docs(references): daily intelligence update 2026-04-20#53
Merged
Conversation
There was a problem hiding this comment.
Pull request overview
Daily intelligence pipeline update for 2026-04-20, refreshing the aw-author reference docs and operational gotchas to reflect recent gh-aw changes (safe-outputs parameters + SEC-005 enforcement), and recording the findings in the report + knowledge base.
Changes:
- Updated
safe-outputs.mdto correctif-no-changesvalues and document new/expanded parameters (includingupdate-branchandfallback-as-pull-request). - Added a new production gotcha documenting SEC-005 allowlist enforcement for cross-repo
workflow_dispatchtargeting. - Appended the 2026-04-20 knowledge-base entry and added the 2026-04-20 intelligence report output.
Reviewed changes
Copilot reviewed 4 out of 4 changed files in this pull request and generated 3 comments.
| File | Description |
|---|---|
| skills/aw-author/references/safe-outputs.md | Updates safe-outputs reference tables/examples to reflect new parameters and corrected enum values. |
| skills/aw-author/references/production-gotchas.md | Documents a new security enforcement gotcha (SEC-005) for cross-repo dispatch/call scenarios. |
| .claude/skills/gh-aw-report/knowledge-base.md | Records the 2026-04-20 facts (new params + security enforcement + correction). |
| outputs/gh-aw-reports/2026-04-20.md | Adds the generated daily intelligence report for archival/audit. |
zircote
added a commit
that referenced
this pull request
Apr 20, 2026
- Add `update-branch: false` to the update-pull-request YAML example so the documented parameter appears in the example block - Note that fallback-as-pull-request=true causes pull-requests: write to be requested by default - Remove undocumented `pull-request-repo` alternative from SEC-005 guidance; keep the `allowed-repos` path which is the only supported configuration
- Fix: push-to-pull-request-branch if-no-changes values corrected (warn/error/ignore) - Add: update-pull-request update-branch parameter (PR #27244) - Add: push-to-pull-request-branch fallback-as-pull-request parameter (PR #27220) - Add: push-to-pull-request-branch undocumented params (allowed-files, excluded-files, patch-format, etc.) - Add: SEC-005 workflow_dispatch target repo allowlist gotcha (PR #27242) - Update: knowledge base with 2026-04-20 entries Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
- Add `update-branch: false` to the update-pull-request YAML example so the documented parameter appears in the example block - Note that fallback-as-pull-request=true causes pull-requests: write to be requested by default - Remove undocumented `pull-request-repo` alternative from SEC-005 guidance; keep the `allowed-repos` path which is the only supported configuration
zircote
force-pushed
the
daily-intelligence-2026-04-20-2e978a175f27bf4f
branch
from
04f6224 to
0f83a5f
Compare
This was referenced Apr 20, 2026
[aw-daily] GAP-1: safe-outputs.md push-to-pull-request-branch if-no-changes values are incorrect
#50
Closed
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Daily intelligence pipeline for 2026-04-20.
Changes
skills/aw-author/references/safe-outputs.mdif-no-changesincorrect values; addupdate-branchtoupdate-pull-request; expandpush-to-pull-request-branchparamsskills/aw-author/references/production-gotchas.mdworkflow_dispatchtarget repo allowlist gotcha.claude/skills/gh-aw-report/knowledge-base.mdoutputs/gh-aw-reports/2026-04-20.mdKey Findings
Corrected:
if-no-changesparameter forpush-to-pull-request-branchhad wrong values documented ("comment","skip") — actual valid values are"warn"(default),"error","ignore".New:
update-pull-requestsafe-output now supportsupdate-branch: true(PR #27244) — syncs PR branch with base before updating.New:
push-to-pull-request-branchnow hasfallback-as-pull-request(defaulttrue) — creates fallback PR when push fails due to diverged branch (PR #27220).Security: SEC-005 allowlist validation now enforced for
workflow_dispatchtarget repo overrides (PR #27242).Gaps Addressed
safe-outputs.md—if-no-changescorrected to"warn"/"error"/"ignore"safe-outputs.md—update-pull-requestupdate-branchaddedsafe-outputs.md—push-to-pull-request-branchfallback-as-pull-requestaddedsafe-outputs.md—push-to-pull-request-branchmultiple undocumented params addedproduction-gotchas.md— SEC-005 workflow_dispatch gotcha addedCloses #50
Closes #51
Closes #52
Discussion
Posted to Project News: "gh-aw Intelligence Report — 2026-04-20"
Sources
Automated by Daily Intelligence Pipeline