From 85f73532322c77799ce18ae1d841dec0c23b0f9a Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Thu, 22 Jan 2026 21:29:32 +0000
Subject: [PATCH 1/2] Initial plan


From 2e19953d2e68489d4c91808721922f65096baff7 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Thu, 22 Jan 2026 21:36:08 +0000
Subject: [PATCH 2/2] docs: Add Codespaces hint to upgrade documentation

Add a tip about using the standalone installer script in Codespaces
when the extension upgrade fails due to restricted npm permissions.
This matches the same guidance provided in the QuickStart page.

Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
---
 docs/src/content/docs/agent-factory-status.mdx |  3 +++
 docs/src/content/docs/guides/upgrading.md      | 10 ++++++++++
 2 files changed, 13 insertions(+)

diff --git a/docs/src/content/docs/agent-factory-status.mdx b/docs/src/content/docs/agent-factory-status.mdx
index b6ec8b375b2..a7566330623 100644
--- a/docs/src/content/docs/agent-factory-status.mdx
+++ b/docs/src/content/docs/agent-factory-status.mdx
@@ -28,6 +28,7 @@ These are experimental agentic workflows used by the GitHub Next team to learn,
 | [CI Cleaner](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/hourly-ci-cleaner.md) | copilot | [![CI Cleaner](https://github.com/githubnext/gh-aw/actions/workflows/hourly-ci-cleaner.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/hourly-ci-cleaner.lock.yml) | `0 6,18 * * *` | - |
 | [CI Failure Doctor](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/ci-doctor.md) | copilot | [![CI Failure Doctor](https://github.com/githubnext/gh-aw/actions/workflows/ci-doctor.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/ci-doctor.lock.yml) | - | - |
 | [CI Optimization Coach](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/ci-coach.md) | copilot | [![CI Optimization Coach](https://github.com/githubnext/gh-aw/actions/workflows/ci-coach.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/ci-coach.lock.yml) | `0 13 * * 1-5` | - |
+| [Claude Code User Documentation Review](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/claude-code-user-docs-review.md) | claude | [![Claude Code User Documentation Review](https://github.com/githubnext/gh-aw/actions/workflows/claude-code-user-docs-review.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/claude-code-user-docs-review.lock.yml) | - | - |
 | [CLI Consistency Checker](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/cli-consistency-checker.md) | copilot | [![CLI Consistency Checker](https://github.com/githubnext/gh-aw/actions/workflows/cli-consistency-checker.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/cli-consistency-checker.lock.yml) | `0 13 * * 1-5` | - |
 | [CLI Version Checker](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/cli-version-checker.md) | claude | [![CLI Version Checker](https://github.com/githubnext/gh-aw/actions/workflows/cli-version-checker.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/cli-version-checker.lock.yml) | - | - |
 | [Code Scanning Fixer](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/code-scanning-fixer.md) | copilot | [![Code Scanning Fixer](https://github.com/githubnext/gh-aw/actions/workflows/code-scanning-fixer.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/code-scanning-fixer.lock.yml) | - | - |
@@ -64,6 +65,7 @@ These are experimental agentic workflows used by the GitHub Next team to learn,
 | [Daily Workflow Updater](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/daily-workflow-updater.md) | copilot | [![Daily Workflow Updater](https://github.com/githubnext/gh-aw/actions/workflows/daily-workflow-updater.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/daily-workflow-updater.lock.yml) | - | - |
 | [DeepReport - Intelligence Gathering Agent](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/deep-report.md) | codex | [![DeepReport - Intelligence Gathering Agent](https://github.com/githubnext/gh-aw/actions/workflows/deep-report.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/deep-report.lock.yml) | `0 15 * * 1-5` | - |
 | [Delight](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/delight.md) | copilot | [![Delight](https://github.com/githubnext/gh-aw/actions/workflows/delight.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/delight.lock.yml) | - | - |
+| [Dependabot Bundler](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/dependabot-bundler.md) | copilot | [![Dependabot Bundler](https://github.com/githubnext/gh-aw/actions/workflows/dependabot-bundler.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/dependabot-bundler.lock.yml) | - | - |
 | [Dependabot Dependency Checker](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/dependabot-go-checker.md) | copilot | [![Dependabot Dependency Checker](https://github.com/githubnext/gh-aw/actions/workflows/dependabot-go-checker.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/dependabot-go-checker.lock.yml) | `0 9 * * 1,3,5` | - |
 | [Dev](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/dev.md) | copilot | [![Dev](https://github.com/githubnext/gh-aw/actions/workflows/dev.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/dev.lock.yml) | - | - |
 | [Dev Hawk](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/dev-hawk.md) | copilot | [![Dev Hawk](https://github.com/githubnext/gh-aw/actions/workflows/dev-hawk.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/dev-hawk.lock.yml) | - | - |
@@ -112,6 +114,7 @@ These are experimental agentic workflows used by the GitHub Next team to learn,
 | [Safe Output Health Monitor](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/safe-output-health.md) | claude | [![Safe Output Health Monitor](https://github.com/githubnext/gh-aw/actions/workflows/safe-output-health.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/safe-output-health.lock.yml) | - | - |
 | [Schema Consistency Checker](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/schema-consistency-checker.md) | claude | [![Schema Consistency Checker](https://github.com/githubnext/gh-aw/actions/workflows/schema-consistency-checker.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/schema-consistency-checker.lock.yml) | - | - |
 | [Scout](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/scout.md) | claude | [![Scout](https://github.com/githubnext/gh-aw/actions/workflows/scout.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/scout.lock.yml) | - | `/scout` |
+| [Secret Scanning Triage](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/secret-scanning-triage.md) | copilot | [![Secret Scanning Triage](https://github.com/githubnext/gh-aw/actions/workflows/secret-scanning-triage.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/secret-scanning-triage.lock.yml) | - | - |
 | [Security Alert Burndown](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/security-alert-burndown.campaign.md) | copilot | [![Security Alert Burndown](https://github.com/githubnext/gh-aw/actions/workflows/security-alert-burndown.campaign.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/security-alert-burndown.campaign.lock.yml) | - | - |
 | [Security Compliance Campaign](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/security-compliance.md) | copilot | [![Security Compliance Campaign](https://github.com/githubnext/gh-aw/actions/workflows/security-compliance.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/security-compliance.lock.yml) | - | - |
 | [Security Fix PR](https://github.com/githubnext/gh-aw/blob/main/.github/workflows/security-fix-pr.md) | copilot | [![Security Fix PR](https://github.com/githubnext/gh-aw/actions/workflows/security-fix-pr.lock.yml/badge.svg)](https://github.com/githubnext/gh-aw/actions/workflows/security-fix-pr.lock.yml) | - | - |
diff --git a/docs/src/content/docs/guides/upgrading.md b/docs/src/content/docs/guides/upgrading.md
index 5409651abff..e94e8c2eb73 100644
--- a/docs/src/content/docs/guides/upgrading.md
+++ b/docs/src/content/docs/guides/upgrading.md
@@ -36,6 +36,16 @@ Upgrade the `gh-aw` extension to get the latest features and codemods:
 gh extension upgrade gh-aw
 ```
 
+> [!TIP]
+> Working in GitHub Codespaces?
+>
+> If the extension upgrade fails due to restricted permissions that prevent global npm installs, use the standalone installer instead:
+>
+> ```bash wrap
+> curl -sL https://raw.githubusercontent.com/githubnext/gh-aw/main/install-gh-aw.sh | bash
+> ```
+>
+
 Check your version with `gh aw version` and compare against the [latest release](https://github.com/githubnext/gh-aw/releases). If you encounter issues, try a clean reinstall with `gh extension remove gh-aw` followed by `gh extension install githubnext/gh-aw`.
 
 ## Step 2: Backup Your Workflows