Skip to content

v0.42.15

Choose a tag to compare

View all tags
@github-actions github-actions released this 08 Feb 20:01
· 66 commits to main since this release
v0.42.15
6c3f14a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

🌟 Release Highlights

This release focuses on improving stability, developer experience, and workflow reliability with 35 merged pull requests. Key improvements include enhanced plugin management, better error handling, and significant security fixes.

✨ What's New

  • πŸ”Œ Plugin Experimental Status - Plugins are now clearly marked as experimental with schema warnings and compilation notices (#14551), helping users understand this feature is under active development. The compiler validates plugin support per-engine with improved error messages (#14516). Learn more about engines

  • πŸ€– Automatic Issue Cleanup - Workflows can now automatically close older CI failure issues when new ones are created (#14555), reducing noise in issue trackers. Updated issues include workflow run links and searchable markers for better traceability (#14523).

  • πŸ†” Friendly Temporary IDs - Draft issue updates now return temporaryId for tracking, and users can reference temporary IDs with user-friendly formats (#14482). Learn more about safe-outputs

  • 🚧 Firewall Transparency - AI-generated footers now display which domains were blocked by firewall rules (#14517), improving debugging for network-restricted workflows. Learn more about network permissions

πŸ› Bug Fixes & Security

  • πŸ”’ Security Hardening - Prevented unauthorized uploads during workflow initialization (#14558) and partially resolved artipacked security issue in cleaner workflows (#14449)

  • πŸ›‘οΈ Improved Error Handling - Closed PR checkout failures are now treated as warnings instead of errors (#14528), and network validation now enforces ssl-bump: true when using allow-urls (#14494)

  • πŸ”§ Workflow Fixes - Resolved Projects v2 token issues in Dependabot Burner (#14515) and removed trailing commas in smoke-project instructions (#14472)

⚑ Engine Changes

  • Plugin Support Clarification - Only the Copilot engine now supports plugin installation; Claude and Codex engines have plugin support removed (#14532). This aligns with engine capabilities and prevents configuration errors.

πŸ”¨ Developer Experience

  • Better Validation Messages - Dispatch-workflow validation errors now include actionable guidance (#14447), making it easier to fix configuration issues

  • Code Quality - Extracted magic numbers to constants for time validation and network ports (#14545), added comprehensive test coverage for compiler modules (#14498, #14448), and improved code documentation (#14495)

  • Linter Enforcement - Added gomoddirectives linter to prevent replace directives in go.mod (#14549), improving dependency management hygiene

πŸ“¦ Maintenance

  • Dependency Updates - Updated Go modules (#14543), NPM packages including @actions/github v9 with ESM compatibility (#14512), and documentation dependencies (Astro, Starlight, Playwright) (#14511)

  • Documentation - Improved technical tone consistency across specification files (#14505) and enhanced dictation skill glossary (#14469)

For complete details and all 35 changes, see the CHANGELOG.

Generated by Release

What's Changed

  • Add comprehensive test coverage for compiler_orchestrator_workflow.go by @Copilot in #14448
  • Partially fix artipacked security issue in hourly-ci-cleaner workflow by @Copilot in #14449
  • [docs] Update dictation skill with comprehensive glossary by @github-actions[bot] in #14469
  • Enhance dispatch-workflow validation errors with actionable guidance by @Copilot in #14447
  • chore: update smoke-project workflow by @mnkiefer in #14455
  • chore: update test pr and issue number in smoke-project by @mnkiefer in #14479
  • Fix: return temporaryId when updating draft issues and allow user-friendly temporary IDs by @Copilot in #14482
  • chore: bring back dependabot burner by @mnkiefer in #14502
  • Add validation: allow-urls requires ssl-bump: true by @Copilot in #14494
  • Add comprehensive test coverage for compiler orchestrator modules by @Copilot in #14498
  • Add missing godoc comments to compiler functions by @Copilot in #14495
  • [docs] Improve technical tone consistency in specification files by @github-actions[bot] in #14505
  • Add SupportsPlugins() capability detection and validation for agentic engines by @Copilot in #14516
  • Refactor buildJobs() into focused helper functions by @Copilot in #14496
  • Add firewall blocked domains to AI-generated footers by @Copilot in #14517
  • Add workflow run link and searchable markers to expired entity close comments by @Copilot in #14523
  • chore: update dependabot burner by @mnkiefer in #14529
  • chore: update dependabot burner by @mnkiefer in #14530
  • Handle closed PR checkout failures as warnings instead of errors by @Copilot in #14528
  • Fix Dependabot Burner: Add missing github-token for Projects v2 operations by @Copilot in #14515
  • Remove plugin support from Claude and Codex engines by @Copilot in #14532
  • 🧹 Update Go module dependencies by @dsyme in #14543
  • Bump docs NPM dependencies: astro, starlight, playwright by @Copilot in #14511
  • Enforce no replace directives in go.mod via gomoddirectives linter by @Copilot in #14549
  • Extract time validation and network port magic numbers to constants by @Copilot in #14545
  • Require noop call in Multi-Device Docs Tester when no issues found by @Copilot in #14553
  • Mark plugins as experimental with schema and compilation warnings by @Copilot in #14551
  • Enable automatic closure of older CI failure issues by @Copilot in #14555
  • Bundle Dependabot NPM updates with ESM compatibility fixes for @actions/github v9 by @Copilot in #14512
  • πŸ”’ Prevent upload during init by @dsyme in #14558

Full Changelog: v0.42.14...v0.42.15

Contributors

dsyme and mnkiefer
Assets 16
Loading