Improve aspire-upgrade agentic workflow#1156
Merged
aaronpowell merged 2 commits intomainfrom Mar 13, 2026
Merged
Conversation
- Add description field for discoverability - Add concurrency control to prevent conflicting PRs - Remove unnecessary permissions (issues: read, pull-requests: read) - Narrow network allowlist to only defaults (removed python/node/go/java) - Narrow GitHub toolsets to [repos, context] instead of [default] - Add explicit instructions to find and update all ~50 AppHost .csproj files - Add dotnet restore validation step before PR creation - Restructure prompt into clear numbered steps - Remove redundant engine: copilot (it's the default) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Contributor
|
🚀 Dogfood this PR with:
curl -fsSL https://raw.githubusercontent.com/CommunityToolkit/Aspire/main/eng/scripts/dogfood-pr.sh | bash -s -- 1156Or
iex "& { $(irm https://raw.githubusercontent.com/CommunityToolkit/Aspire/main/eng/scripts/dogfood-pr.ps1) } 1156" |
Contributor
There was a problem hiding this comment.
Pull request overview
Improves the repo’s aspire-upgrade GitHub Agentic Workflow (gh-aw) setup by tightening configuration (permissions/toolsets/network), improving prompt clarity for version upgrades, and adding supporting agent/workflow metadata files.
Changes:
- Add gh-aw/Copilot support scaffolding (MCP config, Copilot setup workflow, actions lockfile, dispatcher agent definition).
- Update
aspire-upgradeagentic workflow prompt/metadata (description, concurrency, narrowed toolsets/network) and regenerate the compiled.lock.yml. - Mark generated gh-aw lock workflows as linguist-generated (and configure merge behavior).
Reviewed changes
Copilot reviewed 7 out of 7 changed files in this pull request and generated 2 comments.
Show a summary per file
| File | Description |
|---|---|
.vscode/mcp.json |
Adds local MCP server configuration for gh aw mcp-server. |
.github/workflows/copilot-setup-steps.yml |
Adds a setup workflow to install the gh-aw CLI extension for Copilot Agent runs. |
.github/workflows/aspire-upgrade.md |
Refactors and clarifies the agentic prompt (explicit steps + restore validation). |
.github/workflows/aspire-upgrade.lock.yml |
Regenerated compiled workflow output from the .md source. |
.github/aw/actions-lock.json |
Adds action SHA lock entries for gh-aw related actions. |
.github/agents/agentic-workflows.agent.md |
Adds a dispatcher agent doc for working with gh-aw workflows and prompts. |
.gitattributes |
Marks .lock.yml workflows as generated and configures merge behavior. |
You can also share your feedback on Copilot code review. Take the survey.
| # this only affects the repo's language statistics | ||
| *.h linguist-language=C | ||
|
|
||
| .github/workflows/*.lock.yml linguist-generated=true merge=ours No newline at end of file |
| @@ -0,0 +1,12 @@ | |||
| { | |||
| "servers": { | |||
| "github-agentic-workflows": { | |||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Improves the
aspire-upgradeagentic workflow with better security, reliability, and prompt clarity.Changes
descriptionfield for workflow discoverabilityconcurrency: aspire-upgradeto prevent conflicting parallel PRsissues: read,pull-requests: read)defaults(removedpython,node,go,javaecosystems)[default]to[repos, context](only what's needed).csprojfiles (previously easy to miss)dotnet restore) before PR creation to catch version resolution errorsengine: copilot(it's the default)