Security concerns
GitHub also does not specify whether the agent’s access to repository content, including potentially sensitive code, secrets, or customer data embedded in repos, is governed by data residency requirements, Kramer added.
“For financial services, a full lineage layer is needed, not just a ‘this workflow created this PR’ but a complete record of every API call the agent made, every file it read, and every decision it made. These are all things that need to be addressed,” the analyst noted further.
Although GitHub leaves it to developers and individual teams to decide what automation to write in Agentic Workflows and how far to take it including planning autonomous CI/CD, analysts suggest enterprises treat the technical preview as a controlled testing window to evaluate whether the new feature can be absorbed into production environments without breaking governance, security, or cost discipline.
