Skip to content

Surface Copilot inference access errors in agent failure issues/comments#19412

Merged
pelikhan merged 4 commits intomainfrom
copilot/add-token-handling-for-inference
Mar 3, 2026
Merged

Surface Copilot inference access errors in agent failure issues/comments#19412
pelikhan merged 4 commits intomainfrom
copilot/add-token-handling-for-inference

Conversation

Copy link
Contributor

Copilot AI commented Mar 3, 2026
edited
Loading

  • Understand the problem: "Access denied by policy settings" error from Copilot CLI when token lacks inference access
  • Add generateInferenceAccessErrorDetectionStep() in copilot_engine_execution.go - calls shell script
  • Inline bash script → moved to actions/setup/sh/detect_inference_access_error.sh
  • Add detection step call in compiler_yaml_main_job.go (Copilot engine only)
  • Add inference_access_error job output in compiler_main_job.go (Copilot engine only)
  • Pass GH_AW_INFERENCE_ACCESS_ERROR env var in notify_comment.go to conclusion job (Copilot engine only)
  • Handle error in handle_agent_failure.cjs - loads text from markdown template via fs.readFileSync
  • Inline error message text → moved to actions/setup/md/inference_access_error.md
  • Update agent_failure_comment.md and agent_failure_issue.md templates with {inference_access_error_context} placeholder
  • Update tests in inference_access_error_test.go to check for shell script reference
  • Recompile all 83 Copilot engine lock files with the updated detection step
  • Update wasm golden files (basic-copilot.golden, smoke-copilot.golden, with-imports.golden) for CI fix
  • Run make fmt, make build, make lint - all passing
  • Code review - no issues
Original prompt

Reference: https://github.com/github/gh-aw/actions/runs/22620353475/job/65543583577#step:37:1

Add special handling for token with invalid access to inference. This error should be propagated into the agent failure issue/comment

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

@pelikhan
Add special handling for Copilot inference access errors in agent fai…
236e9e6 
…lure reports

Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
Copilot AI changed the title [WIP] Add special handling for invalid token access to inference Surface Copilot inference access errors in agent failure issues/comments Mar 3, 2026
pelikhan
pelikhan reviewed Mar 3, 2026
View reviewed changes
actions/setup/js/handle_agent_failure.cjs Outdated
return "";
}

let ctx = "\n**🔑 Inference Access Denied**: The Copilot CLI failed because the token does not have access to inference.";
Copy link
Contributor

@pelikhan pelikhan Mar 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@copilot move text to markdown file actions/setup/md

Copy link
Contributor Author

Copilot AI Mar 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Moved to actions/setup/md/inference_access_error.md, loaded via fs.readFileSync("/opt/gh-aw/prompts/inference_access_error.md") at runtime. (18eb244)

pkg/workflow/copilot_engine_execution.go
func generateInferenceAccessErrorDetectionStep() GitHubActionStep {
var step []string

step = append(step, " - name: Detect inference access error")
Copy link
Contributor

@pelikhan pelikhan Mar 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@copilot move to shell script in actions/setup/sh

Copy link
Contributor Author

Copilot AI Mar 3, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Moved to actions/setup/sh/detect_inference_access_error.sh, called as bash /opt/gh-aw/actions/detect_inference_access_error.sh. (18eb244)

@pelikhan
Refactor: move inference error script to sh/ and text to md/
18eb244 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@github-actions github-actions bot mentioned this pull request Mar 3, 2026
Closed
Copy link
Contributor Author

Copilot AI commented Mar 3, 2026

Just as a heads up, I was blocked by some firewall rules while working on your feedback. Expand below for details.

Warning

Firewall rules blocked me from connecting to one or more addresses (expand for details)

I tried to connect to the following addresses, but was blocked by firewall rules:

  • https://api.github.com/repos/actions/download-artifact/git/ref/tags/v8
    • Triggering command: /usr/bin/gh gh api /repos/actions/download-artifact/git/ref/tags/v8 --jq .object.sha get nternal/testdeps/deps.go 64/pkg/tool/linux_amd64/vet ignore (http block)
  • https://api.github.com/repos/actions/upload-artifact/git/ref/tags/v7
    • Triggering command: /usr/bin/gh gh api /repos/actions/upload-artifact/git/ref/tags/v7 --jq .object.sha (http block)
    • Triggering command: /usr/bin/gh gh api /repos/actions/upload-artifact/git/ref/tags/v7 --jq .object.sha on&#39; --ignore-path ../../../.pret.prettierignore nference 86_64/bash (http block)
    • Triggering command: /usr/bin/gh gh api /repos/actions/upload-artifact/git/ref/tags/v7 --jq .object.sha th .prettierigno-errorsas (http block)

