Skip to content

fix: update invalid docker/setup-qemu-action SHA in release workflow#5704

Merged
lpcox merged 6 commits into
mainfrom
copilot/duplicate-code-writeconfigs-setup
Jun 30, 2026
Merged

fix: update invalid docker/setup-qemu-action SHA in release workflow#5704
lpcox merged 6 commits into
mainfrom
copilot/duplicate-code-writeconfigs-setup

Conversation

@lpcox

@lpcox lpcox commented Jun 30, 2026

Copy link
Copy Markdown
Collaborator

Problem

The "Build Build-Tools Image" job in the release workflow fails at "Set up job" with:

Unable to resolve action `docker/setup-qemu-action@a3c050c5b9001e95079e262a6db77c5e7c7c3467`, unable to find version `a3c050c5b9001e95079e262a6db77c5e7c7c3467`

Failed run: https://github.com/github/gh-aw-firewall/actions/runs/28415298993/job/84196839108

Fix

Update the pinned SHA to 49b3bc8e6bdd4a60e6116a5414239cba5943d3cf (v3.2.0), which is the same valid SHA already used by the other image build jobs in this workflow.

Copilot AI and others added 4 commits June 30, 2026 00:56
Renamed the second '## Build-tools sysroot image' heading to
'## Sysroot staging lifecycle' to resolve MD024/no-duplicate-heading.

Co-authored-by: Copilot App <223556219+Copilot@users.noreply.github.com>
… job

The Build Build-Tools Image job pinned docker/setup-qemu-action to SHA
a3c050c5b9001e95079e262a6db77c5e7c7c3467 which no longer exists upstream.
Update to 49b3bc8e6bdd4a60e6116a5414239cba5943d3cf (v3.2.0), matching the
other jobs in this workflow.

Co-authored-by: Copilot App <223556219+Copilot@users.noreply.github.com>
Copilot AI review requested due to automatic review settings June 30, 2026 02:06
@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Documentation Preview

Documentation build failed for this PR. View logs.

Built from commit adfbbc7

@github-actions

Copy link
Copy Markdown
Contributor

✅ Coverage Check Passed

Overall Coverage

Metric Base PR Delta
Lines 98.39% 98.43% 📈 +0.04%
Statements 98.32% 98.36% 📈 +0.04%
Functions 99.55% 99.55% ➡️ +0.00%
Branches 94.41% 94.41% ➡️ +0.00%
📁 Per-file Coverage Changes (1 files)
File Lines (Before → After) Statements (Before → After)
src/workdir-setup.ts 92.7% → 94.5% (+1.82%) 92.7% → 94.5% (+1.82%)

Coverage comparison generated by scripts/ci/compare-coverage.ts

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR fixes a failure in the release workflow by updating a pinned docker/setup-qemu-action commit SHA that no longer resolves. In addition, it refactors config-writer Jest tests to share common mock/lifecycle setup and makes a small documentation heading adjustment for ARC/DinD sysroot staging.

Changes:

  • Update .github/workflows/release.yml to pin docker/setup-qemu-action to a valid SHA (49b3bc8e..., v3.2.0) for the Build-Tools image job.
  • Add a shared config-writer test harness utility and refactor existing config-writer test suites to use it.
  • Rename a heading in docs/arc-dind.md to better reflect the described sysroot staging behavior.
Show a summary per file
File Description
src/test-helpers/config-writer-test-harness.test-utils.ts New shared Jest mock factories + temp-dir lifecycle helpers for config-writer test suites.
src/config-writer.test.ts Refactors config-writer tests to use the shared harness helpers and mock factories.
src/config-writer-branches.test.ts Refactors branch-coverage tests to use the shared harness helpers and mock factories.
docs/arc-dind.md Updates a section heading to better match the sysroot staging content.
.github/workflows/release.yml Fixes failing workflow by updating the pinned docker/setup-qemu-action SHA for the Build-Tools image job.

Review details

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

  • Files reviewed: 5/5 changed files
  • Comments generated: 1
  • Review effort level: Low

Comment on lines 448 to +452
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3

- name: Set up QEMU
uses: docker/setup-qemu-action@a3c050c5b9001e95079e262a6db77c5e7c7c3467 # v3
uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
@github-actions

Copy link
Copy Markdown
Contributor

⏳ Copilot review left inline comments.

@lpcox To proceed:

  1. Ask @copilot to address the review feedback (reply to this comment or the review thread)
  2. Once the fix is pushed, add the ready-for-aw label to trigger agentic CI smoke tests

@lpcox

lpcox commented Jun 30, 2026

Copy link
Copy Markdown
Collaborator Author

@copilot address review feedback

Copilot AI commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

@copilot address review feedback

Addressed in 194765b. I updated the branch base so the PR diff now only contains the release.yml SHA fix.

