Download Latest Version
gh-aw-wasm-v0.50.7.tar.gz (4.3 MB)
Get an email when there's a new version of GitHub Agentic Workflows
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| sbom.cdx.json | 2026-02-27 | 3.1 MB | |
| sbom.spdx.json | 2026-02-27 | 5.3 MB | |
| windows-amd64.exe | 2026-02-27 | 23.0 MB | |
| windows-arm64.exe | 2026-02-27 | 21.1 MB | |
| linux-386 | 2026-02-27 | 21.6 MB | |
| linux-amd64 | 2026-02-27 | 22.4 MB | |
| linux-arm | 2026-02-27 | 21.5 MB | |
| linux-arm64 | 2026-02-27 | 20.7 MB | |
| freebsd-arm64 | 2026-02-27 | 20.6 MB | |
| gh-aw-wasm-v0.50.7.tar.gz | 2026-02-27 | 4.3 MB | |
| android-arm64 | 2026-02-27 | 22.7 MB | |
| checksums.txt | 2026-02-27 | 1.0 kB | |
| darwin-amd64 | 2026-02-27 | 22.8 MB | |
| darwin-arm64 | 2026-02-27 | 21.2 MB | |
| freebsd-386 | 2026-02-27 | 21.4 MB | |
| freebsd-amd64 | 2026-02-27 | 22.3 MB | |
| README.md | 2026-02-27 | 5.4 kB | |
| v0.50.7 source code.tar.gz | 2026-02-27 | 236.5 MB | |
| v0.50.7 source code.zip | 2026-02-27 | 238.4 MB | |
| Totals: 19 Items | 749.0 MB | 0 | |
🌟 Release Highlights
This release focuses on smarter workflow updates, better enterprise/OIDC integration, and improved developer experience with clearer error messages and actionable guidance when things go wrong.
✨ What's New
-
gh aw updatenow updates all third-party actions — Previously, force-updating to the latest major version only applied toactions/*core actions. Now all actions across every org are upgraded automatically (#18707, #18692). Use--disable-release-bumpto opt out and restore the previous behavior. -
Automatic OIDC/vault permission detection — Workflows using OIDC-based secret managers (AWS Secrets Manager, Azure Key Vault, HashiCorp Vault, etc.) in
safe-outputs.stepsnow automatically receiveid-token: writepermission — no manual configuration required (#18701). -
Firewall block guidance with fix snippets — When the AWF firewall blocks a domain during execution, the footer now includes an actionable code snippet and a documentation link so you can resolve it immediately, rather than just listing the blocked domains (#18676).
🐛 Bug Fixes & Improvements
-
Codex policy violation errors now surface in step summaries — When Codex hits a
cyber_policy_violationor similar API error, the failure is now clearly reported in the step summary instead of silently producing an empty log (#18699). -
Fixed
noopmissing from safe-output tools prompt —noopwas registered in the MCP server but never listed in the(safe-output-tools)prompt, causing safe-output workflow failures. This is now fixed for all workflows (#18647). -
Fixed
context is not definedin safeoutputs MCP backend — Thecreate_pull_requestandclose_pull_requesthandlers could fail at runtime due to an unresolvedcontextreference. This regression is now resolved (#18646). -
Fixed Codex tool calls missing from log entries — New-format Codex logs had tool calls detected but never added to
logEntries, causing the common renderer to fall back to a blank output. Rendering is now correct (#18678).
📚 Documentation
- Simplified fine-grained PAT setup — PAT creation links now pre-fill the name, description, and permissions, reducing setup friction for new users (#18662, #18682).
🔧 Tool Version Bumps
- Claude Code
2.1.62, GitHub Copilot CLI0.0.419, Codex0.106.0, MCP Gatewayv0.1.6(#18669) - All
actions/checkoutreferences upgraded tov6(#18685)
For complete details, see CHANGELOG.
Generated by Release
What's Changed
- Fix smoke-trigger.yml startup_failure and missing secrets for workflow_call by @Copilot in https://github.com/github/gh-aw/pull/18629
- docs: add pre-filled URL parameters to fine-grained PAT creation links by @Copilot in https://github.com/github/gh-aw/pull/18662
- fix: include
noopin safe-output tools prompt for all workflows by @Copilot in https://github.com/github/gh-aw/pull/18647 - Fix
context is not definederror in safeoutputs MCP backend by @Copilot in https://github.com/github/gh-aw/pull/18646 - Enhance firewall blocked domains footer with fix snippet and docs link by @Copilot in https://github.com/github/gh-aw/pull/18676
- refactor(workflow): deduplicate logic, extract cross-engine helpers, fix interface bypass by @Copilot in https://github.com/github/gh-aw/pull/18671
- Fix Codex new-format tool calls missing from logEntries for common renderer by @Copilot in https://github.com/github/gh-aw/pull/18678
- docs: update fine-grained PAT repository access instructions for Copi… by @mnkiefer in https://github.com/github/gh-aw/pull/18682
- Upgrade actions/checkout to v6 across the repo by @Copilot in https://github.com/github/gh-aw/pull/18685
- chore: bump CLI tool versions — Claude Code 2.1.62, Copilot 0.0.419, Codex 0.106.0, MCP Gateway v0.1.6 by @Copilot in https://github.com/github/gh-aw/pull/18669
- fix: surface Codex model access blocked errors in step summary by @Copilot in https://github.com/github/gh-aw/pull/18699
- feat: update command always updates core actions (actions/*) to latest major version by @Copilot in https://github.com/github/gh-aw/pull/18692
- Auto-detect OIDC/vault actions in safe-outputs steps and add id-token:write permission by @Copilot in https://github.com/github/gh-aw/pull/18701
- feat: force update all actions to latest major version, add --disable-release-bump flag by @Copilot in https://github.com/github/gh-aw/pull/18707
Full Changelog: https://github.com/github/gh-aw/compare/v0.50.6...v0.50.7
