GitHub Agentic Workflows (gh-aw)¶

This guide explains how to use GitHub Agentic Workflows (gh-aw) in Rhiza-based projects for AI-driven repository automation.

Overview¶

What is gh-aw?¶

GitHub Agentic Workflows (gh-aw) enables writing AI-driven automation in natural language Markdown, compiled into GitHub Actions workflows. Instead of writing deterministic YAML steps, you write high-level instructions that an AI agent interprets and executes.

Why use gh-aw with Rhiza?¶

Rhiza is a living template system that continuously synchronizes configuration into downstream Python projects. Integrating gh-aw into Rhiza means every downstream project can opt in to agentic workflows via a single template bundle, following the same conventions used for CI, Docker, testing, etc.

Traditional Workflow	Agentic Workflow
Pre-programmed deterministic steps	AI interprets natural language instructions
Fixed logic paths	Context-dependent decision making
Brittle (breaks when environment changes)	Adaptive (handles unexpected situations)
Written in YAML	Written in Markdown with YAML frontmatter

Key Concepts¶

Concept	Description
Workflow files	Markdown files (`.md`) in `.github/workflows/` containing YAML frontmatter (triggers, permissions, tools, engine) and natural language instructions
Lock files	Compiled GitHub Actions YAML (`.lock.yml`) generated by `gh aw compile`
Engines	AI coding agents — Copilot (default), Claude, or Codex — that interpret the natural language instructions
Safe outputs	Pre-approved write actions (create issues, post comments, open PRs) that bypass the need for direct write permissions
Safe inputs	Custom inline MCP tools defined in frontmatter for controlled secret access
Sandbox	Agent Workflow Firewall (AWF) — mandatory network egress controls, tool allowlists, and input sanitization

Prerequisites¶

Required¶

Git: For version control

GitHub CLI (gh): Version 2.0.0 or later

# Check if installed
gh --version

# Install if needed (macOS)
brew install gh

# Install if needed (Linux)
curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg | sudo dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg
echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" | sudo tee /etc/apt/sources.list.d/github-cli.list > /dev/null
sudo apt update
sudo apt install gh

GitHub authentication: Logged in with gh auth login

Recommended¶

AI Engine Access: At least one of:
GitHub Copilot subscription (for Copilot engine)
Anthropic API key (for Claude engine)
OpenAI API key (for Codex engine)

Quick Start¶

1. Install gh-aw Extension¶

make install-gh-aw

This installs the gh-aw extension if not already present.

2. Initialize Repository¶

make gh-aw-init

This sets up the repository for gh-aw by adding: - VS Code settings for workflow editing - Prompt templates - Configuration files

3. Configure Secrets¶

make gh-aw-setup

This guides you through configuring secrets for your chosen AI engine.

4. Compile Workflows¶

make gh-aw-compile

This compiles all .md workflow files to .lock.yml files that GitHub Actions can execute.

5. Verify Setup¶

make gh-aw-status

This shows the status of all agentic workflows in your repository.

Make Targets Reference¶

All gh-aw functionality is available via make targets:

Command	Description
`make install-gh-aw`	Install the gh-aw CLI extension
`make gh-aw-init`	Initialize repository for gh-aw (adds VS Code settings, prompts)
`make gh-aw-setup`	Guided setup for secrets and engine configuration
`make gh-aw-compile`	Compile all agentic workflow `.md` files to `.lock.yml`
`make gh-aw-compile-strict`	Compile with strict security validation
`make gh-aw-validate`	Validate that lock files are up-to-date
`make gh-aw-status`	Show status of all agentic workflows
`make gh-aw-run WORKFLOW=<name>`	Run a specific agentic workflow locally
`make gh-aw-secrets`	Bootstrap/check gh-aw secrets
`make gh-aw-logs`	Show logs for recent agentic workflow runs

Starter Workflows¶

Rhiza provides three pre-configured agentic workflows:

1. Daily Repository Status Report¶

File: .github/workflows/daily-repo-status.md

Trigger: Weekdays at 09:00 UTC (configurable via cron)

What it does: - Analyzes repository state (issues, PRs, CI status, releases) - Generates a concise status report - Creates an issue with the report

Useful for: Keeping maintainers informed of project health without manual checking.

2. CI Doctor¶

File: .github/workflows/ci-doctor.md

Trigger: When any CI workflow fails on the main branch

What it does: - Identifies which workflow failed and on which commit - Reads workflow logs to diagnose the failure - Classifies the failure type (test, lint, dependency, infrastructure) - Suggests concrete fixes - Creates an issue with diagnosis and recommended solution

Useful for: Automatically triaging CI failures and reducing time to fix.

3. Issue Triage¶

File: .github/workflows/issue-triage.md

Trigger: When a new issue is opened

What it does: - Reads issue title and body - Classifies issue type (bug, enhancement, question, documentation) - Applies appropriate labels - Posts a helpful initial comment

Useful for: Automatically categorizing issues and providing immediate feedback to contributors.

Creating Custom Workflows¶

Workflow Structure¶

An agentic workflow consists of:

YAML Frontmatter: Configuration (triggers, permissions, tools, engine)
Natural Language Instructions: What you want the AI to do

Example:

---
on:
  schedule:
    - cron: "0 9 * * 1-5"
  workflow_dispatch:

description: "Daily status report for the repository"

engine: copilot

permissions:
  issues: read
  contents: read
  pull-requests: read

tools:
  github:
    toolsets: [repos, issues, pull_requests]

safe-outputs:
  create-issue:
    title: "Daily Status Report — {{ date }}"
    labels: ["report", "automated"]

network:
  allowed:
    - defaults
    - python
---

# Daily Repository Status Report

Analyze the current state of this repository and produce a concise status report.

## What to include

- **Open issues**: Count and highlight any critical/blocking issues
- **Open PRs**: Count, age, and any stale PRs (>7 days without activity)
- **Recent CI status**: Summary of recent workflow runs (pass/fail trends)

## Style

- Be concise and factual
- Use tables where appropriate
- Max 500 words

## Process

1. Read repository metadata, issues, and PRs
2. Check recent workflow run status
3. Compile findings into a structured report
4. Create an issue with the report

Workflow Best Practices¶

Be Specific: Provide clear, detailed instructions. The more specific you are, the better results you'll get.
Use Constraints: Set limits (word count, execution time, scope) to keep workflows focused.
Provide Context: Include information about the project (Rhiza conventions, key commands, file locations).
Use Safe Outputs: Always use safe-outputs instead of direct write permissions for security.
Test Locally First: Use make gh-aw-run WORKFLOW=<name> to test workflows before committing.
Keep Lock Files in Sync: Always run make gh-aw-compile after editing .md files.

Security Considerations¶

Guardrails¶

gh-aw includes multiple layers of security:

Layer	Description
Safe Outputs	Pre-approved write actions (create issues, comments, PRs) without direct permissions
Network Allowlist	Explicit list of allowed domains in `network.allowed`
Tool Restrictions	Only specified tools/toolsets are available to the agent
Permission Scoping	Minimal GitHub permissions (read-only by default)
Sandbox Execution	Agent Workflow Firewall (AWF) enforces all restrictions
Input Sanitization	Automatic sanitization of user inputs to prevent injection
Lock File Validation	CI checks ensure `.lock.yml` matches `.md` source

Security Best Practices¶

Minimize Permissions: Only grant permissions the workflow actually needs.
Use Safe Outputs: Prefer safe-outputs over direct write permissions.
Restrict Network: Explicitly list allowed domains in network.allowed.
Review Lock Files: Check .lock.yml changes in PRs to ensure they match .md changes.
Set Timeouts: Use timeout-minutes to prevent runaway workflows.
Role Gating: Use roles: [admin, maintainer] for sensitive workflows.
Never Commit Secrets: Use GitHub secrets, not hardcoded values.

Engine Configuration¶

Available Engines¶

Engine	Required Secret	Best For
Copilot	`COPILOT_GITHUB_TOKEN`	GitHub-native tasks, tight integration
Claude	`ANTHROPIC_API_KEY`	Complex reasoning, long context
Codex	`OPENAI_API_KEY`	Code generation, general tasks

Configuring the Default Engine¶

In your root Makefile, set:

GH_AW_ENGINE ?= copilot  # or: claude, codex

Per-Workflow Engine Selection¶

Override the engine in individual workflows via frontmatter:

---
engine: claude  # This workflow uses Claude instead of default
---

Secrets Setup¶

Interactive Setup¶

make gh-aw-setup

This will: 1. Prompt you to choose an engine (Copilot/Claude/Codex) 2. Guide you through setting the required secret 3. Run gh aw secrets bootstrap to verify setup 4. Confirm successful configuration

Manual Setup¶

For Copilot Engine¶

gh aw secrets set COPILOT_GITHUB_TOKEN
# Enter your GitHub personal access token with Copilot access

For Claude Engine¶

gh aw secrets set ANTHROPIC_API_KEY
# Enter your Anthropic API key

For Codex Engine¶

gh aw secrets set OPENAI_API_KEY
# Enter your OpenAI API key

Verifying Secrets¶

make gh-aw-secrets

This runs gh aw secrets bootstrap to check that all required secrets are configured.

