feat(catalog): add mlr, gh-aw, and gh-aw-firewall#81
Conversation
Dependency Review✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.Scanned FilesNone |
|
You are seeing this message because GitHub Code Scanning has recently been set up for this repository, or this pull request contains the workflow file for the Code Scanning tool. What Enabling Code Scanning Means:
For more information about GitHub Code Scanning, check out the documentation. |
CybotTM
force-pushed
the
feat/add-mlr-gh-aw-and-firewall
branch
from
4ffde98 to
32223c1
Compare
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request introduces three new tool definitions to the catalog: gh-aw-firewall, gh-aw, and mlr. Feedback was provided for the mlr definition, noting that the armv7l architecture mapping should be removed because the upstream repository does not provide binaries for that architecture, which would lead to installation errors.
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #81 +/- ##
==========================================
- Coverage 69.56% 69.47% -0.09%
==========================================
Files 22 22
Lines 3345 3345
==========================================
- Hits 2327 2324 -3
- Misses 1018 1021 +3
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
There was a problem hiding this comment.
Pull request overview
Adds three new tool catalog entries to enable installation via the existing github_release_binary installer for Miller and two GitHub Agentic Workflows-related binaries.
Changes:
- Added
mlr(Miller) GitHub release tarball install metadata with arch mapping. - Added
gh-awdirect-binary GitHub release install metadata (with notes about theghextension alternative). - Added
gh-aw-firewall(awf) direct-binary GitHub release install metadata withx86_64 -> x64arch mapping and Docker runtime note.
Reviewed changes
Copilot reviewed 3 out of 3 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
| catalog/mlr.json | New mlr entry using GitHub release tarball URL template + arch_map. |
| catalog/gh-aw.json | New gh-aw entry using direct GitHub release binary downloads + notes. |
| catalog/gh-aw-firewall.json | New gh-aw-firewall entry (awf) using direct GitHub release binary downloads + x64 arch mapping + runtime note. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Add three new GitHub-release-binary catalog entries: - **mlr** (Miller): awk/sed/cut/jq for CSV, TSV, JSON, and JSON Lines. Standard tar.gz layout (johnkerl/miller, v6.18.1+). - **gh-aw**: GitHub Agentic Workflows — compiles natural-language Markdown workflow definitions into hardened GitHub Actions workflows. Direct-binary download (no archive), following the direnv pattern. Upstream's preferred install path is 'gh extension install github/gh-aw'; documented in notes since gh extensions are not yet a modeled install_method. - **gh-aw-firewall** (binary 'awf'): Squid-proxy egress firewall for sandboxing AI agent commands in Docker. Direct-binary download; uses 'x64' (not 'amd64') in asset names. Catalog grows from 93 to 96 entries. All 598 catalog/installer tests pass; smoke test green. Signed-off-by: Sebastian Mendel <github@sebastianmendel.de>
CybotTM
force-pushed
the
feat/add-mlr-gh-aw-and-firewall
branch
from
32223c1 to
d024774
Compare
|
Summary
Adds three new GitHub-release-binary catalog entries (catalog grows 93 → 96):
awk/sed/cut/jqfor CSV, TSV, JSON, and JSON Lines. Standardtar.gzrelease layout fromjohnkerl/miller. Arch map matches existing convention (amd64/arm64/armv7). Category:general, alongsidejq/yq/qsv.direnvpattern. Category:platform.awf) — Squid-proxy-based egress firewall that sandboxes AI agent commands in a Docker container with a domain allowlist. Direct-binary download; upstream asset names usex64(notamd64), soarch_mapreflects that. Category:platform.Decisions
gh-awinstall method: Upstream's documented install path isgh extension install github/gh-aw, but the catalog does not currently modelghCLI extensions as aninstall_method. Sincegithub/gh-awpublishes prebuilt per-arch binaries alongside the extension, I usedgithub_release_binary(matching what the task prompt approved) and documented the alternative install path in the entry'snotesfield for maintainers and users.gh-aw-firewallarch_map: Upstream usesx64/arm64rather than the more commonamd64/arm64, so the entry mapsx86_64 -> x64.armv7lis omitted because upstream does not publish an armv7 binary.CATALOG_SUMMARY.md/COVERAGE.md: Both docs are manually maintained snapshots whose totals already lag the catalog (last touched 2026-04-18 at 45 / 56 / 89 entries vs. the actual 93 pre-change). Left alone to keep this PR scoped and avoid drift-fixing unrelated tools.Test plan
jq . catalog/*.json).uv run python -m pytest -x -q --ignore=tests/integration— 598 passed, 1 skipped.tests/test_catalog_and_collectors.py(schema-validity sweep across allcatalog/*.json) — 28 passed../scripts/test_smoke.sh— green.ToolCatalog().has_tool(...)returnsTruefor all three new names; total entries 96.mlrv6.18.1,gh-awv0.71.5,gh-aw-firewallv0.25.43.make install-mlr/make install-gh-aw/make install-gh-aw-firewallsmoke install on a clean host (not run here — relies on network + writeable~/.local/bin).