Bump AWF Firewall to v0.25.56 and MCP Gateway to v0.3.20#35117
Conversation
|
✅ Design Decision Gate 🏗️ completed the design decision gate check. No ADR enforcement needed: PR #35117 does not have the 'implementation' label and has 0 new lines of code in default business logic directories (threshold: 100). |
|
💫 TO BE CONTINUED... Smoke Claude failed to deliver outputs! Our hero faces unexpected challenges... |
|
🚀 Smoke Antigravity MISSION COMPLETE! Antigravity has spoken. ✨ |
|
🧠 Matt Pocock Skills Reviewer has completed the skills-based review. ✅ No action needed: PR #35117 is a WIP with zero changed files — the diff is empty and no code has been committed to the branch yet. There is nothing to review at this time. |
|
🚀 Smoke Gemini MISSION COMPLETE! Gemini has spoken. ✨ |
|
✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟 |
|
🚀 Smoke Pi MISSION COMPLETE! Pi delivered. 🥧 |
|
📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing... |
|
🧪 Test Quality Sentinel completed test quality analysis. No test files were added or modified in this PR. All changes are to compiled workflow lock files (.lock.yml). Test Quality Sentinel skipped. |
|
✅ PR Code Quality Reviewer completed the code quality review. No action needed: PR #35117 contains only a single 'Initial plan' commit with zero file changes. There is no diff to review. This is a WIP PR that has not yet had any code committed. |
Co-authored-by: lpcox <15877973+lpcox@users.noreply.github.com>
Agent Container Tool Check
Result: 12/12 tools available ✅ Overall Status: PASS
|
Smoke Test Results: Gemini\n- GitHub MCP Testing: ✅\n- Web Fetch Testing: ✅\n- File Writing Testing: ✅\n- Bash Tool Testing: ✅\n- Build gh-aw: ❌\n\nOverall Status: FAIL\nRun URL: https://github.com/github/gh-aw/actions/runs/26491875064Warning Firewall blocked 1 domainThe following domain was blocked by the firewall during workflow execution:
network:
allowed:
- defaults
- "localhost"See Network Configuration for more information.
|
|
Smoke test run 26491875013
Warning Firewall blocked 6 domainsThe following domains were blocked by the firewall during workflow execution:
network:
allowed:
- defaults
- "accounts.google.com"
- "android.clients.google.com"
- "clients2.google.com"
- "contentautofill.googleapis.com"
- "safebrowsingohttpgateway.googleapis.com"
- "www.google.com"See Network Configuration for more information.
|
Smoke Test: Claude — Run 26491874960Core (#1–13): ✅✅❌✅✅✅✅✅✅✅✅✅✅ Overall: Warning Firewall blocked 6 domainsThe following domains were blocked by the firewall during workflow execution:
network:
allowed:
- defaults
- "accounts.google.com"
- "android.clients.google.com"
- "clients2.google.com"
- "contentautofill.googleapis.com"
- "safebrowsingohttpgateway.googleapis.com"
- "www.google.com"See Network Configuration for more information.
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
💥 Automated smoke test review - all systems nominal!
Warning
Firewall blocked 6 domains
The following domains were blocked by the firewall during workflow execution:
accounts.google.comandroid.clients.google.comclients2.google.comcontentautofill.googleapis.comsafebrowsingohttpgateway.googleapis.comwww.google.com
To allow these domains, add them to the
network.allowedlist in your workflow frontmatter:
network:
allowed:
- defaults
- "accounts.google.com"
- "android.clients.google.com"
- "clients2.google.com"
- "contentautofill.googleapis.com"
- "safebrowsingohttpgateway.googleapis.com"
- "www.google.com"See Network Configuration for more information.
💥 [THE END] — Illustrated by Smoke Claude · opus47 9.1M
| @@ -1,5 +1,5 @@ | |||
| # gh-aw-metadata: {"schema_version":"v4","frontmatter_hash":"36cdbbbe4882806612f8dad2f77146ac361dff5ec231ef9eba66ffb8e0d02ca1","body_hash":"c0c6b51ff748c32142fa383ae68e04752e079d02bf22356046bf39761521b93c","strict":true,"agent_id":"copilot"} | |||
There was a problem hiding this comment.
Smoke test review comment #1 — verifying that the AWF firewall and MCP gateway version bump is propagated consistently across all lock files. (Automated comment from Run 26491874960.)
| @@ -1,5 +1,5 @@ | |||
| # gh-aw-metadata: {"schema_version":"v4","frontmatter_hash":"2a9bd07b53b5a0c67ca476156dbe8922b2e5ad0e6d355a321592623d13d5f167","body_hash":"30d40738b32791caae633af85d6d2bb8aac971f646c1bab499220afd3c17b8a2","agent_id":"copilot"} | |||
There was a problem hiding this comment.
Smoke test review comment #2 — version bumps look uniform; recompilation appears correct. (Automated comment from Run 26491874960.)
|
Smoke Copilot 26491875017: FAIL Warning Firewall blocked 6 domainsThe following domains were blocked by the firewall during workflow execution:
network:
allowed:
- defaults
- "accounts.google.com"
- "android.clients.google.com"
- "clients2.google.com"
- "contentautofill.googleapis.com"
- "safebrowsingohttpgateway.googleapis.com"
- "www.google.com"See Network Configuration for more information.
|
|
📰 DEVELOPING STORY: Smoke Copilot reports failed to deliver outputs. Our correspondents are investigating the incident... |
|
@copilot merge main, recompile, fix conflicts, fix https://github.com/github/gh-aw/actions/runs/26491962762/job/78011979320 |
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
Done in 57090ab. I merged
|
This updates gh-aw’s default runtime pins to the requested AWF Firewall and MCP Gateway releases, and refreshes generated artifacts that embed those versions. The change is scoped to version integration and corresponding regenerated outputs.
Version pin updates
/pkg/constants/version_constants.go:DefaultFirewallVersion→v0.25.56DefaultMCPGatewayVersion→v0.3.20Regenerated workflow lock artifacts
/.github/workflows/*.lock.ymlso pinned AWF/MCPG image references align with the new defaults.Refreshed golden outputs
/pkg/workflow/testdata/TestWasmGolden_CompileFixtures/*.golden/pkg/workflow/testdata/TestWasmGolden_AllEngines/*.golden✨ PR Review Safe Output Test - Run 26491874960
Warning
Firewall blocked 6 domains
The following domains were blocked by the firewall during workflow execution:
accounts.google.comandroid.clients.google.comclients2.google.comcontentautofill.googleapis.comsafebrowsingohttpgateway.googleapis.comwww.google.comSee Network Configuration for more information.