docker · derekmisler · Apr 15, 2026 · Apr 15, 2026
@@ -21,7 +21,7 @@ jobs:
       id-token: write
     steps:
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
       - name: Create check run
         id: create-check
@@ -152,7 +152,7 @@ jobs:
 
       - name: Generate description with AI
         id: generate
-        uses: docker/cagent-action@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
         with:
           agent: agentcatalog/github-action-pr-description-generator
           prompt: |

@@ -567,7 +567,7 @@ jobs:
         id: slack-summary
         # Pinned to a SHA — automatically updated by the update-self-refs job after each release.
         # GitHub Actions requires static `uses:` values, so we can't pin dynamically.
-        uses: docker/cagent-action@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
         with:
           agent: agentcatalog/github-action-release-notes
           prompt: |

@@ -35,7 +35,7 @@ jobs:
 
     steps:
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
       # ----------------------------------------------------------------
       # Download artifact from the triggering workflow run
@@ -313,7 +313,7 @@ jobs:
         if: steps.meta.outputs.proceed == 'true' && steps.auth.outputs.authorized == 'true' && steps.checkout.outcome == 'success' && steps.thread.outcome == 'success'
         id: run-reply
         continue-on-error: true
-        uses: docker/cagent-action/review-pr/reply@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/review-pr/reply@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
         with:
           thread-context: ${{ steps.thread.outputs.prompt }}
           comment-id: ${{ steps.meta.outputs.comment_id }}

@@ -12,7 +12,7 @@
 #
 #   jobs:
 #     review:
-#       uses: docker/cagent-action/.github/workflows/review-pr.yml@VERSION
+#       uses: docker/cagent-action/.github/workflows/review-pr.yml@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 #       # Scoped to the job so other jobs in this workflow aren't over-permissioned
 #       permissions:
 #         contents: read       # Read repository files and PR diffs
@@ -126,7 +126,7 @@ jobs:
 
     steps:
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
       - name: Get PR number
         id: get-pr
@@ -214,7 +214,7 @@ jobs:
         if: steps.membership.outputs.is_member == 'true'
         id: run-review
         continue-on-error: true # Don't fail the calling workflow if the review errors
-        uses: docker/cagent-action/review-pr@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/review-pr@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
         with:
           pr-number: ${{ steps.get-pr.outputs.pr-number }}
           additional-prompt: ${{ inputs.additional-prompt }}
@@ -251,7 +251,7 @@ jobs:
     steps:
 
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
       - name: Check if commenter is org member
         id: membership
@@ -335,7 +335,7 @@ jobs:
         if: steps.membership.outputs.is_member == 'true'
         id: run-review
         continue-on-error: true # Don't fail the calling workflow if the review errors
-        uses: docker/cagent-action/review-pr@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/review-pr@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
         with:
           pr-number: ${{ inputs.pr-number || github.event.issue.number }}
           comment-id: ${{ inputs.comment-id || github.event.comment.id }}
@@ -450,7 +450,7 @@ jobs:
     steps:
 
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
       - name: Check if reply is to agent comment
         id: check
@@ -676,7 +676,7 @@ jobs:
       - name: Run reply
         if: steps.check.outputs.is_agent == 'true' && steps.auth.outputs.authorized == 'true'
         continue-on-error: true
-        uses: docker/cagent-action/review-pr/reply@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/review-pr/reply@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
         with:
           thread-context: ${{ steps.thread.outputs.prompt }}
           comment-id: ${{ github.event.comment.id }}

@@ -30,7 +30,7 @@ jobs:
           fetch-depth: 0 # Need full history to get commits from past week
 
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
 
       - name: Get commits from past week
@@ -114,7 +114,7 @@ jobs:
       - name: Run security scan
         id: scan
         if: steps.commits.outputs.has_commits == 'true'
-        uses: docker/cagent-action@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
         with:
           agent: agentcatalog/github-action-security-scanner
           prompt: ${{ steps.commits.outputs.prompt }}

@@ -49,7 +49,7 @@ jobs:
 
     steps:
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
       # For workflow_run events (fork PRs), download the artifact saved by pr-review-trigger.yml
       # to get the PR number. For pull_request events, read it directly from the event payload.
@@ -184,7 +184,7 @@ jobs:
     steps:
 
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
       - name: Check if commenter is org member
         id: membership

@@ -20,7 +20,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Setup credentials
-        uses: docker/cagent-action/.github/actions/setup-credentials@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+        uses: docker/cagent-action/.github/actions/setup-credentials@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
 
       - name: Checkout
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2

@@ -678,7 +678,7 @@ runs:
     - name: Process pending feedback
       if: steps.lock-check.outputs.skip != 'true' && steps.pending-feedback.outputs.has_feedback == 'true'
       continue-on-error: true
-      uses: docker/cagent-action@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+      uses: docker/cagent-action@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
       env:
         ACTION_PATH: ${{ github.action_path }}
       with:
@@ -790,7 +790,7 @@ runs:
     - name: Run PR Review
       if: steps.lock-check.outputs.skip != 'true'
       id: run-review
-      uses: docker/cagent-action@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+      uses: docker/cagent-action@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
       env:
         ACTION_PATH: ${{ github.action_path }}
       with:

@@ -73,7 +73,7 @@ runs:
     - name: Run reply agent
       id: run-reply
       continue-on-error: true
-      uses: docker/cagent-action@f4853bda35d5232d0eaf6fb95ec4ad33ba1c763f # v1.3.4
+      uses: docker/cagent-action@da2dc7600994ad04b19e927b6aaf6a1ab5da4984 # v1.4.0
       env:
         ACTION_PATH: ${{ github.action_path }}
       with: