github · pelikhan · Feb 24, 2026 · Feb 24, 2026
diff --git a/docs/src/content/docs/reference/threat-detection.md b/docs/src/content/docs/reference/threat-detection.md
@@ -86,6 +86,7 @@ safe-outputs:
 | `enabled` | boolean | Enable or disable detection (default: `true` when safe-outputs exist) |
 | `prompt` | string | Custom instructions appended to default detection prompt |
 | `engine` | string/object/false | AI engine config (`"copilot"`, full config object, or `false` for no AI) |
+| `runs-on` | string/array/object | Runner for the detection job (default: inherits from workflow `runs-on`) |
 | `steps` | array | Additional GitHub Actions steps to run after AI analysis |
 
 ## AI-Based Detection (Default)

diff --git a/docs/src/content/docs/reference/triggering-ci.mdx b/docs/src/content/docs/reference/triggering-ci.mdx
@@ -72,7 +72,7 @@ safe-outputs:
 Alternatively, you can set the magic secret `GH_AW_CI_TRIGGER_TOKEN` to a suitable PAT (see the above guide for creating one). This secret name is known to GitHub Agentic Workflows and does not need to be explicitly referenced in your workflow.
 
 ```bash wrap
-gh aw secrets set MY_CI_TRIGGER_PAT --value "<your-pat-token>"
+gh aw secrets set GH_AW_CI_TRIGGER_TOKEN --value "<your-pat-token>"
 ```
 
 ## Alternative: Full Token Override