From 3e6ca7d68bcb1d08594691cc3722211b0f2decee Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Tue, 6 Jan 2026 20:31:12 +0000 Subject: [PATCH] Add allowed-github-references and allowed-domains to safe-outputs documentation MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Update github-agentic-workflows.md to document two safe-outputs global configuration fields: - allowed-github-references: Controls which GitHub repository references (#123, owner/repo#456) are allowed in workflow output. References to unlisted repositories are escaped with backticks to prevent timeline items. New in v0.35.0. - allowed-domains: Controls which domains are allowed in URLs within safe output content. URLs from unlisted domains are replaced with (redacted). These fields were missing from the instructions file despite being available in the schema and documented in the reference documentation. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 --- .github/aw/github-agentic-workflows.md | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) diff --git a/.github/aw/github-agentic-workflows.md b/.github/aw/github-agentic-workflows.md index f8052224b8e..3b3b292db4a 100644 --- a/.github/aw/github-agentic-workflows.md +++ b/.github/aw/github-agentic-workflows.md @@ -617,6 +617,25 @@ The YAML frontmatter supports these fields: github-token: ${{ secrets.CUSTOM_PAT }} # Use custom PAT instead of GITHUB_TOKEN ``` Useful when you need additional permissions or want to perform actions across repositories. + - `allowed-domains:` - Allowed domains for URLs in safe output content (array) + - URLs from unlisted domains are replaced with `(redacted)` + - GitHub domains are always included by default + - `allowed-github-references:` - Allowed repositories for GitHub-style references (array) + - Controls which GitHub references (`#123`, `owner/repo#456`) are allowed in workflow output + - References to unlisted repositories are escaped with backticks to prevent timeline items + - Configuration options: + - `[]` - Escape all references (prevents all timeline items) + - `["repo"]` - Allow only the target repository's references + - `["repo", "owner/other-repo"]` - Allow specific repositories + - Not specified (default) - All references allowed + - Example: + ```yaml + safe-outputs: + allowed-github-references: [] # Escape all references + create-issue: + target-repo: "my-org/main-repo" + ``` + With `[]`, references like `#123` become `` `#123` `` and `other/repo#456` becomes `` `other/repo#456` ``, preventing timeline clutter while preserving information. - **`safe-inputs:`** - Define custom lightweight MCP tools as JavaScript, shell, or Python scripts (object) - Tools mounted in MCP server with access to specified secrets