chore: upgrade gh-aw-firewall to v0.25.35

[Copilot]

Upgrades the default gh-aw-firewall (AWF) version from v0.25.29 to v0.25.35.

Changes

• Updated DefaultFirewallVersion constant in pkg/constants/version_constants.go to v0.25.35
• Rebuilt the binary and recompiled all 208 workflow lock files with the new version
• Resolved new container image SHA digest pins via ./gh-aw update:
  • ghcr.io/github/gh-aw-firewall/agent:0.25.35@sha256:e7d7629973c6137167541e1021da4b1aa3f5c1aa72ffbee55d3364d5a89b27d3
  • ghcr.io/github/gh-aw-firewall/api-proxy:0.25.35@sha256:38b62ba1fb6c02c18d8cb620543c5c58dac6c38dfbb6366a3316cba5d545cf95
  • ghcr.io/github/gh-aw-firewall/cli-proxy:0.25.35@sha256:4c7ca49eb050306f5a9aabc3d04e75b925c495f1882187c76af50155ba50811d
  • ghcr.io/github/gh-aw-firewall/squid:0.25.35@sha256:92a7d2b592d4d693818980c1fa084bf4007b14df07e60d0b394c9b93dd009e9e
• Updated golden test fixtures for the new version
• All unit tests pass

Reference

https://github.com/github/gh-aw-firewall/releases/tag/v0.25.35

---

Changeset

• Type: patch
• Description: Bump the default gh-aw-firewall version to v0.25.35.

Warning

Firewall blocked 2 domains

The following domains were blocked by the firewall during workflow execution:

• ab.chatgpt.com
• chatgpt.com

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "ab.chatgpt.com"
    - "chatgpt.com"

See Network Configuration for more information.

Generated by Changeset Generator for issue #29819 · ◷

---

---

✨ PR Review Safe Output Test - Run 25260196748

💥 [THE END] — Illustrated by Smoke Claude · ● 262.3K · ◷

[github-actions]

🎬 THE END — Smoke Claude MISSION: ACCOMPLISHED! The hero saves the day! ✨

[github-actions]

⚠️ Smoke Crush failed. Crush encountered unexpected challenges...

[github-actions]

⚠️ Smoke Gemini failed. Gemini encountered unexpected challenges...

[github-actions]

🚀 Smoke OpenCode MISSION COMPLETE! OpenCode delivered. 🔥

[github-actions]

✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟

[github-actions]

📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing...

[github-actions]

Agent Container Tool Check

Tool	Status	Version
bash	✅	5.2.21
sh	✅	available
git	✅	2.53.0
jq	✅	1.7
yq	✅	4.52.5
curl	✅	8.5.0
gh	✅	2.89.0
node	✅	22.22.2
python3	✅	3.10.16 (PyPy 7.3.19)
go	✅	1.24.13
java	✅	10.0.201
dotnet	❌	NOT FOUND

Result: 11/12 tools available ⚠️
Overall Status: FAIL — dotnet (.NET runtime) is not available in this container.

🔧 Tool validation by Agent Container Smoke Test · ● 130.4K · ◷

[github-actions]

Smoke Test Codex 25260196716: FAIL
PRs: #29802 Investigating sub-agent usage and token consumption; #29818 [docs] docs: remove redundant bullets in cost-management episode cost section
✅ GitHub MCP ✅ Serena ✅ Playwright ❌ Web Fetch
✅ File ✅ Bash ✅ Build ✅ Comment Memory ✅ Cache Memory

Warning

Firewall blocked 2 domains

The following domains were blocked by the firewall during workflow execution:

• ab.chatgpt.com
• chatgpt.com

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "ab.chatgpt.com"
    - "chatgpt.com"

See Network Configuration for more information.

🔮 The oracle has spoken through Smoke Codex · ◷

[github-actions]

Comment Memory

Soft dawn threads the logs
Build lights settle into green
Quiet branches breathe

Note

This comment is managed by comment memory.

It stores persistent context for this thread in the code block at the top of this comment.
Edit only the text inside the backtick fences; workflow metadata and the footer are regenerated automatically.

Learn more about comment memory

Warning

Firewall blocked 2 domains

The following domains were blocked by the firewall during workflow execution:

• ab.chatgpt.com
• chatgpt.com

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "ab.chatgpt.com"
    - "chatgpt.com"

See Network Configuration for more information.

