README
¶
GitHub Agentic Workflows
Write agentic workflows in natural language markdown, and run them in GitHub Actions.
[!NOTE] Releases 0.68.4 through 0.71.3 are being retired due to a bug that impacts billing. If you are running one of these versions, please upgrade to the latest release as soon as possible.
Contents
- Quick Start
- Overview
- Guardrails
- Documentation
- FAQ
- Contributing
- Community Contributions
- Share Feedback
- Peli's Agent Factory
- Related Projects
Quick Start
Ready to get your first agentic workflow running? Follow our step-by-step Quick Start Guide to install the extension, add a sample workflow, and see it in action.
Overview
Learn about the concepts behind agentic workflows, explore available workflow types, and understand how AI can automate your repository tasks. See How It Works. Supports GitHub Copilot, Claude (Anthropic), Codex (OpenAI), and Gemini (Google) — pick whichever AI account you already have.
Guardrails
Guardrails, safety and security are foundational to GitHub Agentic Workflows. Workflows run with read-only permissions by default, with write operations only allowed through sanitized safe-outputs. The system implements multiple layers of protection including sandboxed execution, input sanitization, network isolation, supply chain security (SHA-pinned dependencies), tool allow-listing, and compile-time validation. Access can be gated to team members only, with human approval gates for critical operations, ensuring AI agents operate safely within controlled boundaries. See the Security Architecture for comprehensive details on threat modeling, implementation guidelines, and best practices.
Using agentic workflows in your repository requires careful attention to security considerations and careful human supervision, and even then things can still go wrong. Use it with caution, and at your own risk.
Documentation
For complete documentation, examples, and guides, see the Documentation. If you are an agent, download llms.txt or the full corpus llms-full.txt.
If you are running a version between 0.68.4 and 0.71.3, upgrading is strongly recommended due to a bug that impacts billing.
Contributing
For development setup and contribution guidelines, see CONTRIBUTING.md.
Custom Go linters
To build and test repository custom linters:
go test ./pkg/linters/<linter-name>/...go build ./cmd/lintersmake golint-custom
make golint-custom builds cmd/linters and runs the custom analyzers against ./cmd/... and ./pkg/....
🌍 Community Contributions
Thank you to the community members whose issue reports were resolved in this project! This list is updated automatically and reflects all attributed contributions.
- @abillingsley: #23736 (direct issue)
- @adamhenson: #25345 (direct issue), #24282 (direct issue)
- @ahmadabdalla: #27473 (direct issue)
- @ajfeldman6: #23924 (direct issue)
- @AkshatRaj00: #34302 (direct issue)
- @AlexDeMichieli: #26645 (direct issue)
- @alexsiilvaa: #20781 (direct issue), #20664 (direct issue)
- @alondahari: #21207 (direct issue)
- @anthonymastreanvae: #30897 (direct issue), #30841 (direct issue)
- @apenab: #25626 (direct issue)
- @app/github-actions: #31288 (direct issue), #30740 (direct issue), #29561 (direct issue), #29343 (direct issue), #26257 (direct issue), #26256 (direct issue), #26255 (direct issue), #26254 (direct issue), #26253 (direct issue)
- @arezero: #20515 (direct issue), #20514 (direct issue), #20513 (direct issue), #20512 (direct issue), #20511 (direct issue), #20510 (direct issue)
- @arthurfvives: #30356 (direct issue), #30088 (direct issue), #26223 (direct issue), #25993 (direct issue), #25294 (direct issue)
- @askpaisa: #29240 (direct issue)
- @b2pacific: #28720 (direct issue)
- @bartul: #29499 (direct issue)
- @bbonafed: #29174 (direct issue), #29173 (direct issue), #29172 (direct issue), #29171 (direct issue), #27670 (direct issue), #27472 (direct issue), #26719 (direct issue), #26045 (direct issue), #26043 (direct issue), #25646 (direct issue), #25224 (direct issue), #24949 (direct issue), #24918 (direct issue), #24896 (direct issue), #24323 (direct issue), #23900 (direct issue), #23724 (direct issue), #23566 (direct issue), #22564 (direct issue), #21990 (direct issue), #20801 (direct issue), #20378 (direct issue)
- @benvillalobos: #25717 (direct issue), #20885 (direct issue)
- @bmerkle: #31689 (direct issue), #26621 (direct issue), #20646 (direct issue)
- @bryanchen-d: #34108 (direct issue), #30866 (direct issue), #30704 (direct issue), #30695 (direct issue), #30472 (direct issue), #28774 (direct issue), #26696 (direct issue), #26487 (direct issue), #25719 (direct issue), #23265 (direct issue)
- @bryanknox: #25351 (direct issue)
- @Calidus: #33188 (direct issue), #26923 (direct issue)
- @camposbrunocampos: #23726 (direct issue), #22897 (direct issue)
- @carlincherry: #22017 (direct issue)
- @chepa92: #20322 (direct issue)
- @chrisfregly: #25349 (direct issue), #23963 (direct issue)
- @chrizbo: #32446 (direct issue), #31399 (direct issue), #28158 (direct issue), #22510 (direct issue), #21863 (direct issue)
- @CiscoRob: #20416 (direct issue)
- @clementbolin: #28888 (direct issue)
- @cogni-ai-ee: #32803 (direct issue), #32741 (direct issue)
- @Corb3nik: #21306 (direct issue)
- @corygehr: #33622 (direct issue), #33436 (direct issue), #33367 (direct issue), #31577 (direct issue), #27638 (direct issue), #26539 (direct issue), #26270 (direct issue), #26268 (direct issue), #25680 (direct issue), #24355 (direct issue), #23944 (direct issue), #23753 (direct issue)
- @dagecko: #24743 (direct issue)
- @Daidanny008: #27402 (direct issue)
- @Dan-Co: #22707 (direct issue)
- @danielmeppiel: #29076 (direct issue), #28678 (direct issue), #20663 (direct issue), #20380 (direct issue)
- @danquirk: #30403 (direct issue)
- @dbudym-cs: #22913 (direct issue)
- @devantler: #25768 (direct issue), #25767 (direct issue)
- @deyaaeldeen: #28966 (direct issue), #26486 (direct issue), #25573 (direct issue), #25359 (direct issue), #23198 (direct issue), #23024 (direct issue), #23020 (direct issue), #22957 (direct issue)
- @dholmes: #29228 (direct issue), #23578 (direct issue)
- @DimaBir: #20483 (direct issue)
- @dkurepa: #25511 (direct issue)
- @DogeAmazed: #22703 (direct issue)
- @doughgle: #23655 (direct issue)
- @drehelis: #25304 (direct issue)
- @dsyme: #23936 (direct issue), #22340 (direct issue), #20953 (direct issue), #20952 (direct issue), #20950 (direct issue), #20787 (direct issue), #20578 (direct issue), #20420 (direct issue), #20243 (direct issue)
- @duncankmckinnon: #25944 (direct issue)
- @eaftan: #23257 (direct issue), #20457 (direct issue)
- @edburns: #26920 (direct issue)
- @edgeq: #28315 (direct issue), #28308 (direct issue)
- @ericstj: #30260 (direct issue), #23766 (direct issue)
- @ferryhinardi: #24128 (direct issue)
- @flatiron32: #22469 (direct issue)
- @fr4nc1sc0-r4m0n: #20657 (direct issue)
- @G1Vh: #20308 (direct issue)
- @glitch-ux: #24403 (direct issue)
- @grahame-white: #23643 (direct issue), #23093 (direct issue), #23092 (direct issue), #23088 (direct issue), #23083 (direct issue), #20868 (direct issue), #20719 (direct issue), #20629 (direct issue), #20299 (direct issue)
- @h3y6e: #27794 (direct issue)
- @haavamoa: #30191 (direct issue)
- @heiskr: #20394 (direct issue)
- @hermanho: #32197 (direct issue)
- @holwerda: #21243 (direct issue)
- @IEvangelist: #33285 (direct issue), #33069 (direct issue), #33068 (direct issue), #33060 (direct issue), #33043 (direct issue), #32536 (direct issue), #32354 (direct issue), #30848 (direct issue), #26908 (direct issue), #25467 (direct issue)
- @Infinnerty: #21957 (direct issue)
- @insop: #21686 (direct issue)
- @j-srodka: #25199 (direct issue), #23485 (direct issue), #23484 (direct issue), #23483 (direct issue), #23482 (direct issue), #23461 (direct issue)
- @jamesadevine: #28957 (direct issue), #26407 (direct issue), #26406 (direct issue)
- @JamesNK: #29310 (direct issue), #28867 (direct issue), #28704 (direct issue)
- @JanKrivanek: #25656 (direct issue), #25439 (direct issue)
- @jaroslawgajewski: #33644 (direct issue), #33640 (direct issue), #31678 (direct issue), #31658 (direct issue), #25593 (direct issue), #24373 (direct issue), #24372 (direct issue), #24371 (direct issue), #24259 (direct issue), #24036 (direct issue), #23779 (direct issue), #23558 (direct issue), #22647 (direct issue), #21816 (direct issue), #20813 (direct issue), #20811 (direct issue)
- @JasonYeMSFT: #27424 (direct issue)
- @jbaruch: #30832 (direct issue)
- @jeffhandley: #30232 (direct issue), #30204 (direct issue), #26799 (direct issue), #26788 (direct issue), #24384 (direct issue)
- @jfomhover: #25420 (direct issue)
- @jitran: #33649 (direct issue)
- @johnpreed: #25687 (direct issue), #23777 (direct issue), #23212 (direct issue), #21334 (direct issue)
- @johnwilliams-12: #21205 (direct issue), #21074 (direct issue), #21071 (direct issue), #21062 (direct issue), #20821 (direct issue), #20779 (direct issue), #20697 (direct issue), #20694 (direct issue), #20658 (direct issue), #20567 (direct issue), #20508 (direct issue)
- @jonathanpeppers: #30662 (direct issue)
- @jsoref: #27230 (direct issue)
- @jtracey93: #26176 (direct issue)
- @kaovilai: #32596 (direct issue), #32587 (direct issue), #32482 (direct issue), #32467 (direct issue)
- @kbreit-insight: #24930 (direct issue), #23940 (direct issue), #23725 (direct issue), #22430 (direct issue), #21978 (direct issue)
- @kkruel8100: #30867 (direct issue)
- @kthompson: #25550 (direct issue)
- @labudis: #30846 (direct issue)
- @lindeberg: #34006 (direct issue)
- @look: #23258 (direct issue)
- @lpcox: #30634 (direct issue), #29353 (direct issue), #29191 (direct issue), #22281 (direct issue)
- @lukeed: #20552 (direct issue)
- @lupinthe14th: #26542 (direct issue), #26441 (direct issue)
- @mark-hingston: #20335 (direct issue)
- @mason-tim: #33084 (direct issue), #33074 (direct issue), #31489 (direct issue), #30336 (direct issue), #29301 (direct issue), #21562 (direct issue)
- @MatthewLabasan-NBCU: #26289 (direct issue)
- @MattSkala: #24567 (direct issue), #21203 (direct issue)
- @MauroDruwel: #30178 (direct issue), #30169 (direct issue), #29379 (direct issue), #29378 (direct issue)
- @mcantrell: #20592 (direct issue)
- @mdashrraf: #28657 (direct issue)
- @MH0386: #20997 (direct issue)
- @mhavelock: #22110 (direct issue)
- @michen00: #31869 (direct issue)
- @microsasa: #27715 (direct issue), #21103 (direct issue), #21098 (direct issue), #20851 (direct issue), #20833 (direct issue), #20586 (direct issue)
- @mlinksva: #22533 (direct issue)
- @mnkiefer: #22409 (direct issue)
- @molson504x: #21834 (direct issue), #21615 (direct issue)
- @Mossaka: #21644 (direct issue), #21630 (direct issue)
- @mrjf: #32271 (direct issue), #32069 (direct issue), #31600 (direct issue), #29152 (direct issue), #28955 (direct issue), #28471 (direct issue), #28197 (direct issue)
- @mvdbos: #20411 (direct issue), #20249 (direct issue)
- @neta-vega: #26447 (direct issue), #25895 (direct issue)
- @NicoAvanzDev: #21542 (direct issue), #20540 (direct issue), #20528 (direct issue)
- @NicolasRannou: #31701 (direct issue)
- @NikolajBjorner: #28812 (direct issue)
- @norrietaylor: #33199 (direct issue), #32312 (direct issue), #32310 (direct issue), #30733 (direct issue), #30392 (direct issue)
- @octatone: #31918 (direct issue)
- @petercort: #28281 (direct issue)
- @pethers: #28470 (direct issue)
- @pgaskin: #26156 (direct issue)
- @pholleran: #25313 (direct issue), #23572 (direct issue), #21313 (direct issue)
- @polmichel: #32991 (direct issue)
- @PureWeen: #28767 (direct issue), #27655 (direct issue), #23769 (direct issue), #23567 (direct issue)
- @rabo-unumed: #31660 (direct issue), #31578 (direct issue), #31513 (direct issue), #20679 (direct issue)
- @rhardouin: #30840 (direct issue), #30838 (direct issue)
- @romainh-betclic: #28143 (direct issue)
- @rspurgeon: #26475 (direct issue)
- @Rubyj: #31542 (direct issue), #21432 (direct issue), #20283 (direct issue)
- @ruokun-niu: #24961 (direct issue)
- @ryckmansm: #31501 (direct issue)
- @salekseev: #25137 (direct issue), #25122 (direct issue), #24135 (direct issue)
- @samuelkahessay: #33016 (direct issue), #33015 (direct issue), #24756 (direct issue), #24755 (direct issue), #24754 (direct issue), #22380 (direct issue), #22364 (direct issue), #22161 (direct issue), #22138 (direct issue), #21975 (direct issue), #21955 (direct issue), #21784 (direct issue), #21501 (direct issue), #21304 (direct issue)
- @sbodapati-gfm: #29417 (direct issue)
- @seangibeault: #26910 (direct issue), #24905 (direct issue)
- @sg650: #33787 (direct issue), #32044 (direct issue), #31617 (direct issue), #31616 (direct issue), #29009 (direct issue), #28612 (direct issue)
- @shiran-gutsy: #27641 (direct issue)
- @srgibbs99: #22939 (direct issue)
- @stacktick: #21361 (direct issue)
- @stefankrzyz: #27260 (direct issue)
- @straub: #24569 (direct issue)
- @strawgate: #33597 (direct issue), #24422 (direct issue), #24199 (direct issue), #23935 (direct issue), #23768 (direct issue), #21157 (direct issue), #21144 (direct issue), #21135 (direct issue), #21028 (direct issue), #20910 (direct issue), #20259 (direct issue)
- @susmahad: #26276 (direct issue), #25866 (direct issue), #25710 (direct issue)
- @szabta89: #29064 (direct issue), #29063 (direct issue), #24037 (direct issue)
- @tadelesh: #26001 (direct issue)
- @theletterf: #33963 (direct issue), #32846 (direct issue), #30964 (direct issue), #30365 (direct issue), #30327 (direct issue), #28898 (direct issue), #28895 (direct issue), #28691 (direct issue), #28672 (direct issue), #28221 (direct issue), #27566 (direct issue), #25494 (direct issue)
- @thi-feonir: #21426 (direct issue)
- @tinytelly: #27282 (direct issue)
- @tore-unumed: #33545 (direct issue), #31909 (direct issue), #31650 (direct issue), #30550 (direct issue), #30324 (direct issue), #29312 (direct issue), #28019 (direct issue), #20780 (direct issue)
- @trask: #31612 (direct issue), #31241 (direct issue), #31098 (direct issue), #31097 (direct issue)
- @tsm-harmoney: #31695 (direct issue), #27880 (direct issue)
- @tspascoal: #20597 (direct issue)
- @UncleBats: #20359 (direct issue)
- @verkyyi: #27407 (direct issue), #27259 (direct issue)
- @veverkap: #22362 (direct issue), #21260 (direct issue), #21257 (direct issue)
- @virenpepper: #23765 (direct issue)
- @wtgodbe: #32834 (direct issue), #26057 (direct issue), #25130 (direct issue), #24921 (direct issue)
- @yaananth: #24125 (direct issue)
- @yskopets: #34256 (direct issue), #34250 (direct issue), #34166 (direct issue), #34134 (direct issue), #32022 (direct issue), #31831 (direct issue), #31086 (direct issue), #31073 (direct issue), #30872 (direct issue), #30705 (direct issue), #27935 (direct issue), #27898 (direct issue), #27881 (direct issue), #27773 (direct issue), #27757 (direct issue), #26922 (direct issue), #26569 (direct issue), #26468 (direct issue), #26358 (direct issue), #26346 (direct issue), #26345 (direct issue), #26280 (direct issue), #26279 (direct issue), #26120 (direct issue), #26101 (direct issue), #26085 (direct issue), #26080 (direct issue), #26067 (direct issue), #25959 (direct issue), #25946 (direct issue), #25833 (direct issue), #25363 (direct issue), #25362 (direct issue), #25125 (direct issue), #24897 (direct issue), #24573 (direct issue), #23914 (direct issue)
- @zkoppert: #27741 (direct issue)
⚠️ Attribution Candidates Need Review
The following community issues were closed during this period but could not be automatically linked to a specific merged PR. Please verify whether they should be credited:
- @arthurfvives for #32974 — closed 2026-05-22, no confirmed PR linkage found
Share Feedback
We welcome your feedback on GitHub Agentic Workflows!
Peli's Agent Factory
See the Peli's Agent Factory for a guided tour through many uses of agentic workflows.
Related Projects
GitHub Agentic Workflows is supported by companion projects that provide additional security and integration capabilities:
- Agent Workflow Firewall (AWF) - Network egress control for AI agents, providing domain-based access controls and activity logging for secure workflow execution
- MCP Gateway - Routes Model Context Protocol (MCP) server calls through a unified HTTP gateway for centralized access management
- gh-aw-actions - Shared library of custom GitHub Actions used by compiled workflows, providing functionality such as MCP server file management
Directories
¶
| Path | Synopsis |
|---|---|
|
cmd
|
|
|
gh-aw
command
|
|
|
gh-aw-wasm
command
|
|
|
linters
command
Command linters runs the gh-aw custom analysis linters.
|
Command linters runs the gh-aw custom analysis linters. |
|
internal
|
|
|
tools/actions-build
command
|
|
|
tools/generate-action-metadata
command
|
|
|
pkg
|
|
|
actionpins
Package actionpins provides action pin resolution for GitHub Actions, mapping repository references to their pinned commit SHAs.
|
Package actionpins provides action pin resolution for GitHub Actions, mapping repository references to their pinned commit SHAs. |
|
cli
Package cli provides the command-line interface for gh-aw (GitHub Agentic Workflows).
|
Package cli provides the command-line interface for gh-aw (GitHub Agentic Workflows). |
|
console
Package console provides terminal UI components and formatting utilities for the gh-aw CLI.
|
Package console provides terminal UI components and formatting utilities for the gh-aw CLI. |
|
envutil
Package envutil provides utilities for reading and validating environment variables.
|
Package envutil provides utilities for reading and validating environment variables. |
|
errorutil
Package errorutil provides shared helpers for classifying and inspecting errors returned by the GitHub API and gh CLI.
|
Package errorutil provides shared helpers for classifying and inspecting errors returned by the GitHub API and gh CLI. |
|
fileutil
Package fileutil provides utility functions for working with file paths and file operations.
|
Package fileutil provides utility functions for working with file paths and file operations. |
|
linters
Package linters is a namespace for gh-aw's custom Go analysis linters.
|
Package linters is a namespace for gh-aw's custom Go analysis linters. |
|
linters/ctxbackground
Package ctxbackground implements a Go analysis linter that flags calls to context.Background() inside functions that already receive a context.Context parameter.
|
Package ctxbackground implements a Go analysis linter that flags calls to context.Background() inside functions that already receive a context.Context parameter. |
|
linters/errormessage
Package errormessage implements a Go analysis linter that enforces actionable error-message patterns in changed files.
|
Package errormessage implements a Go analysis linter that enforces actionable error-message patterns in changed files. |
|
linters/errstringmatch
Package errstringmatch implements a Go analysis linter that flags calls to strings.Contains(err.Error(), "literal") that perform brittle substring matching on error messages instead of using errors.Is or errors.As.
|
Package errstringmatch implements a Go analysis linter that flags calls to strings.Contains(err.Error(), "literal") that perform brittle substring matching on error messages instead of using errors.Is or errors.As. |
|
linters/excessivefuncparams
Package excessivefuncparams implements a Go analysis linter that flags functions with too many positional parameters.
|
Package excessivefuncparams implements a Go analysis linter that flags functions with too many positional parameters. |
|
linters/fileclosenotdeferred
Package fileclosenotdeferred implements a Go analysis linter that flags file operations where Close() is not immediately deferred.
|
Package fileclosenotdeferred implements a Go analysis linter that flags file operations where Close() is not immediately deferred. |
|
linters/internal/nolint
Package nolint provides shared helpers for nolint-directive detection used by linters within pkg/linters.
|
Package nolint provides shared helpers for nolint-directive detection used by linters within pkg/linters. |
|
linters/largefunc
Package largefunc implements a Go analysis linter that flags functions whose body exceeds a configurable line threshold.
|
Package largefunc implements a Go analysis linter that flags functions whose body exceeds a configurable line threshold. |
|
linters/manualmutexunlock
Package manualmutexunlock implements a Go analysis linter that flags mutex Unlock() calls that are not deferred, which can lead to deadlocks if a panic or early return occurs between Lock() and Unlock().
|
Package manualmutexunlock implements a Go analysis linter that flags mutex Unlock() calls that are not deferred, which can lead to deadlocks if a panic or early return occurs between Lock() and Unlock(). |
|
linters/osexitinlibrary
Package osexitinlibrary implements a Go analysis linter that flags os.Exit calls in library (pkg/) packages.
|
Package osexitinlibrary implements a Go analysis linter that flags os.Exit calls in library (pkg/) packages. |
|
linters/panic-in-library-code
Package panicinlibrarycode implements a Go analysis linter that flags panic() calls in library (pkg/) packages.
|
Package panicinlibrarycode implements a Go analysis linter that flags panic() calls in library (pkg/) packages. |
|
linters/rawloginlib
Package rawloginlib implements a Go analysis linter that flags standard log package calls in library (pkg/) packages.
|
Package rawloginlib implements a Go analysis linter that flags standard log package calls in library (pkg/) packages. |
|
linters/regexpcompileinfunction
Package regexpcompileinfunction implements a Go analysis linter that flags calls to regexp.MustCompile() and regexp.Compile() inside function bodies.
|
Package regexpcompileinfunction implements a Go analysis linter that flags calls to regexp.MustCompile() and regexp.Compile() inside function bodies. |
|
linters/ssljson
Package ssljson implements a Go analysis linter that validates .github/skills/*/ssl.json files against the SSL specification rules.
|
Package ssljson implements a Go analysis linter that validates .github/skills/*/ssl.json files against the SSL specification rules. |
|
logger
Package logger provides namespace-based debug logging with zero overhead when disabled.
|
Package logger provides namespace-based debug logging with zero overhead when disabled. |
|
parser
Package parser provides markdown frontmatter parsing and content extraction for agentic workflow files.
|
Package parser provides markdown frontmatter parsing and content extraction for agentic workflow files. |
|
repoutil
Package repoutil provides utility functions for working with GitHub repository slugs and URLs.
|
Package repoutil provides utility functions for working with GitHub repository slugs and URLs. |
|
semverutil
Package semverutil provides shared semantic versioning primitives used across the pkg/workflow and pkg/cli packages.
|
Package semverutil provides shared semantic versioning primitives used across the pkg/workflow and pkg/cli packages. |
|
sliceutil
Package sliceutil provides utility functions for working with slices.
|
Package sliceutil provides utility functions for working with slices. |
|
stats
Package stats provides numerical statistics utilities for metric collection.
|
Package stats provides numerical statistics utilities for metric collection. |
|
stringutil
Package stringutil provides utility functions for working with strings.
|
Package stringutil provides utility functions for working with strings. |
|
styles
Package styles provides centralized style and color definitions for terminal output.
|
Package styles provides centralized style and color definitions for terminal output. |
|
tty
Package tty provides utilities for TTY (terminal) detection.
|
Package tty provides utilities for TTY (terminal) detection. |
|
types
Package types provides shared type definitions used across gh-aw packages.
|
Package types provides shared type definitions used across gh-aw packages. |
|
typeutil
Package typeutil provides general-purpose type conversion utilities.
|
Package typeutil provides general-purpose type conversion utilities. |
|
workflow
Package workflow implements workflow compilation orchestration.
|
Package workflow implements workflow compilation orchestration. |
|
smoke_test_22524436360.go - smoke test file for run 22524436360 This file was automatically created during smoke testing and can be safely removed.
|
smoke_test_22524436360.go - smoke test file for run 22524436360 This file was automatically created during smoke testing and can be safely removed. |
Click to show internal directories.
Click to hide internal directories.