Skip to content

Bump github/gh-aw from 0.76.1 to 0.77.5#8062

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github/gh-aw-0.77.5
Open

Bump github/gh-aw from 0.76.1 to 0.77.5#8062
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github/gh-aw-0.77.5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 8, 2026

Copy link
Copy Markdown
Contributor

Bumps github/gh-aw from 0.76.1 to 0.77.5.

Release notes

Sourced from github/gh-aw's releases.

v0.77.5

🌟 Release Highlights

This release tightens the daily effective-workflow guardrail with smarter configuration gating, structured diagnostics, and a bug fix for artifact client setup — plus a project-level UTC offset feature for more accurate timestamps across timezones.

✨ What's New

  • Project UTC offset for timestamps (#36142) — Rendered timestamps and expiration messages now respect a configured project UTC offset, so deadlines and expiry notices display correctly for teams in any timezone.
  • Structured diagnostics in daily ET guardrail (#36164) — The daily effective-workflow guardrail now emits structured diagnostic output, making it easier to understand and debug guardrail evaluation results.
  • close_discussion safe output in Daily Regulatory workflow (#36155) — The Daily Regulatory workflow can now close discussions as part of its safe-output actions, completing the full discussion lifecycle.
  • New fmterrorfnoverbs linter (#36146) — A new Go linter enforces correct verb usage in fmt.Errorf calls, catching a common class of formatting mistakes at lint time.

🐛 Bug Fixes & Improvements

  • Gate ET guardrail on explicit configuration (#36179) — The daily effective-workflow guardrail and its artifact client setup are now only activated when explicitly configured, preventing unnecessary overhead in workflows that do not use this feature.
  • Fix @actions/artifact install for ET guardrail (#36153) — Resolved a missing dependency that caused failures when the daily-effective-workflow guardrail was enabled.
  • Deploy command refactor (#36144) — Deploy command orchestration in pkg/cli was refactored to satisfy largefunc linter limits, improving maintainability without changing behavior.
  • Parser test coverage (#36149) — Frontmatter extraction tests migrated to testify with additional coverage, strengthening the parser test suite.

For complete details, see CHANGELOG.

Generated by 🚀 Release · sonnet46 659.7K

What's Changed

Full Changelog: github/gh-aw@v0.77.4...v0.77.5

v0.77.4

🌟 Release Highlights

This release delivers Anthropic WIF authentication, a new copilot-sdk engine, expanded aw.yml manifest capabilities, and a battery of reliability fixes across safe-outputs, threat-detection, and workflow compilation.

✨ What's New

... (truncated)

Commits
  • f990bbb Gate daily ET guardrail and artifact client setup on explicit configuration (...
  • ff60ee5 Weekly blog post – 2026-06-01 (#36178)
  • 4f17e34 Add structured diagnostics to the daily workflow ET guardrail (#36164)
  • 65d045e [blog] Agent of the Day – 2026-06-01 (#36158)
  • 7b11cb6 Enable close_discussion safe output in Daily Regulatory workflow (#36155)
  • faa33b8 test(parser): migrate frontmatter_extraction_test.go to testify + add missing...
  • 73ad414 Refactor deploy command orchestration to satisfy largefunc limits in `pkg/cli...
  • e270a5c [linter-miner] feat(linters): add fmterrorfnoverbs linter (#36146)
  • 9f10a06 Fix: install @​actions/artifact when daily-effective-workflow guardrail is con...
  • ecca252 Add project UTC offset support for rendered timestamps and expiration message...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump github/gh-aw from 0.76.1 to 0.77.5
134c7fb 
Bumps [github/gh-aw](https://github.com/github/gh-aw) from 0.76.1 to 0.77.5.
- [Release notes](https://github.com/github/gh-aw/releases)
- [Changelog](https://github.com/github/gh-aw/blob/main/CHANGELOG.md)
- [Commits](github/gh-aw@58d1bed...f990bbb)

---
updated-dependencies:
- dependency-name: github/gh-aw
  dependency-version: 0.77.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 8, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fanninpm fanninpm fanninpm approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@fanninpm