Skip to content

Disable threat detection in mergefest, changeset-generator, and audit-workflows#2405

Closed
Copilot wants to merge 3 commits intomainfrom
copilot/disable-threat-detection
Closed

Disable threat detection in mergefest, changeset-generator, and audit-workflows#2405
Copilot wants to merge 3 commits intomainfrom
copilot/disable-threat-detection

Conversation

Copy link
Contributor

Copilot AI commented Oct 25, 2025
edited
Loading

Removes security validation features (strict mode and firewall feature) from three workflows as requested.

Changes

  • mergefest.md: Removed strict: true - disables compile-time validation (write permission checks, network config requirements, bash wildcard blocking)
  • changeset-generator.firewall.md: Removed features: firewall: true - disables AWF network sandboxing (~400 lines of AWF installation/cleanup/log parsing removed from compiled workflow)
  • audit-workflows.md: Removed strict: true - disables compile-time validation

Impact

Workflows now execute without security restrictions. The changeset-generator workflow runs regular copilot command instead of AWF-wrapped execution.

- strict: true
- features:
-   firewall: true
Original prompt

Disable threat detection in

  • mergefest
  • changeset generator
  • agentic workflow audit

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

Copilot AI and others added 2 commits October 25, 2025 11:25
@pelikhan
Initial exploration - understanding threat detection features
afda3e8 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@pelikhan
Disable threat detection in mergefest, changeset-generator, and audit…
de6f855 
…-workflows

Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
Copilot AI changed the title [WIP] Disable threat detection in multiple components Disable threat detection in mergefest, changeset-generator, and audit-workflows Oct 25, 2025
Copilot AI requested a review from pelikhan October 25, 2025 11:34
pelikhan
pelikhan reviewed Oct 25, 2025
View reviewed changes
.github/workflows/changeset-generator.firewall.md
push-to-pull-request-branch:
commit-title-suffix: " [skip-ci]"
timeout_minutes: 10
features:
Copy link
Contributor

@pelikhan pelikhan Oct 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@copilot revert changes

@pelikhan pelikhan closed this Oct 25, 2025
Copilot AI requested a review from pelikhan October 25, 2025 11:44
@pelikhan pelikhan deleted the copilot/disable-threat-detection branch October 26, 2025 20:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pelikhan pelikhan Awaiting requested review from pelikhan

Assignees

@pelikhan pelikhan

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@pelikhan