Skip to content

[aw-failures] Copilot CLI 15-min timeout epidemic — reviewer workflows loop on rejected write-once tool calls (10 runs/6h, untra [Content truncated due to length] #43552

Description

@github-actions

Executive summary

Fix the Copilot CLI agent-loop timeout — it is the single dominant failure signature (10 of 22 red runs in the last 6h) and has zero existing tracking coverage. Reviewer-type agentic workflows (PR Code Quality Reviewer, Impeccable Skills Reviewer, Matt Pocock Skills Reviewer) stall inside the Execute GitHub Copilot CLI step and are killed by the 15-minute action timeout; the agent never produces safe outputs. audit-diff against a healthy run rules out firewall and rate-limit causes, so this is an agent-side hang, not infrastructure.

Failure cluster table

# Signature Sev Workflows Runs (last 6h) Tracking
1 Execute GitHub Copilot CLI timed out after 15 minutes P0 PR Code Quality Reviewer, Impeccable Skills Reviewer, Matt Pocock Skills Reviewer 10 (§28740795656, §28740785171, §28740755674, 28735756664, 28734734127, 28734706324, 28734262314, 28734041366, §28740755671, 28740755672) NONE → this issue
2 EACCES mkdir /tmp/gh-aw/sandbox/firewall/logs, agent never invoked P0 Smoke CI 4 failures + 4 cancels #42398 (open, still red)
3 safe_outputs update_pull_requesthead ref does not exist (non-retryable) P2 PR Sous Chef 1 (28741359828) none (benign)
4 Execute GitHub Copilot CLI exit code 1 (root cause uncaptured) P2 Daily Max Ai Credits Test, Contribution Check 2 (28739626786, 28736588628) none (needs evidence)

Evidence (Cluster 1)

Timeout + empty-argument tool-call loop

Terminal annotation on every sampled run:

##[error]The action 'Execute GitHub Copilot CLI' has timed out after 15 minutes.

Preceding the hang, the agent repeatedly issues empty-argument safeoutputs calls that are rejected:

[safeoutputs] Tool call error: Error [-32602]: calling \"tools/call\": Empty arguments are not allowed
— this tool is write-once, not a discovery probe. To inspect the schema, use the tools/list MCP method.

audit-diff base=28740795656 (failed) vs compare=28737497728 (success, same workflow):

  • firewall: has_anomalies: false, 0 new/removed/blocked domains → not an egress problem
  • GitHub API: 9 calls both runs, core remaining 13004 vs 14552 → not rate-limited
  • token usage recorded as 0 on the timed-out run → the agent never completed a clean turn

Conclusion: the agent enters a probe/retry loop on write-once safe-output tools and burns the full 15-minute wall clock instead of failing fast or calling noop. Successful runs of the same workflow exist (28737497728 @ 10:19, 28737303811 @ 10:11), so the failure is intermittent, not 100% red.

Existing issue correlation

Fix roadmap

Sub-issues created

  • Concrete P0 remediation: linked below.

References:

Generated by 🔍 [aw] Failure Investigator (6h) · 290 AIC · ⌖ 21.1 AIC · ⊞ 5.2K ·

  • expires on Jul 12, 2026, 5:25 AM UTC-08:00

Metadata

Metadata

Type

No type

Fields

No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions