Skip to content

fix: recompile agentic workflow lock files with gh-aw v0.68.3#125

Merged
digitarald merged 2 commits intomainfrom
users/digitarald/fix-aw-lockfiles
Apr 16, 2026
Merged

fix: recompile agentic workflow lock files with gh-aw v0.68.3#125
digitarald merged 2 commits intomainfrom
users/digitarald/fix-aw-lockfiles

Conversation

@digitarald
Copy link
Copy Markdown
Collaborator

@digitarald digitarald commented Apr 15, 2026
edited
Loading

Problem

All 3 agentic workflows (CI Failure Doctor, Daily Doc Updater, Code Simplifier) have been failing with activationfailed since March 31 — 16 consecutive daily failures each.

Root cause: Dependabot was bumping github/gh-aw action SHAs inside the compiled .lock.yml files without recompiling them. This created a version mismatch — lock file metadata said compiler_version: v0.50.5 but action refs pointed to v0.65.2, causing the activation job to reject the workflow.

The gh-aw docs explicitly warn against this:

Do not merge these PRs. Action pins in compiled workflows should only be updated by running gh aw compile or gh aw update-actions.

Fix

  1. Recompiled all 3 lock files with gh aw compile using gh-aw v0.68.3
  2. Added Dependabot ignore rules (wildcard patterns github/gh-aw-actions/* and github/gh-aw/*) to prevent recurrence

Expected side effects of recompilation

These are inherent to upgrading from gh-aw v0.50.5 → v0.68.3:

  • Cron schedules re-scattered: The compiler assigns new random times when schedule: daily is used in frontmatter. Code Simplifier: 12:17 → 10:36 UTC, Doc Updater: 23:31 → 11:45 UTC.
  • Maintenance workflow expanded: agentics-maintenance.yml gains new workflow_dispatch operations (disable, enable, update, upgrade, safe_outputs, create_labels, clean_cache_memories, validate) and a workflow_call interface — all generated by the newer compiler.
  • Action refs migrated: github/gh-aw/actions/setupgithub/gh-aw-actions/setup (new action repo structure in v0.68.3), actions/github-script v8 → v9.

Affected workflows

Workflow Failing since Runs failed
Code Simplifier Mar 31 (#32) 16
Daily Doc Updater Mar 31 (#32) 15
CI Failure Doctor Apr 13 (#63, #66) 2

Testing

Lock files compiled cleanly: ✓ Compiled 3 workflow(s): 0 error(s), 0 warning(s)

fix: recompile agentic workflow lock files with gh-aw v0.68.3
a849a7b 
Dependabot was bumping github/gh-aw action SHAs inside compiled
.lock.yml files without recompiling, creating a version mismatch
(compiler_version v0.50.5 vs action refs v0.65.2) that caused all
3 agentic workflows to fail with 'activationfailed' since Mar 31.

Fix:
- Recompile all lock files with gh-aw v0.68.3
- Add Dependabot ignore rule for github/gh-aw and github/gh-aw-actions
  to prevent recurrence (per gh-aw docs)
Copilot AI review requested due to automatic review settings April 15, 2026 21:22
Copilot AI reviewed Apr 15, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Note

Copilot was unable to run its full agentic suite in this review.

Recompiles agentic workflow lock files with gh-aw v0.68.3 to resolve activation failures caused by mismatched compiler metadata/action pins, and adds rules to prevent Dependabot from updating gh-aw-related action pins in compiled lock files.

Changes:

  • Recompiled agentic workflow .lock.yml files with updated gh-aw metadata and action pins (v0.68.3).
  • Added Dependabot ignore rules to avoid updating gh-aw action pins directly.
  • Updated the agentics maintenance workflow to the newer generated format and added maintenance operations via workflow_dispatch/workflow_call.
Show a summary per file
File Description
.github/workflows/daily-doc-updater.lock.yml Regenerated lock file with new gh-aw metadata, updated action pins, and updated workflow logic.
.github/workflows/code-simplifier.lock.yml Regenerated lock file with new gh-aw metadata, updated action pins, and updated workflow logic.
.github/workflows/agentics-maintenance.yml Updated generated maintenance workflow and added selectable maintenance operations.
.github/dependabot.yml Adds ignore rules intended to stop Dependabot from updating gh-aw action pins in compiled lock files.
.github/aw/actions-lock.json Adds lock entries for new gh-aw actions and actions/github-script@v9.

Copilot's findings

  • Files reviewed: 5/6 changed files
  • Comments generated: 5

Comment thread .github/dependabot.yml Outdated
Comment thread .github/workflows/daily-doc-updater.lock.yml
Comment thread .github/workflows/code-simplifier.lock.yml
Comment thread .github/workflows/agentics-maintenance.yml
Comment thread .github/workflows/agentics-maintenance.yml
fix: use wildcard patterns for Dependabot gh-aw ignore rules
7ad1778 
Dependabot matches on the full action path (e.g.
github/gh-aw-actions/setup), not the repo name alone. Use glob
patterns to cover all sub-actions.
@digitarald digitarald merged commit fbe49a7 into main Apr 16, 2026
11 of 12 checks passed
@digitarald digitarald deleted the users/digitarald/fix-aw-lockfiles branch April 16, 2026 04:07
This was referenced Apr 16, 2026
Closed
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@pierceboggan pierceboggan Awaiting requested review from pierceboggan pierceboggan is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@digitarald