[WIP] Recompile workflows to update lock files

[Copilot]

Recompile workflows to update lock files

The workflow lock files (.lock.yml) were out of sync with their source markdown files (.md). This PR recompiles all workflows to regenerate the lock files from the markdown sources.

Plan

• Verify the gh-aw binary is available
• Build the latest version of gh-aw
• Run gh aw compile --validate --verbose to recompile all workflows
• Review changes to ensure lock files are properly updated
• Run validation checks (make fmt and make test-unit)
• Commit the updated lock files

Summary

• Successfully recompiled 140 workflow files
• All workflows compiled with 0 errors (161 warnings are informational and expected)
• The security-alert-burndown.campaign.lock.yml file was updated to match its source
• All code formatting and unit tests passed

Original prompt

---

This section details on the original issue you should resolve

<issue_title>[agentics] agentic workflows out of sync</issue_title>
<issue_description>## Problem

The workflow lock files (.lock.yml) are out of sync with their source markdown files (.md). This means the workflows that run in GitHub Actions are not using the latest configuration.

What needs to be done

The workflows need to be recompiled to regenerate the lock files from the markdown sources.

Instructions

Recompile all workflows using one of the following methods:

Using gh aw CLI

gh aw compile --validate --verbose

Using gh-aw MCP Server

If you have the gh-aw MCP server configured, use the compile tool:

{
  "tool": "compile",
  "arguments": {
    "validate": true,
    "verbose": true
  }
}

This will:

1. Build the latest version of gh-aw
2. Compile all workflow markdown files to YAML lock files
3. Ensure all workflows are up to date

After recompiling, commit the changes with a message like:

Recompile workflows to update lock files

Detected Changes

The following workflow lock files have changes:

View diff

diff --git a/.github/workflows/security-alert-burndown.campaign.lock.yml b/.github/workflows/security-alert-burndown.campaign.lock.yml
index 891055e..0abccd7 100644
--- a/.github/workflows/security-alert-burndown.campaign.lock.yml
+++ b/.github/workflows/security-alert-burndown.campaign.lock.yml
@@ -112,12 +112,11 @@ jobs:
         run: mkdir -p ./.gh-aw
       - env:
           GH_AW_CAMPAIGN_ID: security-alert-burndown
-          GH_AW_CURSOR_PATH: /tmp/gh-aw/repo-memory/campaigns/security-alert-burndown/cursor.json
-          GH_AW_DISCOVERY_REPOS: githubnext/gh-aw
+          GH_AW_CURSOR_PATH: ""
           GH_AW_MAX_DISCOVERY_ITEMS: "100"
           GH_AW_MAX_DISCOVERY_PAGES: "5"
           GH_AW_PROJECT_URL: https://github.com/orgs/githubnext/projects/134
-          GH_AW_TRACKER_LABEL: z_campaign_security-alert-burndown
+          GH_AW_TRACKER_LABEL: ""
           GH_AW_WORKFLOWS: code-scanning-fixer,security-fix-pr,dependabot-bundler,secret-scanning-triage
         id: discovery
         name: Run campaign discovery precomputation
@@ -898,9 +897,6 @@ jobs:
           This workflow orchestrates the 'Security Alert Burndown' campaign.
           
           - Associated workflows: code-scanning-fixer, security-fix-pr, dependabot-bundler, secret-scanning-triage
-          - Memory paths: memory/campaigns/security-alert-burndown/**
-          - Metrics glob: `memory/campaigns/security-alert-burndown/metrics/*.json`
-          - Cursor glob: `memory/campaigns/security-alert-burndown/cursor.json`
           - Project URL: https://github.com/orgs/githubnext/projects/134
           - Governance: max new items per run: 3
           - Governance: max discovery items per run: 100
@@ -1224,35 +1220,9 @@ jobs:
           - On throttling (HTTP 429 / rate-limit 403), do not retry aggressively; back off and end the run after reporting what remains.
           
           
-          **Cursor file (repo-memory)**: `memory/campaigns/security-alert-burndown/cursor.json`  
-          **File system path**: `/tmp/gh-aw/repo-memory/campaigns/security-alert-burndown/cursor.json`  
-          - If it exists: read first and continue from its boundary.  
-          - If it does not exist: create it by end of run.  
-          - Always write the updated cursor back to the same path.
           
           
           
-          **Metrics snapshots (repo-memory)**: `memory/campaigns/security-alert-burndown/metrics/*.json`  
-          **File system path**: `/tmp/gh-aw/repo-memory/campaigns/security-alert-burndown/metrics/*.json`  
-          - Persist one append-only JSON metrics snapshot per run (new file per run; do not rewrite history).
-          - Use UTC date (`YYYY-MM-DD`) in the filename (example: `metrics/2025-12-22.json`).
-          - Each snapshot MUST include ALL required fields (even if zero):
-            - `campaign_id` (string): The campaign identifier
-            - `date` (string): UTC date in YYYY-MM-DD format
-            - `tasks_total` (number): Total number of tasks (>= 0, even if 0)
-            - `tasks_completed` (number): Completed task count (>= 0, even if 0)
-          - Optional fields (include only if available): `tasks_in_progress`, `tasks_blocked`, `velocity_per_day`, `estimated_completion`
-          - Example minimum valid snapshot:
-            ```json
-            {
-              "campaign_id": "security-alert-burndown",
-              "date": "2025-12-22",
-              "tasks_total": 0,
-              "tasks_completed": 0
-            }
-            ```
-          
-          
           
           **Read budget**: max discovery items per run: 100
           
@@ -1381,8 +1351,6 @@ jobs:
           
           1) Read the precomputed discovery manifest: `./.gh-aw/campaign.discovery.json`
              - T...

</details>



<!-- START COPILOT CODING AGENT SUFFIX -->

- Fixes githubnext/gh-aw#11868

<!-- START COPILOT CODING AGENT TIPS -->
---

💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more [Copilot coding agent tips](https://gh.io/copilot-coding-agent-tips) in the docs.