Skip to content

Fix release workflow: Clarify MCP tool call vs bash file operations #11991

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
pelikhan merged 2 commits into from
Jan 27, 2026
Merged

Fix release workflow: Clarify MCP tool call vs bash file operations #11991

pelikhan merged 2 commits into from
Jan 27, 2026

Conversation

Copy link
Contributor

Copilot AI commented Jan 27, 2026
edited
Loading

Problem

In run #21382926511, the agent used bash to write /tmp/gh-aw/safeoutputs/update_release_001.json instead of calling the update_release MCP tool. Result: artifact not captured, release notes not updated.

Root cause: With both bash: ["*"] and MCP tools available, the agent simulated the tool call via file operations rather than invoking the MCP protocol.

Changes

.github/workflows/release.md (lines 471-500)

  • Add explicit MCP tool clarification with implementation details
  • Warn against manual file writes and bash simulation
  • Update example with concrete version number
**HOW TO CALL THE TOOL:**

The `update_release` tool is an **MCP (Model Context Protocol) tool**, 
not a bash command or file operation. To call it:

1. **Use the MCP tool call syntax** - The tool is registered as 
   `update_release` (or `safeoutputs___update_release`)
2. **DO NOT write JSON files manually** - Writing files like 
   `/tmp/gh-aw/safeoutputs/update_release_001.json` will NOT work
3. **DO NOT use bash to simulate tool calls** - The tool must be 
   called through the MCP protocol

**IMPORTANT**: This is a real tool call through MCP, NOT a bash command 
or file write operation. The tool will automatically write to the correct 
output file (`/opt/gh-aw/safeoutputs/outputs.jsonl`).

This prevents multi-tool confusion when workflows provide both bash and MCP capabilities.

Original prompt

Reference: https://github.com/githubnext/gh-aw/actions/runs/21382926511/job/61553811780#step:25:1

Investigate why the safe outputs tool update-release was not called in this agentic run.

Custom agent used: agentic-workflows
GitHub Agentic Workflows (gh-aw) - Create, debug, and upgrade AI-powered workflows with intelligent prompt routing

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

@pelikhan
Fix: Clarify MCP tool call instructions in release workflow
756d4d4 
- Add explicit instructions that update_release is an MCP tool
- Warn against using bash to write JSON files manually
- Emphasize tool must be called through MCP protocol
- Provide example showing correct tool call syntax

Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
Copilot AI changed the title [WIP] Investigate why safe outputs tool update-release was not called Fix release workflow: Clarify MCP tool call vs bash file operations Jan 27, 2026
Copilot AI requested a review from pelikhan January 27, 2026 03:46
@pelikhan pelikhan marked this pull request as ready for review January 27, 2026 04:56
@pelikhan pelikhan merged commit 9f16d1a into main Jan 27, 2026
@pelikhan pelikhan deleted the copilot/investigate-safe-outputs-issue branch January 27, 2026 04:56
Mossaka pushed a commit that referenced this pull request Jan 27, 2026
@Mossaka
Fix release workflow: Clarify MCP tool call vs bash file operations (#…
f7fc077 
…11991)
Mossaka added a commit that referenced this pull request Jan 27, 2026
@Mossaka
@github-actions @dsyme @claude
Fix AWF command quoting to ensure agent runs inside firewall container (
a0a5dd0 
#11969)

* Initial plan

* Investigate firewall 0 requests issue

Co-authored-by: Mossaka <5447827+Mossaka@users.noreply.github.com>

* Fix AWF command quoting to ensure agent runs inside firewall container

The compound command after -- was not properly quoted, causing the &&
operator to be interpreted by the outer shell. This resulted in:
1. AWF container running only the PATH export (which exits immediately)
2. Copilot agent running on the host AFTER the firewall container stopped
3. Firewall reporting 0 requests

Now the entire command is wrapped in single quotes so it's passed to AWF
as a single argument, ensuring Copilot runs inside the firewall container.

Co-authored-by: Mossaka <5447827+Mossaka@users.noreply.github.com>

* Add changeset [skip-ci]

* 🔧 Improve interactive workflow add experience (#11966)

* interactive add

* interactive add

* fix lint

* review

* fix quick start

* fix quick start

* fix line break

* Add upgrade, import, and debug sections to agentic authoring docs (#11987)

* various minor tweaks to ux (#11988)

* Fix release workflow: Clarify MCP tool call vs bash file operations (#11991)

* chore: rm schedule triggers from security alert burndown campaign workers (#11993)

* Merge main and regenerate workflows

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

* Add changeset [skip-ci]

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: Mossaka <5447827+Mossaka@users.noreply.github.com>
Co-authored-by: Jiaxiao Zhou <duibao55328@gmail.com>
Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
Co-authored-by: Don Syme <dsyme@users.noreply.github.com>
Co-authored-by: Don Syme <dsyme@github.com>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pelikhan pelikhan Awaiting requested review from pelikhan

Assignees

@pelikhan pelikhan

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@pelikhan