[instructions] Sync instruction files with release 0.81.4

[github-actions]

Summary

Syncs instruction files with release 0.81.4. Updates documentation for gh aw upgrade org-level flags, corrects publish-asset file size limits, and strengthens strict: field guidance with explicit security warnings about strict: false.

Changes

.github/aw/cli-commands.md

• Added four new gh aw upgrade usage examples documenting flags introduced in 0.81.4:
  • --create-pull-request / --pr: open a PR with the upgrade changes
  • --org <org>: preview upgrade PRs across an organization
  • --org --repos '<pattern>': limit org mode to matching repo names
  • --org --create-issue: open tracking issues in org repos that have agentic workflows (requires --org)

.github/aw/safe-outputs-automation.md

• Corrected publish-asset default maximum file size from 50 MB (51200 KB) to 10 MB (10240 KB).
• Noted that the limit is configurable via the max-size field.

.github/aw/syntax-agentic.md

• Strengthened strict: field documentation:
  • Replaced Must be true with an explicit warning: strict: false is dangerous, should be extremely rare, and requires a security review.
  • Added "strongly recommended" qualifier to the default-true description.
• Removed deprecated network.firewall configuration block (firewall: true, version, log-level, args).
• Added redirect: AWF (firewall) configuration now lives under sandbox.agent; use sandbox.agent.version to pin the AWF version.
• Added migration guidance: run gh aw fix to migrate away from the legacy network.firewall field.

Affected areas

Area	Impact
gh aw upgrade CLI	Documentation only — no behaviour change
publish-asset safe output	Corrected size-limit figure; max-size now surfaced
strict: frontmatter field	Stronger security guidance; no schema change
network.firewall config	Deprecated block removed from docs; migration path provided

Type

documentation — instruction file sync; no source code or compiled workflow changes.

Generated by PR Description Updater for #41644 · 36.6 AIC · ⌖ 9.13 AIC · ⊞ 4.6K · ◷

[github-actions]

Great work from the Instructions Janitor on this v0.81.4 sync! 🎉

This is a clean, tightly-scoped documentation PR — three .github/aw/*.md instruction files updated with accuracy fixes and one new feature backfill, all traceable to specific schema paths and Go source lines in the PR body. The audit trail (release/change audit, size audit, duplication audit, safe-output accuracy audit) is thorough and the deliberate deferral of consolidation work is well-reasoned and documented.

This looks ready for maintainer review.

Generated by ✅ Contribution Check · 217.8 AIC · ⌖ 19 AIC · ⊞ 6K · ◷

[pelikhan]

@copilot

• keep guidance to strongly recommend strict true

[pelikhan]

/q reduce max lines to 400 lines

[github-actions]

🚀 Agentic Commands has started processing this issue comment

[github-actions]

🎩 Mission equipment ready! Q has optimized your workflow. Use wisely, 007! 🔫

[Copilot]

@copilot

• keep guidance to strongly recommend strict true

Updated in c78fe7a to keep the guidance strongly recommending strict: true, while still documenting strict: false as an intentional opt-out.

[pelikhan]

@copilot strict false is a dangerous mode that allows unsafe workflows should be extremely rare to set and carefully security reviewed

[Copilot]

Updated in 6d1937d with stronger guidance: strict: false is documented as dangerous, extremely rare, and requiring careful security review before use.