[plan] Restore firewall data collection in Daily Firewall Logs Collector #8322
Description
Objective
Fix the Daily Firewall Logs Collector workflow so it can successfully fetch firewall logs and restore visibility into network denial patterns.
Context
The Dec 31, 2025 firewall report produced no data because:
ghCLI is not authenticated- GitHub MCP tools are missing
- Agentic-workflows MCP tools are absent
Without firewall visibility, network denial spikes and outbound policy regressions go unnoticed.
Approach
Update the Daily Firewall Logs Collector workflow (.github/workflows/daily-firewall-logs-collector.md) to:
- Add GitHub MCP tools - Configure GitHub MCP server access with appropriate toolsets
- Configure authentication - Ensure workflow has necessary permissions to fetch logs
- Add agentic-workflows MCP - Include agentic-workflows MCP tools if needed for data collection
Files to Modify
.github/workflows/daily-firewall-logs-collector.md- Add MCP tools configuration and authentication
Acceptance Criteria
- Workflow can successfully fetch firewall logs
- Next run produces complete firewall data report
- No authentication or missing-tool errors in workflow logs
- Denial trends are visible again in reports
Expected Impact
- Firewall visibility restored within next run
- Network denial spikes become observable
- Policy regression detection re-enabled
Related to [plan] Workflow Health Improvements - Dec 31, 2025 #8321
AI generated by Plan Command for discussion #8304