If you need me to access, download, or install something from one of these locations, you can either:

@pelikhan pelikhan marked this pull request as ready for review March 3, 2026 12:58
Copilot AI review requested due to automatic review settings March 3, 2026 12:58
@pelikhan
Copy link
Contributor

pelikhan commented Mar 3, 2026

@copilot fix tests in https://github.com/github/gh-aw/actions/runs/22623773216/job/65555985039

@pelikhan
Update wasm golden files for inference access error detection step
ae2d974 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
Copy link
Contributor Author

Copilot AI commented Mar 3, 2026

@copilot fix tests in https://github.com/github/gh-aw/actions/runs/22623773216/job/65555985039

Fixed in ae2d974 — updated the three failing wasm golden files (basic-copilot.golden, smoke-copilot.golden, with-imports.golden) to include the new detect-inference-error step and inference_access_error job output.

Copilot AI reviewed Mar 3, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Surfaces Copilot CLI “inference access denied” failures by detecting the error in the agent logs, propagating it through workflow outputs/env, and rendering a dedicated context block in agent failure issues/comments.

Changes:

  • Add a Copilot-engine-only detection step and job output (inference_access_error) and pass it into the conclusion job environment.
  • Add a shared shell script + markdown template to detect and explain inference access failures.
  • Update agent failure templates + handler script to include {inference_access_error_context}, and add Go tests for the compilation output.

Reviewed changes

Copilot reviewed 126 out of 126 changed files in this pull request and generated no comments.

Show a summary per file
File Description
pkg/workflow/notify_comment.go Passes GH_AW_INFERENCE_ACCESS_ERROR to the conclusion job for Copilot engine runs.
pkg/workflow/inference_access_error_test.go Adds unit tests ensuring the Copilot workflow includes the detection step/output/env wiring.
pkg/workflow/copilot_engine_execution.go Adds step generator for inference access error detection (shared script invocation).
pkg/workflow/compiler_yaml_main_job.go Injects the detection step into the main job for Copilot engine workflows.
pkg/workflow/compiler_main_job.go Exposes inference_access_error as a main job output for Copilot engine workflows.
actions/setup/sh/detect_inference_access_error.sh New shared detector script that scans the agent stdio log and sets inference_access_error.
actions/setup/md/inference_access_error.md New markdown snippet rendered into failure issues/comments when inference access is denied.
actions/setup/md/agent_failure_issue.md Adds {inference_access_error_context} placeholder to failure issue template.
actions/setup/md/agent_failure_comment.md Adds {inference_access_error_context} placeholder to failure comment template.
actions/setup/js/handle_agent_failure.cjs Reads and injects inference access denied context into rendered templates.
.github/workflows/workflow-skill-extractor.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/workflow-normalizer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/workflow-health-manager.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/workflow-generator.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/weekly-safe-outputs-spec-review.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/weekly-issue-summary.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/weekly-editors-health-check.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/video-analyzer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/ubuntu-image-analyzer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/tidy.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/test-workflow.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/test-project-url-default.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/test-dispatcher.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/terminal-stylist.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/technical-doc-writer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/super-linter.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/sub-issue-closer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/stale-repo-identifier.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-workflow-call.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-update-cross-repo-pr.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-test-tools.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-temporary-id.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-project.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-multi-pr.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-create-cross-repo-pr.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-copilot.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/smoke-copilot-arm.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/slide-deck-maintainer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/security-review.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/security-compliance.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/research.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/repository-quality-improver.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/repo-tree-map.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/repo-audit-analyzer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/release.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/refiner.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/q.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/python-data-charts.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/pr-triage-agent.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/pr-nitpick-reviewer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/portfolio-analyst.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/poem-bot.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/plan.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/pdf-summary.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/org-health-report.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/notion-issue-summary.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/metrics-collector.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/mergefest.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/mcp-inspector.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/layout-spec-maintainer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/jsweep.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/issue-triage-agent.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/issue-monster.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/hourly-ci-cleaner.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/grumpy-reviewer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/gpclean.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/glossary-maintainer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/github-remote-mcp-auth-test.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/functional-pragmatist.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/firewall.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/firewall-escape.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/example-permissions-warning.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/example-custom-error-patterns.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/draft-pr-cleanup.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/docs-noob-tester.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/discussion-task-miner.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/dictation-prompt.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/dev.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/dev-hawk.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/dependabot-go-checker.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/dependabot-burner.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/delight.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/dead-code-remover.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-workflow-updater.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-testify-uber-super-expert.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-team-status.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-syntax-error-quality.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-semgrep-scan.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-secrets-analysis.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-repo-chronicle.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-regulatory.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-performance-summary.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-news.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-mcp-concurrency-analysis.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-malicious-code-scan.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-firewall-report.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-file-diet.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-copilot-token-report.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-compiler-quality.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-cli-tools-tester.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-cli-performance.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-assign-issue-to-user.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/daily-architecture-diagram.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/craft.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/copilot-pr-prompt-analysis.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/copilot-pr-nlp-analysis.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/copilot-pr-merged-report.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/copilot-cli-deep-research.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/contribution-check.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/code-simplifier.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/code-scanning-fixer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/cli-consistency-checker.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/ci-doctor.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/ci-coach.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/chroma-issue-indexer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/breaking-change-checker.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/brave.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/bot-detection.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/auto-triage-issues.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/artifacts-summary.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/archie.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/agent-persona-explorer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
.github/workflows/agent-performance-analyzer.lock.yml Lock file updated to propagate inference-access detection output/env and include detection step.
Comments suppressed due to low confidence (37)

.github/workflows/daily-semgrep-scan.lock.yml:708

  • This lock file embeds the inference access error detection snippet inline. Please regenerate it so the step runs bash /opt/gh-aw/actions/detect_inference_access_error.sh to keep the logic centralized.
    .github/workflows/issue-monster.lock.yml:707
  • The inference access error detection snippet is still inlined here. Please regenerate this lock file so the step calls /opt/gh-aw/actions/detect_inference_access_error.sh to avoid duplicated logic.
    .github/workflows/technical-doc-writer.lock.yml:807
  • The detect-inference-error step is still inlined in this lock file. Please regenerate so it calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script, keeping the detection logic centralized.
    .github/workflows/workflow-skill-extractor.lock.yml:748
  • The detect-inference-error step is inlined in this lock file rather than calling the shared /opt/gh-aw/actions/detect_inference_access_error.sh script introduced in this PR. Please regenerate this lock file so the step uses the shared script to keep the detection logic centralized.
    .github/workflows/functional-pragmatist.lock.yml:682
  • The detect-inference-error step is duplicated inline in this lock file. Please regenerate so the step invokes bash /opt/gh-aw/actions/detect_inference_access_error.sh (shared script) instead.
    .github/workflows/workflow-normalizer.lock.yml:744
  • This lock file still embeds the inference-access detection bash snippet inline. Please regenerate so the detect-inference-error step calls bash /opt/gh-aw/actions/detect_inference_access_error.sh to avoid drift/duplication.
    actions/setup/js/handle_agent_failure.cjs:468
  • buildInferenceAccessErrorContext reads the markdown template with fs.readFileSync but doesn’t handle missing/unreadable files. If the prompt file isn’t present in a given runner image, the whole failure-handler will throw and skip creating the issue/comment, masking the original agent failure. Consider wrapping the read in a try/catch and falling back to a short inline message (and/or logging a warning) when the template can’t be loaded.
    .github/workflows/chroma-issue-indexer.lock.yml:431
  • This lock file still embeds the inference-access detection bash snippet inline. Since the PR introduces detect_inference_access_error.sh as the source of truth, regenerate this lock file so the step calls /opt/gh-aw/actions/detect_inference_access_error.sh instead of duplicating the logic.
        run: bash /opt/gh-aw/actions/detect_inference_access_error.sh
      - name: Configure Git credentials
        env:
          REPO_NAME: ${{ github.repository }}
          SERVER_URL: ${{ github.server_url }}

.github/workflows/dependabot-go-checker.lock.yml:712

  • The detect-inference-error step is inlined in this lock file, duplicating the detection logic. Please regenerate so it calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script.
    .github/workflows/gpclean.lock.yml:692
  • This lock file still contains an inline inference-access detection snippet. Please regenerate so it invokes bash /opt/gh-aw/actions/detect_inference_access_error.sh to keep the logic in one place.
    .github/workflows/repo-audit-analyzer.lock.yml:677
  • The inference access error detection step is duplicated inline here. Please regenerate this lock file to call /opt/gh-aw/actions/detect_inference_access_error.sh so the detection logic is centralized.
    .github/workflows/smoke-copilot.lock.yml:1724
  • The detect-inference-error step is inlined in this lock file. Please regenerate so it calls bash /opt/gh-aw/actions/detect_inference_access_error.sh (shared script) to avoid drift and duplication.
    .github/workflows/smoke-project.lock.yml:1169
  • The detect-inference-error step is still inlined here. Please regenerate this lock file so it invokes the shared /opt/gh-aw/actions/detect_inference_access_error.sh script rather than duplicating the detection logic.
    .github/workflows/daily-team-status.lock.yml:686
  • The detect-inference-error step is still implemented inline here. Please regenerate this lock file so it calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script (single source of truth).
    .github/workflows/issue-triage-agent.lock.yml:655
  • This lock file duplicates the inference access detection logic inline. Please regenerate so detect-inference-error calls the shared detect_inference_access_error.sh script.
    .github/workflows/test-dispatcher.lock.yml:605
  • This lock file duplicates the inference access detection logic inline. Please regenerate it so the detect-inference-error step calls bash /opt/gh-aw/actions/detect_inference_access_error.sh (shared script).
    .github/workflows/bot-detection.lock.yml:806
  • The detect-inference-error step is inlining the grep logic rather than invoking the shared /opt/gh-aw/actions/detect_inference_access_error.sh script. Please regenerate this lock file so it calls the shared script to avoid duplicated/stale logic.
        run: bash /opt/gh-aw/actions/detect_inference_access_error.sh
      - name: Configure Git credentials
        env:
          REPO_NAME: ${{ github.repository }}
          SERVER_URL: ${{ github.server_url }}

.github/workflows/example-custom-error-patterns.lock.yml:397

  • The inference access error detection logic is embedded inline here. Please regenerate this lock file so the step calls /opt/gh-aw/actions/detect_inference_access_error.sh to keep the logic centralized.
    .github/workflows/glossary-maintainer.lock.yml:754
  • The detect-inference-error step is implemented inline here. Please regenerate this lock file so it calls the shared detect_inference_access_error.sh script rather than duplicating the logic.
    .github/workflows/security-review.lock.yml:840
  • This lock file still contains an inline inference access detection snippet. Please regenerate so the step calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script instead of duplicating logic.
    .github/workflows/test-workflow.lock.yml:382
  • The detect-inference-error step is implemented inline here, duplicating the detection logic. Please regenerate this lock file so it calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script.
    actions/setup/md/inference_access_error.md:3
  • This template starts with a blank line, and buildInferenceAccessErrorContext also prefixes the template with "\n", which results in an extra empty line in rendered issues/comments. Consider removing the leading blank line (or dropping the explicit prefix) so the injected context formatting is consistent.
    .github/workflows/agent-persona-explorer.lock.yml:743
  • The detect-inference-error step is still inlining the log-grep logic instead of calling the shared /opt/gh-aw/actions/detect_inference_access_error.sh script added in this PR. This duplicates logic across lock files and can drift from the compiler output—please regenerate this lock file so the step uses the shared script.
        run: bash /opt/gh-aw/actions/detect_inference_access_error.sh
      - name: Configure Git credentials
        env:
          REPO_NAME: ${{ github.repository }}
          SERVER_URL: ${{ github.server_url }}

