diff --git a/pkg/workflow/allowed_domains_sanitization_test.go b/pkg/workflow/allowed_domains_sanitization_test.go
index 8e525d88080..62fb3af390e 100644
--- a/pkg/workflow/allowed_domains_sanitization_test.go
+++ b/pkg/workflow/allowed_domains_sanitization_test.go
@@ -31,6 +31,7 @@ permissions:
   issues: read
   pull-requests: read
 engine: copilot
+strict: false
 network:
   allowed:
     - example.com
@@ -255,6 +256,7 @@ permissions:
   issues: read
   pull-requests: read
 engine: copilot
+strict: false
 network:
   allowed:
     - example.com
@@ -286,6 +288,7 @@ permissions:
   issues: read
   pull-requests: read
 engine: copilot
+strict: false
 network:
   allowed:
     - example.com
diff --git a/pkg/workflow/docker_predownload_test.go b/pkg/workflow/docker_predownload_test.go
index e0831e3e7f6..46b5ab4ebd8 100644
--- a/pkg/workflow/docker_predownload_test.go
+++ b/pkg/workflow/docker_predownload_test.go
@@ -81,6 +81,7 @@ Test workflow with custom MCP container.`,
 			frontmatter: `---
 on: issues
 engine: claude
+strict: false
 safe-outputs:
   create-issue:
 network:
diff --git a/pkg/workflow/domains_protocol_integration_test.go b/pkg/workflow/domains_protocol_integration_test.go
index 4e7b2fb0276..80777500b90 100644
--- a/pkg/workflow/domains_protocol_integration_test.go
+++ b/pkg/workflow/domains_protocol_integration_test.go
@@ -26,6 +26,7 @@ on: push
 permissions:
   contents: read
 engine: copilot
+strict: false
 network:
   allowed:
     - https://secure.example.com
@@ -205,6 +206,7 @@ on: push
 permissions:
   contents: read
 engine: copilot
+strict: false
 network:
   allowed:
     - https://example.com
@@ -249,6 +251,7 @@ on: push
 permissions:
   contents: read
 engine: copilot
+strict: false
 network:
   allowed:
     - example.com
diff --git a/pkg/workflow/sandbox_agent_false_test.go b/pkg/workflow/sandbox_agent_false_test.go
index 2570690a21e..44ff4a053d0 100644
--- a/pkg/workflow/sandbox_agent_false_test.go
+++ b/pkg/workflow/sandbox_agent_false_test.go
@@ -116,6 +116,7 @@ Test workflow to verify sandbox.agent: awf enables firewall.
 
 		markdown := `---
 engine: copilot
+strict: false
 network:
   allowed:
     - defaults
diff --git a/pkg/workflow/sandbox_agent_tools_default_test.go b/pkg/workflow/sandbox_agent_tools_default_test.go
index 0a73bbe6224..485e85e800a 100644
--- a/pkg/workflow/sandbox_agent_tools_default_test.go
+++ b/pkg/workflow/sandbox_agent_tools_default_test.go
@@ -227,6 +227,7 @@ Test workflow where explicit tools.bash should take precedence over default.
 		// No explicit sandbox.agent, but network restrictions will auto-enable firewall
 		markdown := `---
 engine: copilot
+strict: false
 network:
   allowed:
     - github.com
diff --git a/pkg/workflow/strict_mode_deprecated_test.go b/pkg/workflow/strict_mode_deprecated_test.go
index 4913b2b37a1..73a00e87559 100644
--- a/pkg/workflow/strict_mode_deprecated_test.go
+++ b/pkg/workflow/strict_mode_deprecated_test.go
@@ -28,7 +28,7 @@ timeout_minutes: 10
 engine: copilot
 network:
   allowed:
-    - "api.example.com"
+    - defaults
 ---
 
 # Test Workflow`,
@@ -47,7 +47,7 @@ timeout-minutes: 10
 engine: copilot
 network:
   allowed:
-    - "api.example.com"
+    - defaults
 ---
 
 # Test Workflow`,
@@ -116,7 +116,7 @@ timeout_minutes: 10
 engine: copilot
 network:
   allowed:
-    - "api.example.com"
+    - defaults
 ---
 
 # Test Workflow`
diff --git a/pkg/workflow/strict_mode_test.go b/pkg/workflow/strict_mode_test.go
index 45ded0fe7cd..a531bce6ab2 100644
--- a/pkg/workflow/strict_mode_test.go
+++ b/pkg/workflow/strict_mode_test.go
@@ -29,7 +29,7 @@ permissions:
 engine: copilot
 network:
   allowed:
-    - "api.example.com"
+    - defaults
 ---
 
 # Test Workflow`,
@@ -47,7 +47,7 @@ timeout-minutes: 10
 engine: copilot
 network:
   allowed:
-    - "api.example.com"
+    - defaults
 ---
 
 # Test Workflow`,