Bump github/gh-aw from 0.73.0 to 0.74.8 in the github-actions group

[dependabot]

Bumps the github-actions group with 1 update: github/gh-aw.

Updates github/gh-aw from 0.73.0 to 0.74.8

Release notes

Sourced from github/gh-aw's releases.

v0.74.8

🌟 Release Highlights

This release strengthens reliability, developer experience, and observability with daily automated reviews, improved error messages, and enhanced telemetry instrumentation.

✨ What's New

🔍 Daily Reliability Review — A new scheduled workflow automatically detects and reports gh-aw reliability issues using Sentry observability data, querying for failures, timeouts, cancellations, and token truncations. The workflow creates prioritized findings with actionable recommendations, helping maintainers catch issues early. (#33493)

💡 Fuzzy "Did You Mean?" Suggestions — Validation errors now include helpful suggestions when you mistype engine names, events, permissions, or MCP types (e.g., invalid engine: copiliot → Did you mean: copilot?). The feature uses Levenshtein distance matching to catch common typos during compilation. (#33467)

📍 File/Line Context in Validation Errors — Validation errors now show file:line:col: positioning so IDE tooling can jump directly to the problematic field, eliminating manual searches through workflow files. (#33466)

💭 Reasoning Message Rendering — Reasoning content (Claude extended thinking blocks, Codex thinking sections, Copilot reasoning_text) now renders with a distinct ◯ open circle icon and italic styling, making agent thought processes visible and distinguishable from regular output. (#33464)

🐛 Bug Fixes & Improvements

Telemetry Instrumentation — Fixed four critical OTLP gaps: service.version fallback to GITHUB_SHA, gen_ai.response.finish_reasons always emitted, timeouts distinguished from failures, and gen_ai.usage.total_tokens now tracked. (#33528, #33510)

Network Access — Added patch-diff.githubusercontent.com to the GitHub domain ecosystem, allowing workflows using network.allowed: [github] to fetch PR diffs without blocking. (#33543)

Linter Improvements — Enhanced analyzer ergonomics with ctxbackground autofix, consistent test-file handling, and range-based diagnostics for better IDE integration. (#33541)

Code Quality — Resolved 12 lint violations including functions exceeding parameter limits (refactored to options structs), context.Background() calls in functions already receiving ctx, and os.Exit() calls in library packages. (#33452)

📚 Documentation

Developer Specifications — Consolidated developer documentation with 7 tone fixes across 4 spec files, removing marketing language and subjective phrasing. (#33566)

Reference Updates — Added Gemini 3.5 Flash model configuration, documented footer-install template behavior, and specified JSON workflow field mapping for Copilot automation API imports. (#33522)

Glossary Expansion — Daily glossary scan added terms for tools.github.allowed-repos, repository access restrictions, and other workflow configuration options. (#33519)

🔧 Internal

MCP Refactoring — Extracted duplicated MCP wrapper logic into renderDefaultJSONMCPConfig helper, eliminating 10-12 line code blocks across four JSON engines. (#33482)

Chaos Testing — Updated Chaos PR Bundle Fuzzer to allow modifications to tests/chaos/** in safe-output PR creation. (#33553)

Workflow Cleanup — Removed centralized pull_request_reviewer dispatching from agentic_commands.yml, simplifying workflow routing. (#33542)

---

For complete details, see CHANGELOG.

Generated by 🚀 Release · ● 3.9M

---

... (truncated)

Commits

• 0feed75 recompile
• 53cf33a Agent of the Day – May 20, 2026 (#33568)
• 588bab4 Merge branch 'main' of https://github.com/github/gh-aw
• 9e08d91 add debug logging to fetch
• f101fa6 Update Daily OTel Advisor to use shared Sentry/Grafana OTEL MCP imports (#33570)
• 1e8e75f fix syntax error
• 7e30a6a feat: fuzzy "Did you mean?" suggestions for engine, event, permission, and MC...
• d374d88 [docs] Consolidate dev specs v9.12: fix 7 tone issues across 4 files (#33566)
• d9293e9 Allow Chaos PR Bundle Fuzzer to modify tests/chaos/** in safe-output PR cre...
• 8c2c89f Improve linter analyzer ergonomics: ctxbackground autofix, test-file parity, ...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions