chore: bump CLI versions — Claude Code 2.1.98, Copilot 1.0.22 (unpin), Gemini 0.37.1

[Copilot]

Three CLI tool version updates for Apr 10, 2026. Copilot CLI was pinned at 1.0.20 due to a silent startup crash in 1.0.21; 1.0.22 confirms the fix and removes the pin.

pkg/constants/version_constants.go

• DefaultClaudeCodeVersion: 2.1.94 → 2.1.98
• DefaultCopilotVersion: 1.0.20 (pinned) → 1.0.22 — pin comment removed
• DefaultGeminiVersion: 0.36.0 → 0.37.1

Downstream

• Golden test files updated to reflect new Copilot version
• All 187 workflows recompiled successfully

Warning

Firewall rules blocked me from connecting to one or more addresses (expand for details)

I tried to connect to the following addresses, but was blocked by firewall rules:

• https://api.github.com/graphql
  • Triggering command: /usr/bin/gh /usr/bin/gh api graphql -f query=query($owner: String!, $name: String!) { repository(owner: $owner, name: $name) { hasDiscussionsEnabled } } -f owner=github -f name=gh-aw /tmp/go-build667rev-parse /opt/hostedtoolc--show-toplevel git rev-�� --show-toplevel /opt/hostedtoolcache/go/1.25.8/x64/pkg/tool/linux_amd64/vet /usr/bin/git -unreachable=falgit /tmp/go-build667rev-parse cfg git (http block)
  • Triggering command: /usr/bin/gh /usr/bin/gh api graphql -f query=query($owner: String!, $name: String!) { repository(owner: $owner, name: $name) { hasDiscussionsEnabled } } -f owner=github -f name=gh-aw 64/pkg/tool/linu--norc /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel 64/pkg/tool/linu-rn /usr/bin/git git (http block)
  • Triggering command: /usr/bin/gh /usr/bin/gh api graphql -f query=query($owner: String!, $name: String!) { repository(owner: $owner, name: $name) { hasDiscussionsEnabled } } -f owner=github -f name=gh-aw 64/pkg/tool/linu--norc /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel 64/pkg/tool/linu--norc /usr/bin/git git (http block)
• https://api.github.com/orgs/test-owner/actions/secrets
  • Triggering command: /usr/bin/gh gh api /orgs/test-owner/actions/secrets --jq .secrets[].name -c=4 -nolocalimports -importcfg /tmp/go-build667324607/b411/importcfg -pack /home/REDACTED/work/gh-aw/gh-aw/pkg/fileutil/fileutil.go /home/REDACTED/work/gh-aw/gh-aw/pkg/fileutil/tar.go env -json GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile (http block)
• https://api.github.com/repos/actions/ai-inference/git/ref/tags/v1
  • Triggering command: /usr/bin/gh gh api /repos/actions/ai-inference/git/ref/tags/v1 --jq .object.sha --show-toplevel 64/pkg/tool/linutest@example.com /usr/bin/git 3806940075 _zAe/m6K4S-499xrrev-parse er.test git rev-�� --show-toplevel er.test /usr/bin/git se 324607/b056/vet.rev-parse cfg git (http block)
• https://api.github.com/repos/actions/checkout/git/ref/tags/v3
  • Triggering command: /usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v3 --jq .object.sha /tmp/gh-aw-test-runs/20260410-044313-31936/test-2276344475/custom/workflows config /usr/bin/git remote.origin.urgit GO111MODULE x_amd64/vet git conf�� user.email test@example.com /opt/hostedtoolcache/go/1.25.8/x64/pkg/tool/linux_amd64/vet -json GO111MODULE x_amd64/vet /opt/hostedtoolcache/go/1.25.8/x64/pkg/tool/linux_amd64/vet (http block)
• https://api.github.com/repos/actions/checkout/git/ref/tags/v5
  • Triggering command: /usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v5 --jq .object.sha 4216270/b103/importcfg -trimpath cfg -p cmp -lang=go1.25 ache/go/1.25.8/x64/pkg/tool/linu-extld=gcc (http block)
  • Triggering command: /usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v5 --jq .object.sha --show-toplevel ache/go/1.25.8/x64/pkg/tool/linu/home/REDACTED/work/gh-aw/gh-aw/pkg/sliceutil/sliceutil_test.go /usr/bin/git 4313-31936/test-git -trimpath ache/go/1.25.8/x--show-toplevel git rev-�� --show-toplevel ache/go/1.25.8/x64/pkg/tool/linuremote1 /usr/bin/git /tmp/go-build204git -trimpath ache/go/1.25.8/x--show-toplevel git (http block)
  • Triggering command: /usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v5 --jq .object.sha --show-toplevel git /usr/bin/git r/repo.git l /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel x_amd64/vet /usr/bin/unpigz git (http block)
• https://api.github.com/repos/actions/checkout/git/ref/tags/v6
  • Triggering command: /usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v6 --jq .object.sha --show-toplevel 64/pkg/tool/linu-dwarf=false /usr/bin/git boring/sig cfg 64/pkg/tool/linu--show-toplevel /usr/bin/git remo�� -v 64/pkg/tool/linu/tmp/go-build667324607/b438/_testmain.go /usr/bin/git -json cfg 64/pkg/tool/linu--show-toplevel git (http block)
  • Triggering command: /usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v6 --jq .object.sha --git-dir 64/pkg/tool/linuremote /usr/bin/docker ortcfg GO111MODULE 64/pkg/tool/linu--show-toplevel docker pull�� test/concurrent-image:v1.0.0 64/pkg/tool/linux_amd64/vet /usr/bin/git e-analyzer.md GO111MODULE w.test git (http block)
  • Triggering command: /usr/bin/gh gh api /repos/actions/checkout/git/ref/tags/v6 --jq .object.sha --show-toplevel ache/go/1.25.8/x64/pkg/tool/linux_amd64/link /usr/bin/git 324607/b455/scrigit x_amd64/compile 324607/b455/impo--show-toplevel git rev-�� --show-toplevel 7D8RXanEmFBss/sX9FX53sm1OTZ6jdpoJ_/CWrYu2czG7Ca7ylQP4Z8/vCNYLdc7D8RXanEmFBss /usr/bin/git s/test.md 324607/b440/_tesrev-parse 324607/b455/_pkg--show-toplevel git (http block)
• https://api.github.com/repos/actions/github-script/git/ref/tags/v9
  • Triggering command: /usr/bin/gh gh api /repos/actions/github-script/git/ref/tags/v9 --jq .object.sha -json GO111MODULE x_amd64/asm GOINSECURE GOMOD GOMODCACHE x_amd64/asm env -json GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile (http block)
  • Triggering command: /usr/bin/gh gh api /repos/actions/github-script/git/ref/tags/v9 --jq .object.sha -json GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile env -json GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet (http block)
  • Triggering command: /usr/bin/gh gh api /repos/actions/github-script/git/ref/tags/v9 --jq .object.sha 01 GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile env -json GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet (http block)
• https://api.github.com/repos/actions/setup-go/git/ref/tags/v4
  • Triggering command: /usr/bin/gh gh api /repos/actions/setup-go/git/ref/tags/v4 --jq .object.sha --show-toplevel 64/pkg/tool/linu-extld=gcc /usr/bin/gh 4216270/b094/_pkgit om/goccy/go-yamlrev-parse 64/pkg/tool/linu--show-toplevel gh secr�� list --json /usr/bin/git 4216270/b097/_pkgit cfg 64/pkg/tool/linu--show-toplevel git (http block)
• https://api.github.com/repos/actions/setup-node/git/ref/tags/v4
  • Triggering command: /usr/bin/gh gh api /repos/actions/setup-node/git/ref/tags/v4 --jq .object.sha --git-dir 64/pkg/tool/linu-extld=gcc /usr/bin/git boring/sig cfg 64/pkg/tool/linu--show-toplevel /usr/bin/git remo�� -v 64/pkg/tool/linustatus /usr/bin/git e-analyzer.md cfg 64/pkg/tool/linu--show-toplevel git (http block)
• https://api.github.com/repos/actions/upload-artifact/git/ref/tags/v4
  • Triggering command: /usr/bin/gh gh api /repos/actions/upload-artifact/git/ref/tags/v4 --jq .object.sha -stringintconv l ache/node/24.14.1/x64/bin/node to pkg/workflow/git GO111MODULE x_amd64/compile git t-25�� k/gh-aw/gh-aw/.github/workflows/ace-editor.md rev-parse /usr/bin/git -json GO111MODULE x_amd64/compile git (http block)
• https://api.github.com/repos/astral-sh/setup-uv/git/ref/tags/eac588ad8def6316056a12d4907a9d4d84ff7a3b
  • Triggering command: /usr/bin/gh gh api /repos/astral-sh/setup-uv/git/ref/tags/eac588ad8def6316056a12d4907a9d4d84ff7a3b --jq .object.sha --show-toplevel git $name) { hasDiscussionsEnabled } } --show-toplevel 64/pkg/tool/linu--norc /usr/bin/docker cut -f1 ache/go/1.25.8/x--show-toplevel docker /usr/bin/git test/race-image:infocmp ache/go/1.25.8/x-1 /usr/bin/git git (http block)
  • Triggering command: /usr/bin/gh gh api /repos/astral-sh/setup-uv/git/ref/tags/eac588ad8def6316056a12d4907a9d4d84ff7a3b --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel 64/pkg/tool/linu-c /usr/bin/git git conf�� user.email test@example.com /usr/bin/git --show-toplevel ache/go/1.25.8/x-C /usr/bin/git git (http block)
• https://api.github.com/repos/github/gh-aw
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw --jq .visibility --show-toplevel git /usr/bin/git --show-toplevel /opt/hostedtoolc-C /usr/bin/git git rev-�� iew.lock.yml git r: $owner, name: $name) { hasDiscussionsEnabled } } NoRuns 188436-eh0eju.tx-C /usr/bin/git git (http block)
• https://api.github.com/repos/github/gh-aw-actions/git/ref/tags/v0.1.2
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v0.1.2 --jq .object.sha --show-toplevel 64/pkg/tool/linux_amd64/vet /usr/bin/git LqPM_8zZK cfg 64/pkg/tool/linu--show-toplevel /usr/bin/git conf�� --get-regexp ^remote\..*\.gh-resolved$ /usr/bin/git 4216270/b146/_pkgit cfg x_amd64/vet git (http block)
• https://api.github.com/repos/github/gh-aw-actions/git/ref/tags/v1.0.0
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v1.0.0 --jq .object.sha vwQI/NMpLmQ7z83YDrqtkvwQI git-receive-pack '/tmp/TestParseDefaultBranchFromLsRemoteWithRealGitbranch_with_hyphen2532230486rev-parse /usr/bin/git -json GO111MODULE x_amd64/compile 324607/b434/importcfg -C k/gh-aw/gh-aw/pkg/stringutil/ansi.go k/gh-aw/gh-aw/pkg/stringutil/identifiers.go /usr/bin/gh -json GO111MODULE x_amd64/compile gh (http block)
• https://api.github.com/repos/github/gh-aw-actions/git/ref/tags/v1.2.3
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw-actions/git/ref/tags/v1.2.3 --jq .object.sha run l /usr/bin/git --detach -c=4 -nolocalimports git -C k/gh-aw/gh-aw/pkg/cli rev-parse /usr/bin/git -json GO111MODULE x_amd64/compile git (http block)
• https://api.github.com/repos/github/gh-aw/actions/runs/1/artifacts
  • Triggering command: /usr/bin/gh gh api --paginate repos/{owner}/{repo}/actions/runs/1/artifacts --jq .artifacts[].name cfg 64/pkg/tool/linux_amd64/vet GOINSECURE sysrand ache/go/1.25.8/x--show-toplevel 64/pkg/tool/linux_amd64/vet env 4216270/b246/_pkg_.a REzZ/UVSmm-gThuyfG0BeREzZ ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet GOINSECURE t/message/catalorev-parse GOMODCACHE ache/go/1.25.8/x64/pkg/tool/linuremote.origin.url (http block)
  • Triggering command: /usr/bin/gh gh run download 1 --dir test-logs/run-1 cfg 64/pkg/tool/linux_amd64/vet GOINSECURE ntio/encoding/as/tmp/js-hash-test-3769555718/test-hash.js GOMODCACHE 64/pkg/tool/linux_amd64/vet env sm-opt >/dev/null 2>&1; then \ echo "Running wa-p cfg 64/pkg/tool/linux_amd64/link GOINSECURE GOMOD GOMODCACHE 64/pkg/tool/linux_amd64/link (http block)
• https://api.github.com/repos/github/gh-aw/actions/runs/12345/artifacts
  • Triggering command: /usr/bin/gh gh api --paginate repos/{owner}/{repo}/actions/runs/12345/artifacts --jq .artifacts[].name cfg 64/pkg/tool/linux_amd64/vet GOINSECURE GOMOD GOMODCACHE 64/pkg/tool/linuTest User env 3806940075 V7o_/18xeupG6XnJInX8DV7o_ x_amd64/vet GOINSECURE g/x/net/http/httconfig GOMODCACHE x_amd64/vet (http block)
  • Triggering command: /usr/bin/gh gh run download 12345 --dir test-logs/run-12345 cfg 64/pkg/tool/linux_amd64/vet GOINSECURE (http block)
• https://api.github.com/repos/github/gh-aw/actions/runs/12346/artifacts
  • Triggering command: /usr/bin/gh gh api --paginate repos/{owner}/{repo}/actions/runs/12346/artifacts --jq .artifacts[].name cfg 64/pkg/tool/linux_amd64/vet GOINSECURE hlite 4216270/b013/symuser.email 64/pkg/tool/linutest@example.com env 3806940075 _zAe/m6K4S-499xrKjIdi_zAe er.test GOINSECURE g/x/net/http/httconfig GOMODCACHE er.test (http block)
  • Triggering command: /usr/bin/gh gh run download 12346 --dir test-logs/run-12346 cfg 64/pkg/tool/linux_amd64/vet GOINSECURE GOMOD GOMODCACHE 64/pkg/tool/linux_amd64/vet env 4216270/b243/_pkg_.a zBGz/yhMlvprrXT_DfcRFzBGz x_amd64/vet GOINSECURE t/internal/languconfig GOMODCACHE x_amd64/vet (http block)
• https://api.github.com/repos/github/gh-aw/actions/runs/2/artifacts
  • Triggering command: /usr/bin/gh gh api --paginate repos/{owner}/{repo}/actions/runs/2/artifacts --jq .artifacts[].name cfg 64/pkg/tool/linux_amd64/vet GOINSECURE GOMOD 4216270/b021/sym--show-toplevel 64/pkg/tool/linux_amd64/vet env 4216270/b248/_pkg_.a DUdE/2oEXO76xEThYfB4YDUdE ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet GOINSECURE t/internal/formarev-parse GOMODCACHE ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet (http block)
  • Triggering command: /usr/bin/gh gh run download 2 --dir test-logs/run-2 cfg 64/pkg/tool/linux_amd64/vet GOINSECURE GOMOD GOMODCACHE 64/pkg/tool/linux_amd64/vet env 4216270/b059/importcfg G1PQ/JYbkfQ24WgmEFuVqG1PQ ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet GOINSECURE GOMOD GOMODCACHE ache/go/1.25.8/x64/pkg/tool/linu-trimpath (http block)
• https://api.github.com/repos/github/gh-aw/actions/runs/3/artifacts
  • Triggering command: /usr/bin/gh gh api --paginate repos/{owner}/{repo}/actions/runs/3/artifacts --jq .artifacts[].name cfg 64/pkg/tool/linux_amd64/vet GOINSECURE entropy ache/go/1.25.8/x--show-toplevel 64/pkg/tool/linux_amd64/vet env report.md h5RJ/fhSiz4P0ozPJ9_2Hh5RJ x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet (http block)
  • Triggering command: /usr/bin/gh gh run download 3 --dir test-logs/run-3 cfg 64/pkg/tool/linux_amd64/vet GOINSECURE fips140/bigmod GOMODCACHE 64/pkg/tool/linux_amd64/vet env 4216270/b001/exe/a.out cfg ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet GOINSECURE mTWGsVkD-cRo8/Njrev-parse GOMODCACHE ache/go/1.25.8/x64/pkg/tool/linu-test.v=true (http block)
• https://api.github.com/repos/github/gh-aw/actions/runs/4/artifacts
  • Triggering command: /usr/bin/gh gh api --paginate repos/{owner}/{repo}/actions/runs/4/artifacts --jq .artifacts[].name cfg 64/pkg/tool/linux_amd64/vet GOINSECURE fips140/aes/gcm ache/go/1.25.8/x/home/REDACTED/work/gh-aw/gh-aw/.github/workflows/archie.md 64/pkg/tool/linux_amd64/vet env 4216270/b237/_pkg_.a ho52/RILG8Ja3npv64jHUho52 ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet GOINSECURE t/message GOMODCACHE ache/go/1.25.8/x64/pkg/tool/linu-trimpath (http block)
  • Triggering command: /usr/bin/gh gh run download 4 --dir test-logs/run-4 cfg 64/pkg/tool/linux_amd64/vet GOINSECURE GOMOD 4216270/b047/sym--show-toplevel 64/pkg/tool/linux_amd64/vet env 2276344475/custom/workflows aqNl/Sak5XWYSYfQ9xL6IaqNl ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet GOINSECURE GOMOD GOMODCACHE ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet (http block)
• https://api.github.com/repos/github/gh-aw/actions/runs/5/artifacts
  • Triggering command: /usr/bin/gh gh api --paginate repos/{owner}/{repo}/actions/runs/5/artifacts --jq .artifacts[].name cfg 64/pkg/tool/linux_amd64/vet GOINSECURE fips140/drbg ache/go/1.25.8/x--show-toplevel 64/pkg/tool/linux_amd64/vet env 4216270/b238/_pkg_.a NNuM/NZNs7zEf3uyY_7BzNNuM 64/pkg/tool/linux_amd64/vet GOINSECURE t/feature/pluralrev-parse GOMODCACHE 64/pkg/tool/linux_amd64/vet (http block)
  • Triggering command: /usr/bin/gh gh run download 5 --dir test-logs/run-5 cfg 64/pkg/tool/linu-importcfg GOINSECURE 4216270/b036/asmrev-parse ache/go/1.25.8/x--show-toplevel 64/pkg/tool/linu/home/REDACTED/work/gh-aw/gh-aw/scripts/lint_error_messages_test.go env gh-aw.wasm ($(du -h gh-aw.wasm | cut -f1))" cfg x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile (http block)
• https://api.github.com/repos/github/gh-aw/actions/workflows
  • Triggering command: /usr/bin/gh gh workflow list --json name,state,path -json GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile env -json GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile (http block)
  • Triggering command: /usr/bin/gh gh run list --json databaseId,number,url,status,conclusion,workflowName,createdAt,startedAt,updatedAt,event,headBranch,headSha,displayTitle --workflow nonexistent-workflow-12345 --limit 100 mcpgodebug GOMODCACHE x_amd64/vet env flags="-w -s" -o gh-aw.wasm ./cmd/gh-aw-wasm GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet (http block)
  • Triggering command: /usr/bin/gh gh run list --json databaseId,number,url,status,conclusion,workflowName,createdAt,startedAt,updatedAt,event,headBranch,headSha,displayTitle --workflow nonexistent-workflow-12345 --limit 6 GOMOD GOMODCACHE 64/pkg/tool/linux_amd64/vet env 4216270/b216/_pkg_.a 3cxW/IBlaqeSprCJhOYFQ3cxW cfg GOINSECURE g/x/text/secure/rev-parse GOMODCACHE ache/go/1.25.8/x64/pkg/tool/linu-goversion (http block)
• https://api.github.com/repos/github/gh-aw/git/ref/tags/v0.47.4
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v0.47.4 --jq .object.sha --show-toplevel ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet /usr/bin/git /tmp/go-build204git -trimpath 1/x64/bin/node git rev-�� --show-toplevel /opt/hostedtoolcache/go/1.25.8/x64/pkg/tool/linuremote.origin.url /usr/bin/git vaScript71922476git /tmp/go-build667rev-parse 1/x64/bin/node git (http block)
• https://api.github.com/repos/github/gh-aw/git/ref/tags/v1.0.0
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v1.0.0 --jq .object.sha 4216270/b213/_pkg_.a O_e3/jNiaaPEe3F5AUUx1O_e3 64/pkg/tool/linux_amd64/compile GOINSECURE GOMOD GOMODCACHE 64/pkg/tool/linux_amd64/compile (http block)
• https://api.github.com/repos/github/gh-aw/git/ref/tags/v1.2.3
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v1.2.3 --jq .object.sha -json GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet env -json GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet (http block)
• https://api.github.com/repos/github/gh-aw/git/ref/tags/v2.0.0
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v2.0.0 --jq .object.sha cut -f1))" GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet env -json GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet (http block)
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v2.0.0 --jq .object.sha -json GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE hT50UqE/9k5zS8fxrev-parse env -json GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet (http block)
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v2.0.0 --jq .object.sha -json GO111MODULE x_amd64/vet GOINSECURE GOMOD arith_wasm.s x_amd64/vet env Gitcustom_branch1444358773/001' Gitcustom_branch1444358773/001' x_amd64/vet GOINSECURE id GOMODCACHE x_amd64/vet (http block)
• https://api.github.com/repos/github/gh-aw/git/ref/tags/v3.0.0
  • Triggering command: /usr/bin/gh gh api /repos/github/gh-aw/git/ref/tags/v3.0.0 --jq .object.sha -json GO111MODULE x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet env g_.a @v1.19.2/ast/ast.go x_amd64/vet GOINSECURE GOMOD GOMODCACHE x_amd64/vet (http block)
• https://api.github.com/repos/githubnext/agentics/git/ref/tags/-
  • Triggering command: /usr/bin/gh gh api /repos/githubnext/agentics/git/ref/tags/- --jq .object.sha --show-toplevel git /usr/bin/git --show-toplevel ache/go/1.25.8/xapi /usr/bin/git git rev-�� --show-toplevel git /usr/bin/git --show-toplevel ache/go/1.25.8/x-C /usr/bin/git git (http block)
• https://api.github.com/repos/nonexistent/action/git/ref/tags/v999.999.999
  • Triggering command: /usr/bin/gh gh api /repos/nonexistent/action/git/ref/tags/v999.999.999 --jq .object.sha 4216270/b207/_pkg_.a V4ci/NWzImF-917Hk3aRqV4ci cfg GOINSECURE g/x/crypto/chachconfig GOMODCACHE ache/go/1.25.8/xtest@example.com -c 4216270/b052/importcfg Bcts/l-3Xgegn_V4R30X4Bcts cfg -n1 --format=format:/tmp/test-process-1944847803.js --end-of-optionsSafe: ${{ github.actor }}, Unsafe: ${{ secrets.TOKEN }} ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet (http block)
• https://api.github.com/repos/nonexistent/repo/actions/runs/12345
  • Triggering command: /usr/bin/gh gh run view 12345 --repo nonexistent/repo --json status,conclusion GOINSECURE boring/bbig GOMODCACHE 64/pkg/tool/linux_amd64/compile stlo�� _.a 324607/b022/vet.cfg k GOINSECURE til GOMODCACHE ache/go/1.25.8/x64/pkg/tool/linux_amd64/vet (http block)
• https://api.github.com/repos/owner/repo/actions/workflows
  • Triggering command: /usr/bin/gh gh workflow list --json name,state,path --repo owner/repo -nolocalimports -importcfg /tmp/go-build667324607/b415/importcfg -pack /tmp/go-build667324607/b415/_testmain.go env -json GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile (http block)
  • Triggering command: /usr/bin/gh gh workflow list --json name,state,path --repo owner/repo x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile env -json o x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile (http block)
• https://api.github.com/repos/owner/repo/contents/file.md
  • Triggering command: /tmp/go-build667324607/b397/cli.test /tmp/go-build667324607/b397/cli.test -test.testlogfile=/tmp/go-build667324607/b397/testlog.txt -test.paniconexit0 -test.v=true -test.parallel=4 -test.timeout=10m0s -test.run=^Test -test.short=true GOINSECURE GOMOD GOMODCACHE go env -json GO111MODULE x_amd64/compile -Oz --enable-bu/opt/hostedtoolcache/go/1.25.8/x64/pkg/tool/linux_amd64/vet GOMOD GOMODCACHE x_amd64/compile (http block)
• https://api.github.com/repos/test-owner/test-repo/actions/secrets
  • Triggering command: /usr/bin/gh gh api /repos/test-owner/test-repo/actions/secrets --jq .secrets[].name -json GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile env -json GO111MODULE x_amd64/compile GOINSECURE GOMOD GOMODCACHE x_amd64/compile (http block)

If you need me to access, download, or install something from one of these locations, you can either:

• Configure Actions setup steps to set up my environment, which run before the firewall is enabled
• Add the appropriate URLs or hosts to the custom allowlist in this repository's Copilot coding agent settings (admins only)

---

---

✨ PR Review Safe Output Test - Run 24227486382

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• chore: bump CLI versions — Claude Code 2.1.98, Copilot 1.0.22 (unpin), Gemini 0.37.1 #25577 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

💥 [THE END] — Illustrated by Smoke Claude · ● 293.9K · ◷

---

Changeset

• Type: patch
• Description: Bump default CLI versions for Claude Code (2.1.98), Copilot (1.0.22 with pin removed), and Gemini (0.37.1).

Generated by Changeset Generator for issue #25577 · ◷

[github-actions]

✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟

[github-actions]

📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing...

[github-actions]

🎬 THE END — Smoke Claude MISSION: ACCOMPLISHED! The hero saves the day! ✨

[github-actions]

✅ All tools validated successfully! Agent Container Smoke Test confirms agent container is ready.

[Copilot]

Pull request overview

Updates default versions for three supported agent CLIs and regenerates downstream workflow/golden fixtures so compiled outputs reflect the new versions.

Changes:

• Bump default CLI versions: Claude Code 2.1.94 → 2.1.98, GitHub Copilot CLI 1.0.20 → 1.0.22, Gemini CLI 0.36.0 → 0.37.1
• Update WASM golden fixtures to reflect the new default Copilot version
• Regenerate affected workflow lock files to embed the updated versions in GH_AW_INFO_* and installer steps

Show a summary per file

File	Description
pkg/workflow/testdata/wasm_golden/WasmBinary/with-imports.golden	Update embedded Copilot CLI version strings and install step in golden output
pkg/workflow/testdata/wasm_golden/WasmBinary/basic-copilot.golden	Update embedded Copilot CLI version strings and install step in golden output
pkg/workflow/testdata/TestWasmGolden_CompileFixtures/with-imports.golden	Update embedded Copilot CLI version strings and install step in golden output
pkg/workflow/testdata/TestWasmGolden_CompileFixtures/smoke-copilot.golden	Update embedded Copilot CLI version strings and install step in golden output
pkg/workflow/testdata/TestWasmGolden_CompileFixtures/basic-copilot.golden	Update embedded Copilot CLI version strings and install step in golden output
pkg/constants/version_constants.go	Bump default versions for Claude Code, Copilot CLI, and Gemini CLI
.github/workflows/workflow-skill-extractor.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/workflow-normalizer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/workflow-health-manager.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/workflow-generator.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/weekly-safe-outputs-spec-review.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/weekly-issue-summary.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/weekly-editors-health-check.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/weekly-blog-post-writer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/video-analyzer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/update-astro.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/ubuntu-image-analyzer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/typist.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/tidy.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/test-workflow.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/test-quality-sentinel.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/test-project-url-default.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/test-dispatcher.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/terminal-stylist.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/technical-doc-writer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/super-linter.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/sub-issue-closer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/step-name-alignment.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/static-analysis-report.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/stale-repo-identifier.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-workflow-call.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-workflow-call-with-inputs.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-update-cross-repo-pr.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-test-tools.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-temporary-id.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-service-ports.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-project.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-multi-pr.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-gemini.lock.yml	Regenerate lockfile to embed updated Gemini CLI version pin
.github/workflows/smoke-create-cross-repo-pr.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-copilot.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-copilot-arm.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-agent-scoped-approved.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-agent-public-none.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-agent-public-approved.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-agent-all-none.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/smoke-agent-all-merged.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/slide-deck-maintainer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/sergo.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/security-review.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/security-compliance.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/scout.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/safe-output-health.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/research.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/repository-quality-improver.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/repo-tree-map.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/repo-audit-analyzer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/release.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/refiner.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/refactoring-cadence.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/q.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/python-data-charts.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/pr-triage-agent.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/pr-nitpick-reviewer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/portfolio-analyst.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/poem-bot.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/plan.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/pdf-summary.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/org-health-report.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/notion-issue-summary.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/metrics-collector.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/mergefest.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/mcp-inspector.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/layout-spec-maintainer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/jsweep.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/issue-triage-agent.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/issue-monster.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/instructions-janitor.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/hourly-ci-cleaner.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/gpclean.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/go-pattern-detector.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/go-logger.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/go-fan.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/glossary-maintainer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/github-remote-mcp-auth-test.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/functional-pragmatist.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/firewall.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/firewall-escape.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/example-workflow-analyzer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/example-permissions-warning.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/draft-pr-cleanup.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/docs-noob-tester.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/discussion-task-miner.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/dictation-prompt.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/dev.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/dev-hawk.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/dependabot-go-checker.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/dependabot-burner.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/delight.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/deep-report.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/dead-code-remover.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-workflow-updater.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-testify-uber-super-expert.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-team-status.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-syntax-error-quality.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-semgrep-scan.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-secrets-analysis.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-safe-output-integrator.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-repo-chronicle.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-regulatory.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-performance-summary.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-news.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-mcp-concurrency-analysis.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-malicious-code-scan.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-issues-report.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-integrity-analysis.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-firewall-report.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-file-diet.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-doc-updater.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-compiler-quality.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-community-attribution.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-cli-tools-tester.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-cli-performance.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-choice-test.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-assign-issue-to-user.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/daily-architecture-diagram.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/craft.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/copilot-token-optimizer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/copilot-token-audit.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/copilot-pr-prompt-analysis.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/copilot-pr-nlp-analysis.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/copilot-pr-merged-report.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/copilot-cli-deep-research.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/copilot-agent-analysis.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/contribution-check.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/constraint-solving-potd.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/code-simplifier.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/code-scanning-fixer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/cloclo.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/cli-consistency-checker.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/ci-doctor.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/ci-coach.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/breaking-change-checker.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/brave.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/bot-detection.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/blog-auditor.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/auto-triage-issues.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/audit-workflows.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/artifacts-summary.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/architecture-guardian.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/archie.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/approach-validator.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/api-consumption-report.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/agentic-observability-kit.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/agent-persona-explorer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/agent-performance-analyzer.lock.yml	Regenerate lockfile to embed updated CLI version pins
.github/workflows/ace-editor.lock.yml	Regenerate lockfile to embed updated CLI version pins

Copilot's findings

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

• Files reviewed: 182/182 changed files
• Comments generated: 1

[Copilot]

After bumping DefaultCopilotVersion to 1.0.22, there are still lock/workflow fixtures in the repo that hardcode Copilot CLI 1.0.20 (e.g., pkg/cli/workflows/example-blocked-domains.lock.yml and pkg/workflow/test-yaml-import.lock.yml). If these files are expected to track the default Copilot version (or if the PR description implies all Copilot pins were updated), they should be regenerated/updated as well; otherwise, consider adding a note explaining why these remain pinned to 1.0.20 to avoid confusion and accidental regressions.

[github-actions]

Smoke test: Codex (run 24227486372)
Merged PRs: #25571 feat: improve frontmatter hash checker with debug logging and failure propagation to conclusion job; #25561 Normalize report formatting: add shared/reporting.md import to two daily workflows
GitHub MCP ✅
Serena activate/find_symbol ✅
Playwright title check ✅
Web-fetch MCP ❌ (tool unavailable)
File write + cat ✅
Build ✅
Overall: FAIL

🔮 The oracle has spoken through Smoke Codex · ◷

[github-actions]

Agent Container Tool Check

Tool	Status	Version
bash	✅	5.2.21
sh	✅	available
git	✅	2.53.0
jq	✅	1.7
yq	✅	v4.52.5
curl	✅	8.5.0
gh	✅	2.89.0
node	✅	v20.20.2
python3	✅	3.12.3
go	✅	1.24.13
java	✅	21.0.10
dotnet	✅	10.0.201

Result: 12/12 tools available ✅
Overall Status: PASS

🔧 Tool validation by Agent Container Smoke Test · ● 1.9M · ◷

[github-actions]

Smoke Test Results — Run §24227486382

Core: ✅1 ✅2 ✅3 ✅4 ✅5 ✅6 ✅7 ✅8 ✅9 ✅10 ✅11 ✅12
PR Review: ✅13 ✅14 ✅15 ⚠️16 ✅17 ✅18 ⚠️19

Status: PARTIAL (16 passed, 2 skipped — no threads to resolve, no safe PR to close)

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• chore: bump CLI versions — Claude Code 2.1.98, Copilot 1.0.22 (unpin), Gemini 0.37.1 #25577 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

💥 [THE END] — Illustrated by Smoke Claude · ● 293.9K · ◷

[github-actions]

💥 Automated smoke test review - all systems nominal!

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• #25577 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

💥 [THE END] — Illustrated by Smoke Claude · ● 293.9K

[github-actions]

Copilot CLI version bumped to 1.0.22 — looks correct for this version update PR.

[github-actions]

Install script also updated to 1.0.22 — consistent with the version env vars above.

[github-actions]

Agreed! Consistent version across all env vars and install scripts — this is what a clean version bump looks like. 🤖

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• chore: bump CLI versions — Claude Code 2.1.98, Copilot 1.0.22 (unpin), Gemini 0.37.1 #25577 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

📰 BREAKING: Report filed by Smoke Copilot · ● 2.7M

[github-actions]

Commit pushed: 7b15a13

Generated by Changeset Generator

[github-actions]

Smoke test run §24227486394 results for chore: bump CLI versions — Claude Code 2.1.98, Copilot 1.0.22 (unpin), Gemini 0.37.1:

Test	Status
GitHub MCP	✅
MCP Scripts GH CLI	✅
Serena MCP	❌
Playwright	✅
Web Fetch	✅
File Writing	✅
Bash Tool	✅
Discussion Interaction	✅
Build gh-aw	✅
Upload artifact	✅
Discussion Creation	✅
Workflow Dispatch	✅
PR Review	✅

Overall: PASS (12/13 — Serena MCP server running but no tools registered)

PR author: @Copilot | Assignees: @pelikhan, @Copilot

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• chore: bump CLI versions — Claude Code 2.1.98, Copilot 1.0.22 (unpin), Gemini 0.37.1 #25577 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

📰 BREAKING: Report filed by Smoke Copilot · ● 2.7M · ◷

[github-actions]

Smoke test agent review of PR #25577: Clean version bump across all 187 recompiled workflow lock files. Copilot CLI unpinned to 1.0.22, Claude bumped to 2.1.98, Gemini to 0.37.1. LGTM! 🤖

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• #25577 pull_request_read: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

📰 BREAKING: Report filed by Smoke Copilot · ● 2.7M

[github-actions]

📰 VERDICT: Smoke Copilot has concluded. All systems operational. This is a developing story. 🎤