Skip to content
GitHub Agentic Workflows

CLI Commands

The gh aw CLI extension enables developers to create, manage, and execute AI-powered workflows directly from the command line. It transforms natural language markdown files into GitHub Actions.

Quick Start

Section titled “Quick Start”

Get started in seconds:

gh aw init                                  # Initialize repository
gh aw add githubnext/agentics/ci-doctor    # Add a workflow
gh aw trial ci-doctor                       # Test safely

Common Tasks:

TaskCommand
Add workflowgh aw add githubnext/agentics/ci-doctor
Create custom workflowgh aw new my-workflow
Compile to YAMLgh aw compile
Test safelygh aw trial ./workflow.md
Run immediatelygh aw run workflow-name
Check statusgh aw status
View logsgh aw logs workflow-name
Debug rungh aw audit 12345678

Installation

Section titled “Installation”

Install the GitHub CLI extension:

gh extension install githubnext/gh-aw

Alternative: If authentication fails, use the standalone installer:

curl -O https://raw.githubusercontent.com/githubnext/gh-aw/main/install-gh-aw.sh
chmod +x install-gh-aw.sh
./install-gh-aw.sh

GitHub Enterprise Server: Set GITHUB_SERVER_URL or GH_HOST environment variables to use your GitHub instance.

Global Options

Section titled “Global Options”
FlagDescription
-h, --helpShow help information
-v, --verboseEnable verbose output with debugging details

Help Commands:

gh aw --help           # Show all commands
gh aw help [command]   # Command-specific help
gh aw help all         # Comprehensive documentation

Commands

Section titled “Commands”

Commands are organized by workflow lifecycle: creating, building, testing, monitoring, and managing workflows.

Getting Workflows

Section titled “Getting Workflows”

init

Section titled “init”

Initialize your repository for agentic workflows.

gh aw init       # Configure .gitattributes, Copilot instructions, custom agent
gh aw init --mcp # Also setup MCP server integration for Copilot Agent

What it does:

  • Configures .gitattributes to mark .lock.yml files as generated
  • Adds Copilot instructions for better AI assistance
  • Sets up custom agent configuration

With --mcp flag:

  • Creates GitHub Actions workflow for MCP server setup
  • Configures .vscode/mcp.json for VS Code integration
  • Enables gh-aw MCP tools in Copilot Agent

add

Section titled “add”

Add workflows from The Agentics collection or other repositories.

gh aw add githubnext/agentics/ci-doctor           # Add single workflow
gh aw add "githubnext/agentics/ci-*"             # Add multiple with wildcards
gh aw add ci-doctor --dir shared --number 3      # Organize and create copies
gh aw add ci-doctor --pr                         # Create PR instead of direct commit

Options:

  • --dir: Organize workflows in subdirectories
  • --number: Create multiple numbered copies
  • --pr: Create pull request instead of committing directly
  • --no-gitattributes: Skip .gitattributes update

new

Section titled “new”

Create a new custom workflow from scratch.

gh aw new my-custom-workflow

Creates a markdown workflow file in .github/workflows/ with template frontmatter and automatically opens it for editing.

Building

Section titled “Building”

compile

Section titled “compile”

Compile markdown workflows to GitHub Actions YAML.

gh aw compile                              # Compile all workflows
gh aw compile my-workflow                  # Compile specific workflow
gh aw compile --watch                      # Auto-recompile on changes
gh aw compile --validate --strict          # Schema + strict mode validation
gh aw compile --zizmor                     # Security scan (warnings)
gh aw compile --strict --zizmor            # Security scan (fails on findings)
gh aw compile --dependabot                 # Generate dependency manifests
gh aw compile --purge                      # Remove orphaned .lock.yml files

Key Options:

OptionDescription
--validateSchema validation and container checks
--strictRequires timeouts, explicit network config, blocks write permissions
--zizmorSecurity scanning with zizmor
--dependabotGenerate npm/pip/Go manifests and update dependabot.yml
--watchAuto-recompile on file changes
--purgeRemove orphaned .lock.yml files

Testing

Section titled “Testing”

trial

Section titled “trial”

Test workflows safely in temporary private repositories.

gh aw trial githubnext/agentics/ci-doctor          # Test remote workflow
gh aw trial ./workflow.md                          # Test local workflow
gh aw trial ./workflow.md --use-local-secrets      # Test with local API keys
gh aw trial ./workflow.md --logical-repo owner/repo # Act as different repo
gh aw trial ./issue-workflow.md --trigger-context "#123" # With issue context

Key Options:

OptionDescription
--engineOverride AI engine for testing
--auto-merge-prsAutomatically merge created PRs
--repeat NRepeat execution N times
--delete-host-repo-afterDelete trial repository after execution
--use-local-secretsUse local API keys instead of repository secrets
--logical-repo owner/repoAccess issues/PRs from specific repository
--clone-repo owner/repoUse different codebase for testing
--trigger-context "#123"Provide issue/PR context

Creates temporary private repository, executes workflow in isolated environment, and saves results to trials/ directory.

run

Section titled “run”

Execute workflows immediately in GitHub Actions.

gh aw run WorkflowName                      # Run workflow
gh aw run workflow1 workflow2               # Run multiple workflows
gh aw run workflow --repeat 3               # Repeat execution 3 times
gh aw run workflow --use-local-secrets      # Use local API keys

Options:

  • --repeat N: Execute the workflow N times
  • --use-local-secrets: Temporarily push AI engine secrets from environment variables, then clean up

Monitoring

Section titled “Monitoring”

status

Section titled “status”

Show status of all workflows in the repository.

gh aw status                                # Show all workflow status

Lists all agentic workflows with their current state, enabled/disabled status, schedules, and configurations.

logs

Section titled “logs”

