Fix Issue Arborist Repo Mind Light token#31942
Merged
Merged
Conversation
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
Contributor
There was a problem hiding this comment.
Pull request overview
Updates the Issue Arborist workflow to use a newer Repo Mind Light import and ensures Repo Mind Light and the pre-agent issue fetch authenticate with the intended tokens (including a new fine-grained token for Copilot model access).
Changes:
- Bump the Repo Mind Light shared workflow import to
repo-mind-light-awv1.1.1 (commitca993f5...), including updated pinned image digest. - Pass
GH_AW_REPO_MIND_LIGHT_TOKENinto Repo Mind Light asCOPILOT_GITHUB_TOKENvia a newcopilot-github-tokenimport input. - Update the pre-agent
gh issue listfetch to use theGH_AW_GITHUB_MCP_SERVER_TOKEN || GH_AW_GITHUB_TOKEN || GITHUB_TOKENfallback for proxy compatibility.
Show a summary per file
| File | Description |
|---|---|
| .github/workflows/issue-arborist.md | Updates the Repo Mind Light import version, injects the new token input, and adjusts issue-fetch auth fallback. |
| .github/workflows/issue-arborist.lock.yml | Regenerates the resolved workflow/manifest to reflect the new import, new secret, and updated token wiring. |
| .github/aw/imports/githubnext/repo-mind-light-aw/ca993f50371e3fc138e672335bfc5879e60f3e98/.github_workflows_shared_repo-mind-light.md | Adds a copilot-github-token import input and routes it into Repo Mind Light indexing/server steps. |
Copilot's findings
Tip
Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comments suppressed due to low confidence (1)
.github/aw/imports/githubnext/repo-mind-light-aw/ca993f50371e3fc138e672335bfc5879e60f3e98/.github_workflows_shared_repo-mind-light.md:216
- The indexing step now sources
COPILOT_GITHUB_TOKENfrom thecopilot-github-tokenimport input, but the failure message in the script still says the "COPILOT_GITHUB_TOKEN secret is required". Consider updating the message to reference the import input (or more generally "token/env var") so it’s actionable when the value is provided viawith: copilot-github-token:rather than a repository secret.
- Files reviewed: 3/3 changed files
- Comments generated: 0
Contributor
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Security review
Validation