[safe-output-health] Safe Output Health Report - 2026-04-05

[github-actions[bot]]

Executive Summary

• Period: 2026-04-05 (last 24 hours)
• Runs Analyzed: 198
• Workflows Active: 36
• Runs with Safe Output Items: 59
• Safe Items Submitted: 128
• Safe Items Executed (GitHub writes): 99
• Validation Errors: 1 (soft — excess item rejected, not a hard failure)
• Hard Failures: 0
• Error Clusters Identified: 1
• Overall Health: ✅ Excellent — Third consecutive day with zero hard failures

Safe Output Job Statistics

Job Type	Executed	Notes
create_issue	20	✅
create_discussion	19	✅
add_comment	15	✅ (1 rejected due to max limit — see below)
create_pull_request	11	✅
create_pull_request_review_comment	6	✅
update_issue	4	✅
add_labels	4	✅
update_pull_request	3	✅
submit_pull_request_review	3	✅
push_to_pull_request_branch	1 (staged)	✅ staged-mode preview
send_slack_message	2	✅
dispatch_workflow	2	✅
create_code_scanning_alert	2	✅
add_reviewer	2	✅
set_issue_type	2	✅
post_slack_message	2	✅
remove_labels	1	✅
upload_asset	2 (separate job)	✅ via upload_assets job
noop	10 submitted	ℹ️ transparency signal, not a write
missing_tool	2 submitted	ℹ️ reporting signal, not a write

Error Clusters

Cluster 1: add_comment Limit Exceeded — Smoke Copilot

• Count: 1 occurrence
• Run: §23998581852
• Affected Workflow: Smoke Copilot
• Affected Job Type: add_comment
• Sample Error:

Line 14: Too many items of type 'add_comment'. Maximum allowed: 2.

• Root Cause: The Smoke Copilot workflow is configured with add_comment.max=2. The agent submitted 3 add_comment items — one to a discussion, one to the PR under test, and a 3rd at the very end of the output. The 3rd was rejected.
• Impact: Low — 12 of 13 submitted items executed successfully. No GitHub content was lost; only a redundant 3rd comment was suppressed.
• Severity: Low

View detailed context

The Smoke Copilot run performed a comprehensive test of all Copilot capabilities including GitHub MCP, MCP Scripts GH CLI, Serena MCP, Playwright, Web Fetch, file writing, PR review, discussion creation, and workflow dispatch. The safe output list contained 13 items (excluding a missing_tool item for Serena which is also informational):

• create_pull_request_review_comment (×2) — PR inline review comments ✅
• dispatch_workflow — triggered haiku-printer workflow ✅
• submit_pull_request_review — submitted PR review ✅
• create_discussion — "copilot was here" discussion ✅
• create_issue — Smoke Test issue ✅
• set_issue_type — set issue type to Bug ✅
• send_slack_message — Slack notification ✅
• add_comment (×2) — comments on discussion and PR ✅
• add_labels — added smoke-copilot label ✅
• remove_labels — removed smoke label ✅
• add_comment (3rd) — extra comment at the end ❌ rejected

The 3rd add_comment was a duplicate celebration comment on the same discussion, generated at the end of the Copilot's output.

Root Cause Analysis

Validation Issues

The sole error today is an agent over-generation issue where Smoke Copilot generated one more add_comment item than the workflow's configured maximum. This is a low-severity boundary condition — the validation system correctly caught and rejected the excess item while allowing all prior items to execute.

This pattern is distinct from previous issues tracked in the error-patterns database and represents the first occurrence of add_comment_limit_exceeded.

Upload Asset Handling (Non-Issue)

The Daily Firewall Logs Collector run (§24000767919) submitted 2 upload_asset items that appear absent from safe-output-items.jsonl. This is expected behavior: upload_asset items are handled by a dedicated upload_assets GitHub Actions job (separate from the safe_outputs job). Logs confirm both PNG files were successfully committed and pushed to assets/Daily-Firewall-Logs-Collector-and-Reporter.

Staged Push to PR Branch (Non-Issue)

Smoke Claude runs (§23998581834, §24001448881) show push_to_pull_request_branch as submitted but not in safe-output-items.jsonl. This is expected behavior: the Smoke Claude workflow runs this operation in staged: true mode, which produces a preview in the step summary but does not actually push. The preview executed successfully.

Recommendations

Low Priority

1. Smoke Copilot: add_comment Over-Generation
   • Priority: Low
   • Root Cause: Agent generates a 3rd summary comment at the end of its output without tracking how many add_comment calls it has already queued.
   • Recommended Action: The Smoke Copilot workflow prompt could be updated to explicitly instruct the agent that the add_comment limit is 2. Alternatively, increase add_comment.max to 3 in the Smoke Copilot workflow config if a 3rd comment is genuinely useful.
   • Affected: Smoke Copilot workflow

Historical Context

View 7-day trend

Date	Runs	Executed Items	Hard Failures	Soft Errors	Notes
2026-03-29	42	—	4	—
2026-03-30	127	—	5	—
2026-03-31	67	—	1	—
2026-04-01	100	—	2	—
2026-04-02	177	—	10	—	7 from concurrent API rate limit burst
2026-04-03	24	—	0	1 warning	Perfect run
2026-04-04	46	52	0	1 warning	submit_pr_review_no_context low severity
2026-04-05	198	99	0	1	add_comment limit exceeded (low severity)

Trend: Strong positive trend. After a spike on 2026-04-02 (7 of 10 failures from an API rate limit burst during concurrent runs), the system has been at zero hard failures for 3 consecutive days. Soft validation catches are working correctly.

Resolved patterns:

• submit_pr_review_no_context (first seen 2026-04-04) — not seen again today
• create_discussion_missing_labels (2026-04-03) — resolved since 2026-04-04
• push_to_pull_request_branch_files_outside_allowed_list (2026-04-01/02) — not seen since 2026-04-02
• api_rate_limit_concurrent_burst (2026-04-02) — not seen since

Metrics and KPIs

• Overall Safe Output Success Rate (GitHub writes): 99/99 executed = 100% (validation correctly filtered 1 excess item)
• Most Reliable Job Types: All — no hard failures across any type
• Validation System: Operating correctly — caught 1 excess item without impacting overall run success
• Active Monitoring Coverage: 36 workflows, 198 runs analyzed

Next Steps

• Monitor whether Smoke Copilot repeats the add_comment over-generation in future runs — if it recurs, update the prompt or raise add_comment.max to 3
• Continue monitoring the submit_pr_review_no_context pattern first seen 2026-04-04 — not seen today (potentially a transient issue)
• API rate limit burst mitigation (from 2026-04-02) remains implemented — continue monitoring for recurrence

References:

• §23998581852 — Smoke Copilot (validation error)
• §23998581834 — Smoke Claude (staged push, OK)
• §24000767919 — Daily Firewall Logs (upload_asset via separate job, OK)

Generated by Safe Output Health Monitor · ● 447.5K · ◷

• expires on Apr 6, 2026, 1:19 PM UTC

[github-actions[bot]]

This discussion has been marked as outdated by Safe Output Health Monitor.

A newer discussion is available at Discussion #24892.