Firewall blocked 1 domain

The following domain was blocked by the firewall during workflow execution:

• registry.npmjs.org

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "registry.npmjs.org"

See Network Configuration for more information.

🔮 The oracle has spoken through Smoke Codex

[github-actions]

🏗️ Build Test Suite Results

Ecosystem	Project	Build/Install	Tests	Status
Bun	elysia	✅	1/1 passed	✅ PASS
Bun	hono	✅	1/1 passed	✅ PASS
C++	fmt	✅	N/A	✅ PASS
C++	json	✅	N/A	✅ PASS
Deno	oak	N/A	1/1 passed	✅ PASS
Deno	std	N/A	1/1 passed	✅ PASS
.NET	hello-world	✅	N/A	✅ PASS
.NET	json-parse	✅	N/A	✅ PASS
Go	color	✅	1/1 passed	✅ PASS
Go	env	✅	1/1 passed	✅ PASS
Go	uuid	✅	1/1 passed	✅ PASS
Java	gson	✅	1/1 passed	✅ PASS
Java	caffeine	✅	1/1 passed	✅ PASS
Node.js	clsx	✅	all passed	✅ PASS
Node.js	execa	✅	all passed	✅ PASS
Node.js	p-limit	✅	all passed	✅ PASS
Rust	fd	✅	1/1 passed	✅ PASS
Rust	zoxide	✅	1/1 passed	✅ PASS

Overall: 8/8 ecosystems passed — ✅ PASS

Generated by Build Test Suite for issue #2555 · ● 1.3M · ◷

[github-actions]

Smoke Test Results

Check	Result
Redis PING	❌ Timeout (no response from host.docker.internal:6379)
PostgreSQL pg_isready	❌ No response from host.docker.internal:5432
PostgreSQL SELECT 1	❌ Skipped (pg_isready failed)

Overall: FAIL — host.docker.internal is not reachable from this runner. Service containers may not be configured or the host alias is not resolvable in this environment.

🔌 Service connectivity validated by Smoke Services