Skip to content

Comments

chore(deps): bump github/gh-aw from 0.49.2 to 0.49.3#470

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github/gh-aw-0.49.3
Closed

chore(deps): bump github/gh-aw from 0.49.2 to 0.49.3#470
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github/gh-aw-0.49.3

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 23, 2026
edited
Loading

Bumps github/gh-aw from 0.49.2 to 0.49.3.

Release notes

Sourced from github/gh-aw's releases.

v0.49.3

🌟 Release Highlights

This release brings a new workflow control option to quiet bot comments, improved engine icons, and reliability fixes for download scripts — plus two community-requested improvements.

✨ What's New

  • Silence activation comments — The new activation-comments: false frontmatter flag lets you disable the bot comments gh-aw posts when activating or falling back on a workflow. Useful for keeping issue/PR comment threads clean. (#17834)
  • Engine icons for Claude, Codex & Gemini — Local icon assets are now bundled for Claude, Codex, and Gemini alongside a Gemini author entry, giving workflow UIs a consistent visual identity across all supported engines. (#17837)
  • Community contributor celebration in release highlights — The release highlight generator now cross-references community-labeled issues with merged PRs and explicitly calls out the issue authors. (#17842)

🐛 Bug Fixes & Improvements

  • web-fetch MCP fix — The web-fetch MCP server was incorrectly generating a container format instead of the expected command/args structure, preventing it from initializing. (#17822)
  • Duplicate code detector — The detector now correctly emits a noop safe output when no duplication is found, avoiding spurious failures. (#17836)
  • Retry on transient download failures — Install scripts now pass --retry 3 --retry-delay 5 to curl when downloading the Copilot CLI and AWF binary, automatically recovering from the occasional 502 on public runners. (#17841)

📚 Documentation

  • Clarified that CLAUDE_CODE_OAUTH_TOKEN is not a supported authentication method. (#17835)
  • Updated reference documentation with the latest features. (#17830)

🌍 Community Contributions

A huge thank you to the community members who reported issues that were resolved in this release:

For complete details, see CHANGELOG.

Generated by Release

What's Changed

... (truncated)

Commits
  • cb678b4 Add --retry 3 with delay to curl downloads to handle transient 502s (#17841)
  • 2f34639 feat: add activation-comments to disable activation/fallback bot comments (...
  • 4094506 feat(release): celebrate community issue authors in release highlights (#17842)
  • bc1b728 fix(duplicate-code-detector): require noop when no duplication found (#17836)
  • 42b6879 Add Gemini author and local icons for Claude, Codex, and Gemini (#17837)
  • 6125b4b docs: clarify CLAUDE_CODE_OAUTH_TOKEN is not supported (#17835)
  • 6b7eae2 docs: add private: frontmatter field documentation (#17801) (#17830)
  • 0d5e2e0 fix: web-fetch MCP server generates container format instead of command/args ...
  • 8102a74 jsweep: clean close_discussion.cjs and add tests (#17824)
  • f5097e3 Fix smoke-copilot golden file to include --browser-arg --no-sandbox in Playwr...
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Dependency updates label Feb 23, 2026
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 23, 2026

Labels

The following labels could not be found: github-actions. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@github-actions github-actions bot added workflow GitHub Actions workflows ci-cd CI/CD pipeline changes news News articles and content generation agentic-workflow Agentic workflow changes size-m Medium change (50-250 lines) labels Feb 23, 2026
@github-actions
Copy link
Contributor

github-actions bot commented Feb 23, 2026

🏷️ Automatic Labeling Summary

This PR has been automatically labeled based on the files changed and PR metadata.

Applied Labels: dependencies,workflow,ci-cd,size-m,news,agentic-workflow

Label Categories

  • 🗳️ Content: news, dashboard, visualization, intelligence
  • 💻 Technology: html-css, javascript, workflow, security
  • 📊 Data: cia-data, riksdag-data, data-pipeline, schema
  • 🌍 I18n: i18n, translation, rtl
  • 🔒 ISMS: isms, iso-27001, nist-csf, cis-controls
  • 🏗️ Infrastructure: ci-cd, deployment, performance, monitoring
  • 🔄 Quality: testing, accessibility, documentation, refactor
  • 🤖 AI: agent, skill, agentic-workflow

For more information, see .github/labeler.yml.

@github-actions
Copy link
Contributor

github-actions bot commented Feb 23, 2026

🔍 Lighthouse Performance Audit

Category Score Status
Performance 85/100 🟡
Accessibility 95/100 🟢
Best Practices 90/100 🟢
SEO 95/100 🟢

📥 Download full Lighthouse report

Budget Compliance: Performance budgets enforced via budget.json

@dependabot
chore(deps): bump github/gh-aw from 0.49.2 to 0.49.3
4bc4e07 
Bumps [github/gh-aw](https://github.com/github/gh-aw) from 0.49.2 to 0.49.3.
- [Release notes](https://github.com/github/gh-aw/releases)
- [Changelog](https://github.com/github/gh-aw/blob/main/CHANGELOG.md)
- [Commits](github/gh-aw@1c8368c...cb678b4)

---
updated-dependencies:
- dependency-name: github/gh-aw
  dependency-version: 0.49.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/github_actions/github/gh-aw-0.49.3 branch from 09ef636 to 4bc4e07 Compare February 23, 2026 11:51
@github-actions
Copy link
Contributor

github-actions bot commented Feb 23, 2026

🔍 Lighthouse Performance Audit

Category Score Status
Performance 85/100 🟡
Accessibility 95/100 🟢
Best Practices 90/100 🟢
SEO 95/100 🟢

📥 Download full Lighthouse report

Budget Compliance: Performance budgets enforced via budget.json

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 23, 2026

Looks like github/gh-aw is up-to-date now, so this is no longer needed.

@dependabot dependabot bot closed this Feb 23, 2026
@dependabot dependabot bot deleted the dependabot/github_actions/github/gh-aw-0.49.3 branch February 23, 2026 14:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

agentic-workflow Agentic workflow changes ci-cd CI/CD pipeline changes dependencies Dependency updates news News articles and content generation size-m Medium change (50-250 lines) workflow GitHub Actions workflows

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants