✅ Copilot review passed with no inline comments.

@copilot Add the ready-for-aw label to this PR to trigger agentic CI smoke tests.

✅ Smoke Claude passed

✅ Build Test Suite completed successfully!

📡 Smoke OTel Tracing completed. All tracing scenarios validated. ✅

✅ Smoke Copilot BYOK completed. Copilot BYOK mode operational. 🔓

📰 VERDICT: Smoke Copilot has concluded. All systems operational. This is a developing story. 🎤

✅ Smoke Copilot BYOK AOAI (api-key) completed. Copilot AOAI BYOK (api-key) mode operational. 🔓

✅ Smoke Copilot BYOK AOAI (Entra) completed. Copilot AOAI BYOK (Entra) mode operational. 🔓

✨ The prophecy is fulfilled... Smoke Codex has completed its mystical journey. The stars align. 🌟

❌ Security Guard failed. Please review the logs for details.

🔑 Smoke Copilot PAT PAT auth validated. All systems operational. ✅

✅ Smoke Gemini completed. All facets verified. 💎

🔌 Smoke Services — All services reachable! ✅

✅ Contribution Check completed successfully!

Contribution guidelines review complete for PR #5445: no important missing items found based only on the provided PR metadata, diff, and CONTRIBUTING.md context.

Chroot tests passed! Smoke Chroot - All security and functionality tests succeeded.

Smoke Test: Claude Engine

• API status: ✅ PASS
• gh check: ✅ PASS
• File status: ✅ PASS

Overall result: PASS

Generated by Smoke Claude for issue #5445 · 37.7 AIC · ⊞ 3.1K · ◷

🔬 Smoke Test Results

PR: Refactor api-proxy upstream response factory into focused modules
Author: @Copilot | Assignees: @lpcox @Copilot

Overall: FAIL — pre-computed step outputs were not substituted (template variables unresolved).

📰 BREAKING: Report filed by Smoke Copilot

🔥 Smoke Test: Copilot PAT Auth — PASS

Overall: PASS · Auth mode: PAT (COPILOT_GITHUB_TOKEN)

cc @lpcox @Copilot

🔑 PAT report filed by Smoke Copilot PAT

Smoke Test Results: Direct BYOK Mode ✅ PASS

Tests:

• ✅ GitHub MCP connectivity (PR retrieval successful)
• ✅ GitHub.com connectivity (HTTP 200)
• ✅ File write/read (test file created and verified)
• ✅ BYOK inference path active (reading this prompt confirms api-proxy → api.githubcopilot.com working)

Mode: Direct BYOK via COPILOT_PROVIDER_API_KEY → api-proxy sidecar → api.githubcopilot.com

CC: @lpcox @Copilot

🔑 BYOK report filed by Smoke Copilot BYOK

🔭 Smoke Test: API Proxy OpenTelemetry Tracing

All scenarios pass. ✅

📡 OTel tracing validated by Smoke OTel Tracing

Gemini Engine Smoke Test Results

• PR Titles:
  • Fix gVisor workflow: Add proper health checks for Squid and Envoy (Fix gVisor workflow: Add proper health checks for Squid and Envoy #5237)
  • [Error: Could not fetch second PR title]
• GitHub MCP Testing: ❌
• GitHub.com Connectivity: ❌ (Status 000)
• File Writing Testing: ✅
• Bash Tool Testing: ✅

Overall Status: FAIL

network:
  allowed:
    - defaults
    - "localhost"

💎 Faceted by Smoke Gemini

@lpcox

• GitHub MCP Test: ✅
• GitHub.com connectivity: ✅
• File write/read test: ✅
• Direct BYOK inference: ✅

Running in direct BYOK mode (AWF_AUTH_TYPE=github-oidc + AWF_AUTH_AZURE_* + COPILOT_PROVIDER_BASE_URL) via api-proxy → Azure OpenAI (Foundry, o4-mini-aw) authenticated via Microsoft Entra

Overall: PASS

🪪 BYOK (AOAI Entra) report filed by Smoke Copilot BYOK AOAI (Entra)

Merged PRs: chore: upgrade gh-aw to v0.81.0 and recompile workflows; refactor: extract buildAgentSecurityConfig from buildAgentService
PR query: test: fix failing npm test after gh-aw v0.81.0 recompile; Refactor generatePolicyManifest into composable policy section builders
GitHub title check: ✅
File write/readback: ✅
Discussion comment: ✅
Build: ✅
Overall: PASS

network:
  allowed:
    - defaults
    - "registry.npmjs.org"

🔮 The oracle has spoken through Smoke Codex

Chroot Smoke Test Results

Overall: ❌ FAILED — Python and Node.js versions differ between host and chroot environment.

Tested by Smoke Chroot

Smoke Test: Services Connectivity

Overall: FAIL — host.docker.internal service containers are unreachable from this runner.

🔌 Service connectivity validated by Smoke Services

🏗️ Build Test Suite Results

Overall: 8/8 ecosystems passed — ✅ PASS

Generated by Build Test Suite for issue #5445 · 84.2 AIC · ⊞ 7.7K · ◷

@lpcox @Copilot

Smoke Test: Copilot BYOK (Azure Foundry)

• List PRs (merged): ✅
• HTTP github.com: ✅
• File I/O: ✅
• BYOK inference: ✅

Running in direct BYOK mode (COPILOT_PROVIDER_API_KEY + COPILOT_PROVIDER_BASE_URL) via api-proxy → Azure OpenAI (Foundry, o4-mini-aw)

PASS

🔑 BYOK (AOAI api-key) report filed by Smoke Copilot BYOK AOAI (api-key)