[aw-failures] Fix Package Specification Enforcer — ERR_VALIDATION: unauthorized GitHub Actions expressions in spec-enforcer.md

[github-actions]

Problem Statement

The Package Specification Enforcer workflow fails immediately at the activation job (within 20s) with a validation error:

##[error]ERR_API: ERR_VALIDATION: File workflows/spec-enforcer.md contains unauthorized GitHub Actions expressions

All downstream jobs (agent, detection, update_cache_memory, conclusion, safe_outputs) are skipped. This is a regression — run §25251026562 (2026-05-02) succeeded with the same workflow; the first failure appeared on 2026-05-03T11:36Z.

Affected Run

Run	Workflow	Date	Status
§25278092903	Package Specification Enforcer	2026-05-03T11:36Z	failure

Root Cause

The workflow runtime's import validator rejects ${{ ... }} GitHub Actions expression syntax found in .github/workflows/spec-enforcer.md. A recent change to that file introduced one or more such expressions, violating the activation security policy. The agent never runs — 57 cached turns from the last successful run are counted in metrics, but turns: 0 were live.

Proposed Remediation

1. git log --oneline .github/workflows/spec-enforcer.md to identify the commit that introduced the expressions
2. Review the diff for any newly added ${{ ... }} patterns
3. Either remove/escape the offending expressions, or add them to the authorization allowlist if they serve a legitimate purpose
4. Verify the activation job passes in a re-run

Success Criteria

• Package Specification Enforcer activation job completes without ERR_VALIDATION
• Agent runs through to completion with a success or noop conclusion

References

• Parent report: [aw-failures] [aw] Failure Report 2026-05-03: 3 failures (1 P0 chronic + 2 P1 regressions) #29894
• Failed run: §25278092903
• Last successful run: §25251026562 (2026-05-02)

Generated by [aw] Failure Investigator (6h) · ● 1.6M · ◷

• expires on May 10, 2026, 1:29 PM UTC