Skip to content

Add Ruflo-backed agentic task workflow#36046

Merged
pelikhan merged 8 commits into
mainfrom
copilot/add-agentic-workflows-ruflo
May 31, 2026
Merged

Add Ruflo-backed agentic task workflow#36046
pelikhan merged 8 commits into
mainfrom
copilot/add-agentic-workflows-ruflo

Conversation

Copy link
Copy Markdown
Contributor

Copilot AI commented May 31, 2026
edited
Loading

This adds a GitHub Agentic Workflow that uses Ruflo as the inner orchestration layer while keeping GitHub Agentic Workflows as the outer control plane for sandboxing, permissions, and safe outputs. It also introduces a reusable Ruflo MCP import so other workflows can adopt the same bounded integration pattern.

  • New workflow

    • Adds .github/workflows/ruflo-backed-task.md
    • Triggers from /ruflo via issue_comment
    • Uses the Claude engine
    • Encodes the required Ruflo operating model: inspect repo state first, query Ruflo memory before planning, initialize a bounded swarm for non-trivial work, validate locally, persist useful memory, and emit only safe outputs
    • Treats the triggering issue plus sanitized slash-command content as the task definition

  • Reusable Ruflo MCP wrapper

    • Adds .github/workflows/shared/mcp/ruflo.md
    • Defines a focused Ruflo allowlist for the workflow’s intended control loop:
      • memory lookup/storage
      • swarm initialization/status
      • agent registration/listing
      • task orchestration/status
    • Uses explicit stdio transport for reliable MCP startup

  • Workflow guardrails

    • Keeps the agent job read-only and routes writes through create-pull-request, create-issue, and add-comment
    • Limits network access to the minimum needed for GitHub plus Node/npm-backed Ruflo startup
    • Preserves single-agent fallback behavior when Ruflo is unavailable

  • Compiled artifact

    • Adds the generated lockfile for the new workflow

Example:

on:
  slash_command:
    strategy: centralized
    name: ruflo
    events: [issue_comment]

engine: claude

imports:
  - shared/mcp/ruflo.md

safe-outputs:
  create-pull-request:
    title-prefix: "[ruflo] "

Copilot AI and others added 6 commits May 31, 2026 02:50
@pelikhan
feat: add Ruflo workflow scaffolding
0311bf1 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@pelikhan
refactor: simplify Ruflo workflow runtime
58254c6 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@pelikhan
fix: pin Ruflo MCP transport
680b72d 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@pelikhan
feat: finalize Ruflo workflow validation
6ab72cc 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@pelikhan
fix: align Ruflo workflow metadata
02515ee 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@pelikhan
chore: refresh Ruflo workflow lockfile
7fdbb59 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
Copilot AI changed the title Add Ruflo-backed task workflow Add Ruflo-backed agentic task workflow May 31, 2026
Copilot AI requested a review from pelikhan May 31, 2026 03:00
@pelikhan
Copy link
Copy Markdown
Collaborator

pelikhan commented May 31, 2026

@copilot ruflo should use a slash_command to start working on an issue (/ruflo on issuecomment). Use Claude.

Copilot AI and others added 2 commits May 31, 2026 05:26
@pelikhan
Plan comment follow-up
b13aea3 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@pelikhan
Switch Ruflo workflow to slash command Claude
ebc41b0 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
Copy link
Copy Markdown
Contributor Author

Copilot AI commented May 31, 2026

@copilot ruflo should use a slash_command to start working on an issue (/ruflo on issuecomment). Use Claude.

Addressed in ebc41b0: the workflow now starts from /ruflo on issue_comment, uses the Claude engine, and derives the task from the triggering issue plus sanitized slash-command context.

@pelikhan pelikhan marked this pull request as ready for review May 31, 2026 05:43
Copilot AI review requested due to automatic review settings May 31, 2026 05:43
@pelikhan pelikhan merged commit 8104b66 into main May 31, 2026
@pelikhan pelikhan deleted the copilot/add-agentic-workflows-ruflo branch May 31, 2026 05:43
Copilot AI reviewed May 31, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds a new GitHub Agentic Workflow that delegates internal planning/coordination to a Ruflo MCP server (via a reusable shared MCP import), while keeping GitHub Agentic Workflows as the outer sandbox and safe-output write control plane.

Changes:

  • Introduces a reusable .github/workflows/shared/mcp/ruflo.md MCP server wrapper (stdio via npx + tool allowlist).
  • Adds a new /ruflo-triggered workflow definition (.github/workflows/ruflo-backed-task.md) encoding the Ruflo-backed operating model and safe-output guardrails.
  • Checks in the compiled lockfile artifact for the new workflow (.github/workflows/ruflo-backed-task.lock.yml).
Show a summary per file
File Description
.github/workflows/shared/mcp/ruflo.md Adds a shared Ruflo MCP server wrapper with an explicit allowlist.
.github/workflows/ruflo-backed-task.md Defines the new /ruflo workflow and its required operating process + safe outputs.
.github/workflows/ruflo-backed-task.lock.yml Adds the compiled lockfile for the workflow runtime.

Copilot's findings

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

  • Files reviewed: 2/3 changed files
  • Comments generated: 4

Comment thread .github/workflows/ruflo-backed-task.md
Comment on lines +4 to +8
on:
slash_command:
strategy: centralized
name: ruflo
events: [issue_comment]
Comment thread .github/workflows/shared/mcp/ruflo.md
Comment on lines +15 to +17
command: "npx"
args: ["-y", "ruflo@latest", "mcp", "start", "--transport", "stdio"]
allowed:
Comment thread .github/workflows/ruflo-backed-task.lock.yml
Comment on lines +1 to +2
# gh-aw-metadata: {"schema_version":"v3","frontmatter_hash":"ef6ca3f368c842bf1c44ee8e7ad673ecfe340b8af09774a627c8e8f486d7cd19","compiler_version":"v0.76.1","strict":true,"agent_id":"claude"}
# gh-aw-manifest: {"version":1,"secrets":["ANTHROPIC_API_KEY","GH_AW_CI_TRIGGER_TOKEN","GH_AW_GITHUB_MCP_SERVER_TOKEN","GH_AW_GITHUB_TOKEN","GITHUB_TOKEN"],"actions":[{"repo":"actions/checkout","sha":"de0fac2e4500dabe0009e67214ff5f5447ce83dd","version":"v6.0.2"},{"repo":"actions/download-artifact","sha":"3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c","version":"v8.0.1"},{"repo":"actions/github-script","sha":"3a2844b7e9c422d3c10d287c895573f7108da1b3","version":"v9.0.0"},{"repo":"actions/github-script","sha":"v9","version":"v9"},{"repo":"actions/setup-node","sha":"48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e","version":"v6.4.0"},{"repo":"actions/upload-artifact","sha":"043fb46d1a93c77aae656e7c1c64a875d1fc6a0a","version":"v7.0.1"},{"repo":"github/gh-aw-actions/setup","sha":"v0.76.1","version":"v0.76.1"}],"resolution_failures":[{"repo":"actions/github-script","ref":"v9","error_type":"dynamic_resolution_failed"}],"containers":[{"image":"ghcr.io/github/gh-aw-firewall/agent:0.25.55"},{"image":"ghcr.io/github/gh-aw-firewall/api-proxy:0.25.55"},{"image":"ghcr.io/github/gh-aw-firewall/cli-proxy:0.25.55"},{"image":"ghcr.io/github/gh-aw-firewall/squid:0.25.55"},{"image":"ghcr.io/github/gh-aw-mcpg:v0.3.19"},{"image":"ghcr.io/github/github-mcp-server:v1.0.4","digest":"sha256:e3816a476a977cfb836e7d221510011436c654d11861db66ecfd826601aba6a4","pinned_image":"ghcr.io/github/github-mcp-server:v1.0.4@sha256:e3816a476a977cfb836e7d221510011436c654d11861db66ecfd826601aba6a4"},{"image":"node:lts-alpine","digest":"sha256:2bdb65ed1dab192432bc31c95f94155ca5ad7fc1392fb7eb7526ab682fa5bf14","pinned_image":"node:lts-alpine@sha256:2bdb65ed1dab192432bc31c95f94155ca5ad7fc1392fb7eb7526ab682fa5bf14"}]}
Comment thread .github/workflows/ruflo-backed-task.lock.yml
Comment on lines +489 to +492
- name: Determine automatic lockdown mode for GitHub MCP Server
id: determine-automatic-lockdown
uses: actions/github-script@v9
env:
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@pelikhan pelikhan Awaiting requested review from pelikhan

Assignees

@pelikhan pelikhan

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@pelikhan