Skip to content

WIP: test smoke-copilot-safe-inputs #6800

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Mossaka wants to merge 9 commits into from
Closed

WIP: test smoke-copilot-safe-inputs #6800

Mossaka wants to merge 9 commits into from

Conversation

@Mossaka
Copy link
Collaborator

@Mossaka Mossaka commented Dec 18, 2025
edited by agentic-workflows-dev bot
Loading

Signed-off-by: Jiaxiao (mossaka) Zhou duibao55328@gmail.com

Changeset

  • Type: patch
  • Description: Add tests for smoke-copilot-safe-inputs (WIP: test smoke-copilot-safe-inputs)

Ahoy! This treasure was crafted by 🏴‍☠️ Changeset Generator

Changeset

  • Type: patch
  • Description: Add tests for smoke-copilot-safe-inputs (WIP: test smoke-copilot-safe-inputs)

Ahoy! This treasure was crafted by 🏴‍☠️ Changeset Generator

@Mossaka Mossaka added the smoke label Dec 18, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

🔮 The ancient spirits stir... Smoke Codex awakens to divine this pull request...

@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing...

@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025
edited by agentic-workflows-dev bot
Loading

🎉 Yo ho ho! Changeset Generator found the treasure and completed successfully! ⚓💰

6bfcdcc

@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

💥 WHOOSH! Smoke Claude springs into action on this pull request! [Panel 1 begins...]

@github-actions

This comment has been minimized.

Sign in to view
@github-actions

This comment has been minimized.

Sign in to view
@github-actions

This comment has been minimized.

Sign in to view
@Mossaka Mossaka added smoke and removed smoke labels Dec 18, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

💥 WHOOSH! Smoke Claude springs into action on this pull request! [Panel 1 begins...]

@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

🔮 The ancient spirits stir... Smoke Codex awakens to divine this pull request...

@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

📰 BREAKING: Smoke Copilot is now investigating this pull request. Sources say the story is developing...

@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025
edited by agentic-workflows-dev bot
Loading

🎉 Yo ho ho! Changeset Generator found the treasure and completed successfully! ⚓💰

9a64d85

@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

Smoke Test Results (Run 20323316830)

Last 2 merged PRs:

GitHub MCP - Retrieved recent pull requests
File Writing - Created /tmp/gh-aw/agent/smoke-test-copilot-20323316830.txt
Bash Tool - Verified file contents
Default Toolset - get_me correctly blocked (403 expected)
Cache Memory - Created and verified /tmp/gh-aw/cache-memory/smoke-test-20323316830.txt

Overall: PASS

📰 BREAKING: Report filed by Smoke Copilot fer issue #6800 🗺️

@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

Smoke test results:

  • PRs: Add spec-kit integration documentation and examples; Fix code formatting issues in Go source files
  • GitHub MCP fetch ✅
  • Agent file write/read ✅
  • Playwright title ✅
  • Cache memory write/read ✅
  • safeinputs-gh gh issues list --limit 3 ❌ (tool unavailable)
    Overall: FAIL

🔮 The oracle has spoken through Smoke Codex fer issue #6800 🗺️

agentic-workflows-dev bot pushed a commit that referenced this pull request Dec 18, 2025
@github-actions
Add changeset for PR #6800 [skip-ci]
9a64d85
@github-actions
Copy link
Contributor

github-actions bot commented Dec 18, 2025

Smoke Test Results (Claude - Run 20323316853)

Recent PRs:

Test Results:
✅ GitHub MCP - List PRs
✅ File Writing - Test file created
✅ Bash Tool - File verification successful
✅ Playwright MCP - GitHub page loaded (title confirmed)
✅ Cache Memory - Test file created and verified
❌ Safe Input gh Tool - Tool not available

Status: PASS (5/6 tests)

💥 [THE END] — Illustrated by Smoke Claude fer issue #6800 🗺️

@Mossaka Mossaka added smoke and removed smoke labels Dec 18, 2025
Mossaka and others added 8 commits December 18, 2025 21:23
@Mossaka
WIP: test smoke-copilot-safe-inputs
aef2c25 
Signed-off-by: Jiaxiao (mossaka) Zhou <duibao55328@gmail.com>
@github-actions @Mossaka
Add changeset [skip-ci]
5206646
@Mossaka
delete comments
31186f0 
Signed-off-by: Jiaxiao (mossaka) Zhou <duibao55328@gmail.com>
@github-actions @Mossaka
Add changeset for PR #6800 [skip-ci]
bfb7f29
@Mossaka
remove unused safe ouputs
d8810d8 
Signed-off-by: Jiaxiao (mossaka) Zhou <duibao55328@gmail.com>
@Mossaka
Add firewall proxy support for safe-inputs tools
a74a1e3 
Signed-off-by: Jiaxiao (mossaka) Zhou <duibao55328@gmail.com>
@Mossaka @claude
Fix: Remove lowercase proxy env vars to avoid GitHub Actions env conf…
64e31e4 
…licts

GitHub Actions treats environment variable names as case-insensitive, so
defining both HTTP_PROXY and http_proxy in the same env block causes a
'already defined' error when dispatching workflows via API.

This fix modifies injectFirewallProxyEnv to only add uppercase proxy
environment variables (HTTP_PROXY, HTTPS_PROXY), removing the lowercase
variants (http_proxy, https_proxy) that were causing the conflict.

The uppercase variants will be passed through to tools and made available
in their process environment with both uppercase and lowercase variants
by the operating system.

Fixes the workflow dispatch error:
(Line: 4284, Col: 11): 'http_proxy' is already defined

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
@Mossaka @claude
Fix: Remove firewall proxy env injection for safe-inputs tools
5c0817f 
Safe-inputs tools run INSIDE the AWF container and should access allowed
domains directly. AWF handles domain filtering automatically. Setting
HTTP_PROXY/HTTPS_PROXY forces tools to route through Squid proxy even for
allowed domains, causing TLS handshake failures:

  Post "https://api.github.com/graphql": http: server gave HTTP response to HTTPS client
  tls: first record does not look like a TLS handshake

The gh CLI and other safe-inputs tools should access api.github.com
directly through AWF, not through the Squid proxy.

This completely removes the firewall proxy environment variable injection
that was added in commit c11e769.

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
@Mossaka Mossaka force-pushed the mossaka/debug-safe-inputs branch from 0f0bc16 to 5c0817f Compare December 18, 2025 21:26
@Mossaka
regenerate
9052592 
Signed-off-by: Jiaxiao (mossaka) Zhou <duibao55328@gmail.com>
@Mossaka
Copy link
Collaborator Author

Mossaka commented Dec 18, 2025

Testing is completed

@Mossaka Mossaka closed this Dec 18, 2025
@github-actions github-actions bot mentioned this pull request Dec 18, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

smoke smoke-claude smoke-copilot

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Mossaka