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Smoke Copilot BYOK AOAI (Entra) completed. Copilot AOAI BYOK (Entra) mode operational. 🔓

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

📰 VERDICT: Smoke Copilot has concluded. All systems operational. This is a developing story. 🎤

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

📡 Smoke OTel Tracing completed. All tracing scenarios validated. ✅

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Smoke Claude passed

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Contribution Check completed successfully!

Contribution check complete for PR #5704: the change is limited to updating a pinned GitHub Action SHA in the release workflow; the PR description is clear, no new functionality requires tests or docs, and file placement is appropriate.

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Build Test Suite completed successfully!

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

🔌 Smoke Services — All services reachable! ✅

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Smoke Gemini completed. All facets verified. 💎

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Chroot tests passed! Smoke Chroot - All security and functionality tests succeeded.

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

🔑 Smoke Copilot PAT PAT auth validated. All systems operational. ✅

@github-actions

Copy link
Copy Markdown
Contributor

🚀 Security Guard has started processing this pull request

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Smoke Copilot BYOK completed. Copilot BYOK mode operational. 🔓

@github-actions

github-actions Bot commented Jun 30, 2026

Copy link
Copy Markdown
Contributor

Smoke Copilot BYOK AOAI (api-key) completed. Copilot AOAI BYOK (api-key) mode operational. 🔓

@github-actions

Copy link
Copy Markdown
Contributor

Smoke Test: Claude Engine Validation

Check Result
API status ✅ PASS
GH check ✅ PASS
File status ✅ PASS

Overall result: PASS

Generated by Smoke Claude for #5704 · 52.3 AIC · ⊞ 3.3K ·

@github-actions

Copy link
Copy Markdown
Contributor

🔍 Smoke Test Results

PR: fix: update invalid docker/setup-qemu-action SHA in release workflow
Author: @lpcox

Test Result
GitHub MCP connectivity ✅ PASS
GitHub.com HTTP ❌ FAIL (pre-step template vars unexpanded)
File write/read ❌ FAIL (pre-step template vars unexpanded)

Overall: FAIL — Pre-step data (steps.smoke-data.outputs.*) was not interpolated; workflow expression vars passed as literals.

📰 BREAKING: Report filed by Smoke Copilot

@github-actions

Copy link
Copy Markdown
Contributor

Smoke Test: Copilot BYOK (Direct) Mode ✅

All Tests Passed

  • ✅ MCP Connectivity: Verified (PR listing succeeded)
  • ✅ GitHub.com Connectivity: HTTP 200
  • ✅ File Write/Read: Confirmed
  • ✅ BYOK Inference: Working (direct BYOK mode via api-proxy → api.githubcopilot.com)

Status: PASS – Running in direct BYOK mode with COPILOT_PROVIDER_API_KEY forwarding through api-proxy sidecar.

🔑 BYOK report filed by Smoke Copilot BYOK

@github-actions

Copy link
Copy Markdown
Contributor

@lpcox
Smoke Test Results:

  • GitHub MCP Testing: ✅
  • GitHub.com Connectivity: ✅
  • File Write/Read Test: ✅
  • BYOK Inference Test: ✅
    Running in direct BYOK mode (AWF_AUTH_TYPE=github-oidc + AWF_AUTH_AZURE_* + COPILOT_PROVIDER_BASE_URL) via api-proxy → Azure OpenAI (Foundry, o4-mini-aw) authenticated via Microsoft Entra
    Overall: PASS

🪪 BYOK (AOAI Entra) report filed by Smoke Copilot BYOK AOAI (Entra)

@github-actions

Copy link
Copy Markdown
Contributor

Smoke Test: Copilot PAT Auth — ✅ PASS

Test Result
GitHub MCP ✅ PR list fetched
GitHub.com HTTP ✅ 200 OK
File write/read ✅ (pre-step data unresolved; independently verified writable)

Auth mode: PAT (COPILOT_GITHUB_TOKEN) • @lpcox (author)

🔑 PAT report filed by Smoke Copilot PAT

@github-actions

Copy link
Copy Markdown
Contributor

🔍 Smoke Test: API Proxy OpenTelemetry Tracing

Scenario Status Result
1. Module Loading otel.js loads cleanly; exports: startRequestSpan, setTokenAttributes, setBudgetAttributes, endSpan, endSpanError, shutdown, isEnabled + test internals. isEnabled()true.
2. Test Suite 59 tests passed, 0 failed across 2 suites (otel.test.js, otel-fanout.test.js). Covers span creation, token attrs, budget attrs, exporters, serialization, graceful degradation.
3. Env Var Forwarding src/services/api-proxy-env-config.ts forwards GH_AW_OTLP_ENDPOINTS, OTEL_EXPORTER_OTLP_ENDPOINT, OTEL_EXPORTER_OTLP_HEADERS, GITHUB_AW_OTEL_TRACE_ID, GITHUB_AW_OTEL_PARENT_SPAN_ID, and OTEL_SERVICE_NAME to the api-proxy container.
4. Token Tracker Integration onUsage callback exists in token-tracker-http.js (4 references); used as the OTEL hook to attach gen_ai.usage.* attributes to spans before they are ended.
5. OTEL Diagnostics No OTEL endpoint configured in this run; spans fall back to /var/log/api-proxy/otel.jsonl per design. Fan-out and single-endpoint export paths validated via unit tests.

