Bump github/gh-aw from 0.63.1 to 0.64.0

[dependabot]

Bumps github/gh-aw from 0.63.1 to 0.64.0.

Release notes

Sourced from github/gh-aw's releases.

v0.64.0

🌟 Release Highlights

This release brings important reliability and correctness fixes across safe-outputs, the Java ecosystem allowlist, and premium request tracking — along with a new protection against bot-triggered self-cancellation, improved documentation, and the latest tooling stack.

✨ What's New

• Bot-actor concurrency isolation: Workflows combining safe-outputs.github-app with issue_comment-capable triggers now automatically get bot-isolated concurrency keys, preventing App-authored safe-output comments from cancelling the originating run mid-flight. Custom concurrency: blocks get a compiler warning explaining the risk.
• Auto fault-investigation analysis: When a workflow job fails, the runtime can now automatically trigger a fault investigation analysis to surface root causes — no manual setup required.
• Expires support for create-pull-request safe output: Pull requests created by safe-outputs can now be configured with an expiry so stale runs are automatically described and auto-closed.
• GitHub App token minting for GitHub MCP server: Workflows using the GitHub MCP server toolset can now mint GitHub App tokens, enabling richer authenticated API access.
• remove-labels safe output type: A new remove-labels safe output type lets workflows programmatically remove labels from issues and PRs. See the safe-outputs reference.
• Two-file agentic workflow structure: The compiler now validates dispatch-workflow references and supports separating prompt files (.github/agentics/<id>.md) from compiled frontmatter (.github/workflows/<id>.md). See the workflow structure reference.
• Aggregate compilation errors: gh aw compile now reports all validation errors together instead of stopping at the first one. Use --fail-fast to restore the legacy behaviour.

🐛 Bug Fixes & Improvements

• Fixed fractional PRU tracking: Models like gemini-3-flash-preview that consume 0.33 PRU per request were incorrectly reported as 1. The log parser now handles decimal premium request units correctly.
• Fixed upload-asset safe output for private repos: The upload-asset safe output type now works correctly with private repositories.
• Fixed staged: true in individual safe outputs: The staged flag in per-message safe output configuration was being ignored; it now applies correctly.
• Fixed safe-outputs expression-size limit: Workflows where the safe-outputs tools.json references $\{\{ }} expressions no longer hit the GitHub Actions expression-size limit.
• Java ecosystem: Maven Central mirror domains added: maven-central.storage-download.googleapis.com and repository.apache.org are now in the Java allowlist, resolving Maven 3.9+ dependency resolution failures in sandboxed workflows.
• Fixed /opt setup error: An Error mkdir setting up /opt failure that affected some runner configurations has been resolved.
• Fixed GitHub IP allow list incompatibility: Workflows in organizations using GitHub IP allow lists no longer fail at setup.
• Fixed gh-aw binary availability: The gh-aw binary is now reliably present in the runner working directory for all workflow types, including the portfolio-analyst workflow.
• GitHub CLI authentication in Action runs: GitHub CLI access inside workflow runs is now correctly authenticated.
• Retry logic for Copilot CLI installer: The Copilot CLI installation step now retries on transient download failures, reducing flaky CI setup.
• Mirrored runner environment variables: Essential GitHub Actions runner environment variables (Java, Android, browsers, package managers, tool paths) are now mirrored into the AWF agent container.
• Security: shell injection fix: Single quotes and backslashes in JSON embedded in shell environment variables are now escaped correctly (go/unsafe-quoting).

📚 Documentation

• gh aw logs / gh aw audit as workflow steps: Added prominent warnings clarifying that actions: read permission and setup-cli must come before any gh aw step. See the CLI reference.
• Engine model field clarification: The model field example in the engines reference now correctly conveys that it is an override, not the engine default.
• remove-labels safe output type: Full reference documentation, examples, and table-of-contents entry added.

🔧 Infrastructure

• AWF firewall updated to v0.11.2 with the agent container switched to act
• Tool versions updated: Claude Code 2.1.19 · Copilot CLI 0.0.394 · Codex 0.91.0 · Playwright MCP 0.0.58 / Browser v1.58.0 · MCP Gateway v0.0.78
• Safe-outputs MCP server migrated from stdio to HTTP transport for improved reliability
• Step summaries generated for each processed safe-output message
• Pinned actions/checkout to v6.0.2 and actions/download-artifact to v7.0.0

🌍 Community Contributions

@chrizbo

... (truncated)

Commits

• f684e4c Add runs-on: aw-gpu-runner-T4 to 3 daily workflows (#22940)
• 0b65e88 📚 Update docs with gh-aw-actions and Dependabot guidance (#22915)
• ca991a2 fix: skip detection job when engine disabled; include patches in agent artifa...
• 425f398 Add tests asserting smoke-copilot and smoke-claude have detection jobs with A...
• 1a726e1 fix(threat-detection): restore GetDefaultDetectionModel() call in detection e...
• 3ea4afe Consolidate threat detection parse + conclude into a single JavaScript step (...
• 775d6d4 Use actionlint Snippet field instead of re-reading files for error context ...
• f306f7e refactor: extract generic parseConfigScaffold helper to eliminate safe-outp...
• 4099333 refactor(workflow): fix outlier functions, remove wrapper method, consolidate...
• ca66da5 docs: document actions-lock.json purpose in FAQ and compilation reference (#2...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud