[docs] Self-healing documentation fixes from issue analysis - 2026-03-31

[github-actions]

Self-Healing Documentation Fixes

This PR was automatically created by the Daily Documentation Healer workflow.

Gaps Fixed

• Issue MCP Gateway: Add upstream authentication (OIDC) to spec and schema #23605: MCP Gateway OIDC auth — Added auth.type: github-oidc documentation to guides/mcps.md. The compiler (pkg/workflow/mcp_config_validation.go) already supports this field, and the gateway spec (mcp-gateway.md §7.6) already documents the protocol-level behavior, but the how-to guide for workflow authors only showed static headers-based authentication. Users following the guide had no indication that dynamic OIDC token acquisition was available.

Root Cause

DDUw missed issue #23605 because it was created and closed on the same day (2026-03-31, before DDUw's daily 6am UTC run). When DDUw ran, the issue did not yet appear in the "recently closed" window. The spec and schema updates (§7.6 and mcp-gateway-config.schema.json) were applied directly by the issue author, so no [docs] PR was ever created — leaving the user-facing guide (guides/mcps.md) undocumented.

💡 DDUw Improvement Suggestions

DDUw Improvement Suggestions

Pattern: Issues closed as completed by the author on the same day they were filed, without a [docs] PR, can slip through DDUw's Step 1c scan if DDUw has already run that day.

Specific failure: Step 1c scans for closed:>=7-days-ago, but the check for whether a [docs] PR exists only looks at merged PRs — it does not check whether the documentation file already reflects the change. If the author fixed docs directly (commit, not PR), DDUw Step 1c would treat the issue as "unaddressed" but the guide check would find the docs already present and skip. The guides/mcps.md case was different: the spec was updated but the guide was not, so neither DDUw's PR check nor its doc-present check would have caught the gap.

Suggested addition to Step 1c: When an issue describes a new feature or field, also search semantic docs (search("field-name usage example")) for guide pages, not just reference pages. Reference pages are often updated first (as was the case here with mcp-gateway.md), leaving how-to guides stale.

Related Issues

• Closes MCP Gateway: Add upstream authentication (OIDC) to spec and schema #23605

References: §23799486262

Generated by Daily Documentation Healer · ◷

• expires on Apr 3, 2026, 1:33 PM UTC

[Copilot]

Pull request overview

Updates the MCP servers guide to document GitHub Actions OIDC-based upstream authentication for HTTP MCP servers, closing a gap where only static headers auth was previously shown.

Changes:

• Clarifies that HTTP MCP servers can authenticate via static headers or dynamic auth.
• Adds a “GitHub Actions OIDC Authentication” section with required permissions: id-token: write and an auth.type: github-oidc example.
• Links readers to the MCP Gateway reference spec section for detailed behavior and rules.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.