From 04bd7b06b818af97c69ded91d82cd86b892bd17f Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Thu, 7 May 2026 20:07:56 +0000 Subject: [PATCH 1/2] Initial plan From daaa4d7311fec4b89cfa865f6c8ad2824d3f03cb Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Thu, 7 May 2026 20:16:48 +0000 Subject: [PATCH 2/2] fix: address CLI consistency issues - write+ terminology, mcp list-tools example, pr bullet char Agent-Logs-Url: https://github.com/github/gh-aw/sessions/1b59de1a-d45a-4e71-b3d2-19f683164e6a Co-authored-by: gh-aw-bot <259018956+gh-aw-bot@users.noreply.github.com> --- pkg/cli/mcp_list_tools.go | 2 +- pkg/cli/mcp_server_command.go | 6 +++--- pkg/cli/pr_command.go | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/pkg/cli/mcp_list_tools.go b/pkg/cli/mcp_list_tools.go index efd093a09b7..b669c05698e 100644 --- a/pkg/cli/mcp_list_tools.go +++ b/pkg/cli/mcp_list_tools.go @@ -183,7 +183,7 @@ The workflow-id-or-file can be: - A file path (e.g., "weekly-research.md" or ".github/workflows/weekly-research.md") Examples: - gh aw mcp list-tools --server github # Find workflows with 'github' MCP server + gh aw mcp list-tools --server github # Search for workflows containing the 'github' MCP server gh aw mcp list-tools weekly-research --server github # List tools for 'github' server in weekly-research.md gh aw mcp list-tools issue-triage --server safe-outputs # List tools for 'safe-outputs' server in issue-triage.md gh aw mcp list-tools test-workflow --server playwright -v # Verbose output with tool descriptions diff --git a/pkg/cli/mcp_server_command.go b/pkg/cli/mcp_server_command.go index eb0a6a54800..1e6bc113c59 100644 --- a/pkg/cli/mcp_server_command.go +++ b/pkg/cli/mcp_server_command.go @@ -31,8 +31,8 @@ secrets are not shared with the MCP server process itself. The server provides the following tools: - status - Show status of agentic workflow files - compile - Compile Markdown workflows to GitHub Actions YAML - - logs - Download and analyze workflow logs (requires write+ access) - - audit - Investigate a workflow run, job, or step and generate a report (requires write+ access) + - logs - Download and analyze workflow logs (requires write access or higher) + - audit - Investigate a workflow run, job, or step and generate a report (requires write access or higher) - checks - Classify CI check state for a pull request - mcp-inspect - Inspect MCP servers in workflows and list available tools - add - Add workflows from remote repositories to .github/workflows @@ -43,7 +43,7 @@ Access Control: The GITHUB_ACTOR environment variable specifies the GitHub username for role-based access control. The actor's repository role (admin, maintain, write, etc.) determines which tools are available. Tools requiring elevated permissions (logs, audit) are always - mounted but will return permission denied errors if the actor lacks write+ access. + mounted but will return permission denied errors if the actor lacks write access or higher. Use the --validate-actor flag to enforce actor validation. When enabled, logs and audit tools will return permission denied errors if GITHUB_ACTOR is not set. When disabled diff --git a/pkg/cli/pr_command.go b/pkg/cli/pr_command.go index 2ef4fa2446d..80f7d2697cd 100644 --- a/pkg/cli/pr_command.go +++ b/pkg/cli/pr_command.go @@ -47,7 +47,7 @@ to another, including the code changes, title, and body. Useful for migrating work from trial repositories to production repositories. Available subcommands: - • transfer - Transfer a pull request to another repository + - transfer - Transfer a pull request to another repository Examples: gh aw pr transfer https://github.com/trial/repo/pull/234