Download and analyze workflow execution logs.

gh aw logs                                 # Download logs for all workflows
gh aw logs workflow-name                   # Download logs for specific workflow
gh aw logs -c 10 --start-date -1w         # Filter by count and date
gh aw logs --parse --json                 # Generate markdown + JSON output

Key Options:

OptionDescriptionExample
-c, --count NLimit number of runs-c 10
--start-dateFilter runs from date--start-date -1w
--end-dateFilter runs until date--end-date -1d
--parseGenerate log.md and firewall.md--parse
--jsonOutput structured metrics--json

Downloads workflow execution logs, analyzes tool usage and network patterns, and caches results for faster subsequent runs (~10-100x speedup).

audit

Section titled “audit”

Investigate and analyze specific workflow runs.

gh aw audit 12345678                                      # By run ID
gh aw audit https://github.com/owner/repo/actions/runs/123 # By URL
gh aw audit 12345678 --parse                              # Parse logs to markdown

Provides detailed analysis including overview, execution metrics, tool usage patterns, MCP server failures, firewall analysis, and artifact information. Accepts run IDs or URLs from any repository and GitHub instance.

Management

Section titled “Management”

enable

Section titled “enable”

Enable workflows for execution.

gh aw enable                                # Enable all workflows
gh aw enable prefix                         # Enable workflows matching prefix
gh aw enable ci-*                          # Enable workflows with pattern

Enables workflows for automatic and manual execution with pattern matching support for bulk operations.

disable

Section titled “disable”

Disable workflows and cancel running jobs.

gh aw disable                               # Disable all workflows
gh aw disable prefix                        # Disable workflows matching prefix
gh aw disable ci-*                         # Disable workflows with pattern

Disables workflows to prevent execution and cancels any currently running workflow jobs.

remove

Section titled “remove”

Remove workflows from the repository.

gh aw remove WorkflowName

Removes both .md and .lock.yml files and updates repository configuration.

update

Section titled “update”

Update workflows to their latest versions.

gh aw update                              # Update all workflows with source field
gh aw update ci-doctor                    # Update specific workflow
gh aw update ci-doctor --major --force    # Allow major version updates

What it does:

  • Updates workflows based on source field format owner/repo/path@ref
  • Performs 3-way merge preserving local changes
  • Semantic version tags update within the same major version

Options:

  • --major: Allow major version updates (breaking changes)
  • --force: Force update even with conflicts

Conflict handling: When conflicts occur, diff3 markers are added and recompilation is skipped until resolved.

Advanced

Section titled “Advanced”

mcp

Section titled “mcp”

Manage MCP (Model Context Protocol) servers.

gh aw mcp list                             # List all MCP servers
gh aw mcp list workflow-name               # List servers for specific workflow
gh aw mcp inspect workflow-name            # Inspect and test servers
gh aw mcp add                              # Add servers from registry

Lists MCP servers configured in workflows, inspects server configuration, tests connectivity, and adds new servers from the registry. See MCPs Guide for complete documentation.

pr transfer

Section titled “pr transfer”

Transfer pull requests between repositories.

gh aw pr transfer https://github.com/source/repo/pull/234
gh aw pr transfer <pr-url> --repo target-owner/target-repo

Transfers PR from source repository to target repository, preserving code changes, title, and description.

Options:

  • --repo target-owner/target-repo: Specify target repository (defaults to current repository)

mcp-server

Section titled “mcp-server”

Start MCP server exposing CLI commands as tools.

gh aw mcp-server              # stdio transport (local)
gh aw mcp-server --port 3000  # HTTP/SSE transport (workflows)

Exposes CLI commands (status, compile, logs, audit) as MCP tools, enabling AI assistants to interact with gh-aw programmatically. Supports both local (stdio) and remote (HTTP) transports.

Options:

  • --port N: Start HTTP server on specified port (defaults to stdio transport)

See MCP Server Guide for integration details.

Examples

Section titled “Examples”

Basic Workflow Lifecycle

Section titled “Basic Workflow Lifecycle”
gh aw init                                  # Initialize repository
gh aw add githubnext/agentics/ci-doctor    # Add a workflow
gh aw compile                               # Compile to GitHub Actions
gh aw trial ci-doctor                       # Test safely

Compile with Security Scanning

Section titled “Compile with Security Scanning”
gh aw compile --verbose                     # Detailed output
gh aw compile --strict --zizmor             # Strict mode + security scan

Analyze Workflow Runs

Section titled “Analyze Workflow Runs”
gh aw logs ci-doctor -c 5 --parse --json   # Download, parse, and export
gh aw audit 12345678 --parse                # Deep dive into specific run

Debug Logging

Section titled “Debug Logging”

Enable detailed debugging output for troubleshooting:

DEBUG=* gh aw compile                # All debug logs
DEBUG=cli:* gh aw compile            # CLI operations only
DEBUG=cli:*,workflow:* gh aw compile # Multiple packages
DEBUG=*,-tests gh aw compile         # All except tests

Features:

  • Shows namespace, message, and time diff (e.g., +50ms)
  • Zero overhead when disabled
  • Supports pattern matching with wildcards

Tip: Use --verbose flag for user-facing details instead of DEBUG environment variable.

Troubleshooting

Section titled “Troubleshooting”
IssueSolution
command not found: ghInstall from cli.github.com
extension not found: awRun gh extension install githubnext/gh-aw
Compilation fails with YAML errorsCheck indentation, colons, and array syntax in frontmatter
Workflow not foundRun gh aw status to list available workflows
Permission deniedCheck file permissions or repository access
Trial creation failsCheck GitHub rate limits and authentication

See Common Issues and Error Reference for detailed troubleshooting.

Section titled “Related Documentation”

Made with by GitHub Next & Microsoft Research