CI/CD Integration¶

Lock File Validation¶

The .github/workflows/rhiza_gh-aw-validate.yml workflow automatically validates that:

All .md workflow files are properly formatted
Lock files (.lock.yml) are up-to-date with their source (.md) files
No manual edits have been made to lock files

This runs on: - Pull requests that modify .github/workflows/*.md files - Pushes to main that modify workflow files

Workflow¶

name: "Validate Agentic Workflows"

on:
  pull_request:
    paths:
      - ".github/workflows/*.md"
  push:
    branches: [main]
    paths:
      - ".github/workflows/*.md"

jobs:
  validate:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4

      - name: Install gh CLI
        uses: cli/cli-action@v1

      - name: Install gh-aw extension
        run: gh extension install github/gh-aw
        env:
          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

      - name: Validate lock files are up-to-date
        run: |
          gh aw compile
          if ! git diff --quiet .github/workflows/*.lock.yml; then
            echo "::error::Agentic workflow lock files are out of date. Run 'gh aw compile' and commit the changes."
            git diff .github/workflows/*.lock.yml
            exit 1
          fi
        env:
          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

Pre-commit Integration¶

You can add a pre-commit hook to validate lock files locally:

# .pre-commit-config.yaml
repos:
  - repo: local
    hooks:
      - id: gh-aw-validate
        name: Validate gh-aw lock files
        entry: make gh-aw-validate
        language: system
        pass_filenames: false
        files: '\.github/workflows/.*\.md$'

Troubleshooting¶

gh-aw Extension Not Found¶

Problem: gh: 'aw' is not a gh command

Solution: Install the extension:

make install-gh-aw

Lock Files Out of Date¶

Problem: CI validation fails with "lock files are out of date"

Solution: Recompile and commit:

make gh-aw-compile
git add .github/workflows/*.lock.yml
git commit -m "Update gh-aw lock files"

Engine Authentication Failed¶

Problem: Workflow fails with authentication error

Solution: Verify secrets are configured:

make gh-aw-secrets
# If missing, run:
make gh-aw-setup

Workflow Not Triggering¶

Problem: Workflow doesn't run on expected events

Solution: 1. Check that the .lock.yml file exists 2. Verify the trigger conditions in frontmatter 3. Check GitHub Actions logs for errors 4. Ensure required secrets are set

Permission Denied Errors¶

Problem: Workflow fails with permission denied

Solution: 1. Check permissions: in frontmatter 2. Use safe-outputs instead of direct write permissions 3. Verify GitHub App permissions if using organization

Network Access Blocked¶

Problem: Workflow can't access external resources

Solution: Add domains to network.allowed in frontmatter:

network:
  allowed:
    - defaults
    - python
    - "api.example.com"

Rhiza Project Context¶

Available Commands¶

When writing workflows for Rhiza-based projects, you can reference these standard commands:

Command	Purpose
`make test`	Run pytest with coverage
`make fmt`	Format and lint with ruff
`make deptry`	Check for unused/missing dependencies
`uv run pytest`	Run tests via uv
`uv run python <script>`	Run Python scripts

Project Structure¶

Rhiza projects follow this structure:

src/          # Source code
tests/        # Tests (pytest)
book/         # Documentation source
.rhiza/       # Rhiza templates and configuration
.github/      # GitHub configuration (including workflows)
pyproject.toml # Project metadata and dependencies

Including Context in Workflows¶

Example of providing Rhiza context:

---
# ... frontmatter ...
---

# Your Workflow Title

Instructions for the AI agent...

## Project Context

This is a Rhiza-based Python project. Key conventions:
- Dependencies are managed via `uv` and declared in `pyproject.toml`
- Tests use `pytest` and are located in `tests/`
- Code is formatted with `ruff`
- Python version is specified in `.python-version`

## Available Commands

- `make test` — run pytest with coverage
- `make fmt` — format and lint code
- `uv run pytest -v` — run tests with verbose output

Advanced Topics¶

Custom Safe Outputs¶

Define custom safe outputs for specific workflow needs:

safe-outputs:
  create-issue:
    title: "{{ workflow_name }}: {{ summary }}"
    labels: ["automated", "{{ severity }}"]
    assignees: ["{{ triggered_by }}"]

  add-comment:
    issue: "{{ issue_number }}"

  create-pr:
    title: "{{ change_description }}"
    branch: "automated/{{ workflow_name }}"
    labels: ["automated"]

Custom Tools¶

Define custom MCP tools for workflow-specific functionality:

tools:
  github:
    toolsets: [repos, issues, pull_requests]
  bash:
    - "make test"
    - "make fmt"
    - "uv run pytest"
  custom:
    - name: analyze_dependencies
      description: "Analyze project dependencies"
      command: "uv run python scripts/analyze_deps.py"

Multi-Engine Workflows¶

For complex tasks, you might want different engines for different workflows:

# ci-doctor.md - Uses Claude for complex reasoning
---
engine: claude
---

# ci-failure-triage.md - Uses Copilot for GitHub integration
---
engine: copilot
---

Resources¶

Official Documentation¶

Community¶

Rhiza-Specific¶

Integration Plan - Technical implementation details
Extending Rhiza - Creating custom template bundles
Quick Reference - Rhiza command reference

Next Steps¶

Explore Starter Workflows: Review and run the included workflows to see gh-aw in action
Create Custom Workflows: Adapt the starter workflows or create new ones for your specific needs
Share Knowledge: Document your workflows and share patterns with the team
Monitor Performance: Use make gh-aw-logs to track workflow execution and outcomes
Iterate: Refine workflows based on results and feedback

For questions or issues, please refer to the troubleshooting section or consult the official gh-aw documentation.