All scenarios pass. OTEL tracing integration is fully functional.

📡 OTel tracing validated by Smoke OTel Tracing

@github-actions

Copy link
Copy Markdown
Contributor

5702: refactor: extract shared config-writer test harness to eliminate duplicate setup
5697: Add ARC-DinD runner topology with sysroot-stage build-tools image
GitHub PR list: ✅
Playwright GitHub title: ✅
Smoke file write/read: ✅
Build npm ci && npm run build: ✅
Overall: PASS

Warning

Firewall blocked 1 domain

The following domain was blocked by the firewall during workflow execution:

  • registry.npmjs.org

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "registry.npmjs.org"

See Network Configuration for more information.

🔮 The oracle has spoken through Smoke Codex

@github-actions

Copy link
Copy Markdown
Contributor

Gemini Engine Smoke Test Results

Overall status: PASS

Warning

Firewall blocked 1 domain

The following domain was blocked by the firewall during workflow execution:

  • localhost

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "localhost"

See Network Configuration for more information.

💎 Faceted by Smoke Gemini

@github-actions

Copy link
Copy Markdown
Contributor

🧪 Chroot Version Comparison Results

Runtime Host Version Chroot Version Match?
Python Python 3.12.13 Python 3.12.3 ❌ NO
Node.js v24.17.0 v22.23.0 ❌ NO
Go go1.22.12 go1.22.12 ✅ YES

Overall: ❌ FAILED — Python and Node.js versions differ between host and chroot environments.

Tested by Smoke Chroot

@github-actions

Copy link
Copy Markdown
Contributor

@lpcox
• GitHub MCP PRs: "fix: update invalid docker/setup-qemu-action SHA in release workflow", "fix: correctly recover runner tool on PATH (after sudo w/ secure_path). remove incorrect reading from GITHUB_PATH" ✅
• GitHub.com connectivity ✅
• File I/O ✅
• BYOK inference ✅

Running in direct BYOK mode (COPILOT_PROVIDER_API_KEY + COPILOT_PROVIDER_BASE_URL) via api-proxy → Azure OpenAI (Foundry, o4-mini-aw)

Overall: PASS

🔑 BYOK (AOAI api-key) report filed by Smoke Copilot BYOK AOAI (api-key)

@github-actions

Copy link
Copy Markdown
Contributor

Smoke Test: Services Connectivity

Check Result
Redis PING ❌ Connection timeout
PostgreSQL pg_isready ❌ No response
PostgreSQL SELECT 1 ❌ No response

host.docker.internal resolves to 172.17.0.1 but ports 6379 and 5432 are unreachable (connection timeout). Service containers may not be running in this workflow context.

Overall: FAIL

🔌 Service connectivity validated by Smoke Services

@github-actions

Copy link
Copy Markdown
Contributor

🏗️ Build Test Suite Results

Ecosystem Project Build/Install Tests Status
Bun elysia 1/1 passed ✅ PASS
Bun hono 1/1 passed ✅ PASS
C++ fmt N/A ✅ PASS
C++ json N/A ✅ PASS
Deno oak N/A 1/1 passed ✅ PASS
Deno std N/A 1/1 passed ✅ PASS
.NET hello-world N/A ✅ PASS
.NET json-parse N/A ✅ PASS
Go color ok ✅ PASS
Go env ok ✅ PASS
Go uuid ok ✅ PASS
Java gson 1/1 passed ✅ PASS
Java caffeine 1/1 passed ✅ PASS
Node.js clsx All passed ✅ PASS
Node.js execa All passed ✅ PASS
Node.js p-limit All passed ✅ PASS
Rust fd 1/1 passed ✅ PASS
Rust zoxide 1/1 passed ✅ PASS

Overall: 8/8 ecosystems passed — ✅ PASS

Generated by Build Test Suite for #5704 · 171.8 AIC · ⊞ 7.8K ·

Add docs/model-api-mapping.json mapping OpenAI and Anthropic models to
their supported API endpoints (chat/completions vs responses vs messages).

Add an agentic workflow that refreshes the mapping daily from official
provider documentation and opens a PR if changes are detected.

Co-authored-by: Copilot App <223556219+Copilot@users.noreply.github.com>
@lpcox lpcox merged commit f9e4797 into main Jun 30, 2026
25 checks passed
@lpcox lpcox deleted the copilot/duplicate-code-writeconfigs-setup branch June 30, 2026 04:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants