From b8257b180eff900fb905aeecff9b14cfd3faa707 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Sun, 22 Feb 2026 04:23:08 +0000 Subject: [PATCH] docs: update documentation for features merged 2026-02-22 - Document audit command's improved error surfacing for pre-agent failures (#17623) - Document automatic parent author mention preservation in add-comment (#17628) - Document fail-fast behavior when code push safe outputs fail (#17543) Co-Authored-By: Claude Sonnet 4.6 --- docs/src/content/docs/reference/safe-outputs.md | 6 ++++++ docs/src/content/docs/setup/cli.md | 2 ++ 2 files changed, 8 insertions(+) diff --git a/docs/src/content/docs/reference/safe-outputs.md b/docs/src/content/docs/reference/safe-outputs.md index 22b893e30a..6f571805ab 100644 --- a/docs/src/content/docs/reference/safe-outputs.md +++ b/docs/src/content/docs/reference/safe-outputs.md @@ -236,6 +236,8 @@ safe-outputs: allowed-reasons: [outdated] # restrict hiding reasons (optional) ``` +The author of the parent issue, PR, or discussion receiving the comment is automatically preserved as an allowed mention. This means `@username` references to the issue/PR/discussion author are not neutralized when the workflow posts a reply. + #### Hide Older Comments Set `hide-older-comments: true` to minimize previous comments from the same workflow (identified by `GITHUB_WORKFLOW`) before posting new ones. Useful for status updates. Allowed reasons: `spam`, `abuse`, `off_topic`, `outdated` (default), `resolved`. @@ -835,6 +837,10 @@ safe-outputs: When `push-to-pull-request-branch` is configured, git commands (`checkout`, `branch`, `switch`, `add`, `rm`, `commit`, `merge`) are automatically enabled. +#### Fail-Fast on Code Push Failure + +If `push-to-pull-request-branch` (or `create-pull-request`) fails, the safe-output pipeline cancels all remaining non-code-push outputs. Each cancelled output is marked with an explicit reason such as "Cancelled: code push operation failed". The failure details appear in the agent failure issue or comment generated by the conclusion job. + ### Release Updates (`update-release:`) Updates GitHub release descriptions: replace (complete replacement), append (add to end), or prepend (add to start). diff --git a/docs/src/content/docs/setup/cli.md b/docs/src/content/docs/setup/cli.md index a15e1a7520..791032a94e 100644 --- a/docs/src/content/docs/setup/cli.md +++ b/docs/src/content/docs/setup/cli.md @@ -330,6 +330,8 @@ gh aw audit 12345678 --parse # Parse logs to markdo Logs are saved to `logs/run-{id}/` with filenames indicating the extraction level (job logs, specific step, or first failing step). +When a workflow fails before the agent executes (for example, due to lockdown validation failures, missing secrets, or binary install failures), the audit report surfaces the actual error from the workflow step log files. The `failure_analysis.error_summary` field reflects the specific failure message rather than reporting "No specific errors identified". Providing an invalid run ID returns a human-readable error instead of a raw exit code. + #### `health` Display workflow health metrics and success rates.