.github/workflows/example-permissions-warning.lock.yml:380

  • This lock file still inlines the inference access detection snippet. Please regenerate it so detect-inference-error calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script.
    .github/workflows/github-remote-mcp-auth-test.lock.yml:661
  • This lock file still embeds the inference access detection bash inline. Please regenerate it so the step calls /opt/gh-aw/actions/detect_inference_access_error.sh to avoid duplicated logic.
    .github/workflows/hourly-ci-cleaner.lock.yml:732
  • The detect-inference-error step is inlined in this lock file. Please regenerate it so the step calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script (avoids duplicated logic).
    .github/workflows/notion-issue-summary.lock.yml:634
  • The detect-inference-error step is still implemented inline here. Please regenerate this lock file so it invokes bash /opt/gh-aw/actions/detect_inference_access_error.sh (shared script) instead of duplicating the snippet.
    .github/workflows/smoke-create-cross-repo-pr.lock.yml:834
  • This lock file duplicates the inference access detection bash snippet inline. Please regenerate so the step calls /opt/gh-aw/actions/detect_inference_access_error.sh (shared script) instead.
    .github/workflows/ci-doctor.lock.yml:891
  • The detect-inference-error step is inlined here, which duplicates the detection logic and can drift from the shared script added by this PR. Please recompile/regenerate this lock file so the step runs bash /opt/gh-aw/actions/detect_inference_access_error.sh.
        run: bash /opt/gh-aw/actions/detect_inference_access_error.sh
      - name: Configure Git credentials
        env:
          REPO_NAME: ${{ github.repository }}
          SERVER_URL: ${{ github.server_url }}

.github/workflows/code-simplifier.lock.yml:688

  • This lock file still inlines the inference access error detection logic. To keep lock files consistent with the new shared script approach, regenerate this lock file so detect-inference-error calls /opt/gh-aw/actions/detect_inference_access_error.sh.
        run: bash /opt/gh-aw/actions/detect_inference_access_error.sh
      - name: Configure Git credentials
        env:
          REPO_NAME: ${{ github.repository }}
          SERVER_URL: ${{ github.server_url }}

.github/workflows/daily-cli-tools-tester.lock.yml:738

  • This lock file still has an inline detect-inference-error implementation. Please regenerate it so the step invokes bash /opt/gh-aw/actions/detect_inference_access_error.sh to match the new shared-script approach.
        run: bash /opt/gh-aw/actions/detect_inference_access_error.sh
      - name: Configure Git credentials
        env:
          REPO_NAME: ${{ github.repository }}
          SERVER_URL: ${{ github.server_url }}

.github/workflows/daily-firewall-report.lock.yml:801

  • The inference access detection is still embedded inline in this lock file. Please regenerate so the step calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script instead of duplicating the logic.
        run: bash /opt/gh-aw/actions/detect_inference_access_error.sh
      - name: Configure Git credentials
        env:
          REPO_NAME: ${{ github.repository }}
          SERVER_URL: ${{ github.server_url }}

.github/workflows/daily-regulatory.lock.yml:1189

  • This detect-inference-error step is still inlined in the lock file. Please regenerate so it calls the shared detect_inference_access_error.sh script; otherwise this duplicated snippet can drift from the source-of-truth script.
    .github/workflows/dependabot-burner.lock.yml:671
  • This lock file still contains the inference access detection snippet inline. Please regenerate so the step invokes bash /opt/gh-aw/actions/detect_inference_access_error.sh instead of duplicating the detection logic.
    .github/workflows/poem-bot.lock.yml:1359
  • This lock file still embeds the inference access detection bash inline. Please regenerate it so the step calls the shared /opt/gh-aw/actions/detect_inference_access_error.sh script.
    .github/workflows/smoke-update-cross-repo-pr.lock.yml:829
  • This lock file still embeds the inference access detection snippet inline. Please regenerate so the step runs bash /opt/gh-aw/actions/detect_inference_access_error.sh (shared script) instead of duplicating the logic.
    .github/workflows/contribution-check.lock.yml:742
  • The detect-inference-error step is duplicating the detection bash logic inline. Please regenerate this lock file to call the shared /opt/gh-aw/actions/detect_inference_access_error.sh script instead (single source of truth).
        run: bash /opt/gh-aw/actions/detect_inference_access_error.sh
      - name: Configure Git credentials
        env:
          REPO_NAME: ${{ github.repository }}
          SERVER_URL: ${{ github.server_url }}

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

This was referenced Mar 3, 2026
Closed
Merged
@pelikhan pelikhan merged commit 31dc15f into main Mar 3, 2026
77 checks passed
@pelikhan pelikhan deleted the copilot/add-token-handling-for-inference branch March 3, 2026 13:13
This was referenced Mar 3, 2026
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pelikhan pelikhan pelikhan left review comments

Copilot code review Copilot Copilot left review comments

Assignees

@pelikhan pelikhan

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@pelikhan