🔮 The oracle has spoken through Smoke Codex · ◷

[github-actions]

Commit pushed: cc11338

Generated by Changeset Generator

[github-actions]

💥 Smoke Test 25260196748 — PARTIAL PASS

Core tests #1–12:
✅ GitHub MCP | ✅ GH CLI | ✅ Serena | ✅ Make Build | ✅ Playwright | ✅ Tavily | ✅ File Write | ✅ Bash | ✅ Discussion | ✅ AW Status | ✅ Slack | ✅ Code Scan Alert

PR review tests #13–19:
✅ Update PR | ✅ Review Comments | ✅ Submit Review | ⚠️ Resolve Thread (skipped — API lag) | ✅ Add Reviewer | ✅ Push Branch | ⚠️ Close PR (skipped — no safe PR)

Status: PARTIAL (2 skipped, 0 failed)

💥 [THE END] — Illustrated by Smoke Claude · ● 262.3K · ◷

[github-actions]

💥 Automated smoke test review - all systems nominal! Run 25260196748

💥 [THE END] — Illustrated by Smoke Claude · ● 262.3K

[github-actions]

✅ Smoke test review comment #1 — New firewall agent digest pinned correctly for v0.25.35. SHA-256 looks good.

[github-actions]

✅ Smoke test review comment #2 — api-proxy image digest for v0.25.35 properly recorded. Automated smoke test — Run 25260196748.

[github-actions]

UGH! Cave-agent was here! Me smoke test agent. Me find all tools work good. Fire hot. Binary build. Copilot strong! ��🔥✅

📰 BREAKING: Report filed by Smoke Copilot · ● 2.5M · ◷

[github-actions]

Comment Memory

# Smoke Test Memory

Tests run, code pass,
Binary flies through the cloud—
Agent was here. ✅

Note

This comment is managed by comment memory.

It stores persistent context for this thread in the code block at the top of this comment.
Edit only the text inside the backtick fences; workflow metadata and the footer are regenerated automatically.

Learn more about comment memory

📰 BREAKING: Report filed by Smoke Copilot · ● 2.5M · ◷

[github-actions]

Cave-agent review done. Lock files updated. Firewall version bump look clean. UGH APPROVE!

📰 BREAKING: Report filed by Smoke Copilot · ● 2.5M

[github-actions]

📰 VERDICT: Smoke Copilot has concluded. All systems operational. This is a developing story. 🎤

[pelikhan]

@copilot merge main and recompile

[Copilot]

Pull request overview

Bumps the repository’s default gh-aw-firewall (AWF) version from v0.25.29 to v0.25.35, updates generated workflow/golden outputs to match, and refreshes container digest pin data used during locking/compilation.

Changes:

• Updated the default AWF version constant to v0.25.35.
• Regenerated workflow golden fixtures and multiple locked workflows to reference the new AWF version/digests.
• Refreshed embedded container pin data, including new 0.25.35 firewall image entries and a pinned gh-aw-mcpg:v0.3.3.

Show a summary per file

File	Description
pkg/workflow/testdata/TestWasmGolden_CompileFixtures/with-imports.golden	Updates compiled golden workflow output to the new AWF version/tag.
pkg/workflow/testdata/TestWasmGolden_CompileFixtures/smoke-copilot.golden	Updates smoke Copilot golden output for AWF v0.25.35.
pkg/workflow/testdata/TestWasmGolden_CompileFixtures/basic-copilot.golden	Updates basic Copilot golden output for the bumped firewall version.
pkg/workflow/data/action_pins.json	Adds new container pin records used by workflow compilation/locking.
pkg/constants/version_constants.go	Changes the default AWF version constant.
pkg/actionpins/data/action_pins.json	Adds new action/container pin records for the new firewall version.
.github/workflows/test-workflow.lock.yml	Regenerated locked workflow metadata and AWF config for the new version.
.github/workflows/smoke-crush.lock.yml	Regenerated Crush smoke workflow locks and AWF config.
.github/workflows/smoke-ci.lock.yml	Regenerated CI smoke workflow locks and AWF config.
.github/workflows/release.lock.yml	Regenerated release workflow locks and AWF config.
.github/workflows/metrics-collector.lock.yml	Regenerated metrics collector workflow locks and AWF config.
.github/workflows/hippo-embed.lock.yml	Regenerated Hippo embed workflow locks and AWF config.
.github/workflows/firewall.lock.yml	Regenerated firewall workflow locks and AWF config.
.github/workflows/example-permissions-warning.lock.yml	Regenerated example workflow locks and AWF config.
.github/workflows/daily-malicious-code-scan.lock.yml	Regenerated daily scan workflow locks and AWF config.
.github/workflows/copilot-token-optimizer.lock.yml	Regenerated token optimizer workflow locks and AWF config.
.github/workflows/codex-github-remote-mcp-test.lock.yml	Regenerated Codex MCP smoke workflow locks and AWF config.
.github/workflows/changeset.lock.yml	Regenerated changeset workflow locks and AWF config.
.github/workflows/bot-detection.lock.yml	Regenerated bot detection workflow locks and AWF config.
.github/workflows/ai-moderator.lock.yml	Regenerated AI moderator workflow locks and AWF config.
.github/workflows/ace-editor.lock.yml	Regenerated Ace editor workflow locks and AWF config.
.github/aw/actions-lock.json	Updates the repository’s checked-in lock data for container images/actions.
.changeset/patch-bump-awf-v0-25-35.md	Adds the release note/changeset for the version bump.

Copilot's findings

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

• Files reviewed: 53/216 changed files
• Comments generated: 3