From bd053c45a09ebeb3c885a56040dacf7896ed2c56 Mon Sep 17 00:00:00 2001 From: GitHub Copilot Date: Wed, 4 Mar 2026 10:17:09 +0000 Subject: [PATCH 1/2] docs: update glossary with activation token, secrecy, integrity terms Add three new glossary entries from March 4 daily scan: - Activation Token (on.github-token, on.github-app) - Integrity (safe output security metadata) - Secrecy (safe output security metadata) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --- docs/src/content/docs/reference/glossary.md | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/docs/src/content/docs/reference/glossary.md b/docs/src/content/docs/reference/glossary.md index 40a70961ad..1e6449596f 100644 --- a/docs/src/content/docs/reference/glossary.md +++ b/docs/src/content/docs/reference/glossary.md @@ -89,10 +89,18 @@ Pre-approved actions the AI can take without elevated permissions. The AI genera Automated security analysis that scans agent output and code changes for potential security issues before application. When safe outputs are configured, a threat detection job automatically runs between the agent job and safe output processing to identify prompt injection attempts, secret leaks, and malicious code patches. See [Threat Detection Reference](/gh-aw/reference/threat-detection/). +### Secrecy + +An optional field on safe output tool calls indicating the confidentiality level of the message content. Accepted values include `"public"`, `"internal"`, and `"private"`. Used alongside [`integrity`](#integrity) as security metadata displayed in safe output step summaries and available to [Threat Detection](#threat-detection) scanning. + ### Staged Mode A preview mode where workflows simulate actions without making changes. The AI generates output showing what would happen, but no GitHub API write operations are performed. Use for testing before production runs. +### Integrity + +An optional field on safe output tool calls indicating the trustworthiness level of the message source. Accepted values include `"low"`, `"medium"`, and `"high"`. Used alongside [`secrecy`](#secrecy) as security metadata displayed in safe output step summaries and available to [Threat Detection](#threat-detection) scanning. + ### Lockdown Mode A security feature of the GitHub MCP server that filters content in public repositories to only surface items (issues, pull requests, comments, discussions) from users with push access. Protects agentic workflows from processing potentially malicious or misleading content submitted by untrusted users. Enabled via `lockdown: true` in the `tools.github` section. See [Lockdown Mode](/gh-aw/reference/lockdown-mode/). @@ -143,6 +151,10 @@ A safe output capability (`update-issue:`) for modifying existing issues without ## Workflow Components +### Activation Token (`on.github-token:`, `on.github-app:`) + +Custom GitHub token or GitHub App used by the activation job to post reactions and status comments on the triggering item. Configured via `github-token:` (for a PAT or token expression) or `github-app:` (to mint a short-lived installation token) inside the `on:` section. Affects only the activation job — agent job tokens are configured separately via `tools.github.github-token` or `safe-outputs.github-app`. See [Authentication Reference](/gh-aw/reference/auth/). + ### Cron Schedule A time-based trigger format. Use short syntax like `daily` or `weekly on monday` (recommended with automatic time scattering) or standard cron expressions for fixed times. See also Fuzzy Scheduling and Time Scattering. From 938bd7b1b9aa6ba64a0f9ee24b2f744e5106f2ba Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Wed, 4 Mar 2026 10:19:06 +0000 Subject: [PATCH 2/2] ci: trigger checks