Sync from inner source [auto] (#64)

* Sync from github/github-well-architected-internal (main)

Source Repository: github/github-well-architected-internal

Source Branch: main

Source SHA: a70b08dfa83cb617978b9d6f2d5f1f6ef8ce5ce6

* Add missing trailing newline to 2026-q1.md

Agent-Logs-Url: https://github.com/github/github-well-architected/sessions/5bdb6227-6057-4dac-94cf-61ebb79c3053

Co-authored-by: KittyChiu <42864823+KittyChiu@users.noreply.github.com>

---------

Co-authored-by: well-architected-sync-bot[bot] <235114805+well-architected-sync-bot[bot]@users.noreply.github.com>
Co-authored-by: Kitty Chiu <42864823+KittyChiu@users.noreply.github.com>
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>

Author: 3 people

content/library/overview/release-notes/2025-q1.md

@@ -2,8 +2,8 @@
 
 ## 2025 Q1
 
-- **New Content: GitHub Actions Scalability** - Published guidance for scaling GitHub Actions reusability in enterprise environments, including best practices for workflow optimization, action management, and enterprise-wide deployment
-- **New Content: Repository Migration Essentials** - Introduced a generalized repository migration checklist covering pre-planning, testing, execution, and post-migration, designed to serve as a single source of truth across migration approaches
+- **New Content: [GitHub Actions Scalability](/library/collaboration/recommendations/scaling-actions-reusability/)** - Published guidance for scaling GitHub Actions reusability in enterprise environments, including best practices for workflow optimization, action management, and enterprise-wide deployment
+- **New Content: [Repository Migration Essentials](/library/scenarios/migrations/repository-checklist/)** - Introduced a generalized repository migration checklist covering pre-planning, testing, execution, and post-migration, designed to serve as a single source of truth across migration approaches
 - **Design Principle Updates** - Expanded real-world examples across pillars, including clearer guidance on pull request best practices, early vulnerability scanning, and multi-region deployment considerations
 - **Checklists 2.0** - Overhauled the assessment checklists to align with recent GitHub product updates and introduced tiers to help teams prioritize actions based on maturity
 - **Fixes & Refinements** - Improved clarity and usability with refinements to pillar content, navigation, homepage layout, and the hosting template for simpler ongoing maintenance

content/library/overview/release-notes/2025-q2.md

@@ -2,6 +2,6 @@
 
 ## 2025 Q2
 
-- **New Content: Azure DevOps Migration Guide** - Published migration scenarios and playbooks for transitioning from Azure DevOps to GitHub, including phased approaches, feature comparisons, and practical guidance for translating Azure DevOps settings to GitHub equivalents
-- **New Content: Engineering System Success Framework** - Published the Engineering System Success Framework to help organizations evaluate Copilot business value, including design principles, checklists, metrics, implementation phases, anti-patterns, and intervention strategies
+- **New Content: [Azure DevOps Migration Guide](/library/scenarios/migrations/azure-devops-migration-guide/)** - Published migration scenarios and playbooks for transitioning from Azure DevOps to GitHub, including phased approaches, feature comparisons, and practical guidance for translating Azure DevOps settings to GitHub equivalents
+- **New Content: [Engineering System Success Framework](/library/productivity/recommendations/engineering-system-metrics/)** - Published the Engineering System Success Framework to help organizations evaluate Copilot business value, including design principles, checklists, metrics, implementation phases, anti-patterns, and intervention strategies
 - **Site Improvements** - Introduced a new Copilot Chat Widget that provides interactive assistance for users

content/library/overview/release-notes/2025-q3.md

@@ -2,8 +2,8 @@
 
 ## 2025 Q3
 
-- **Update: Repository Management Enhancement** - Updated the "Managing repositories at scale" article with opinionated guidance on adopting rulesets and custom properties to meet business objectives, including actionable strategies for governance at scale
-- **Update: GitHub Actions Policy Updates** - Updated the GitHub Actions recommendations with new policy capabilities and more prescriptive governance and security guidance for managing workflows at scale
-- **New Content: GitHub Copilot Enterprise Administration** - Published an enterprise playbook for managing GitHub Copilot Premium Request Units (PRUs), including budget configuration, KPI targets, monitoring, and cost control strategies
-- **New Content: Security Alert Management** - Published a scenario for prioritizing security alert remediation using GitHub's built-in metadata and organizational context, including practical guidance on implementing GitHub's security campaigns and vulnerability triage workflows
-- **New Content: Champion Program** - Published a recommendation for champion programs that empower engaged employees to guide peers through AI-driven change.
+- **Update: [Repository Management Enhancement](/library/governance/recommendations/managing-repositories-at-scale/)** - Updated the "Managing repositories at scale" article with opinionated guidance on adopting rulesets and custom properties to meet business objectives, including actionable strategies for governance at scale
+- **Update: [GitHub Actions Policy Updates](/library/application-security/recommendations/actions-security/)** - Updated the GitHub Actions recommendations with new policy capabilities and more prescriptive governance and security guidance for managing workflows at scale
+- **New Content: [GitHub Copilot Enterprise Administration](/library/governance/recommendations/copilot-policies-best-practices/copilot_pru_enterprise_admin_playbook/)** - Published an enterprise playbook for managing GitHub Copilot Premium Request Units (PRUs), including budget configuration, KPI targets, monitoring, and cost control strategies
+- **New Content: [Security Alert Management](/library/application-security/recommendations/prioritizing-alerts/)** - Published a scenario for prioritizing security alert remediation using GitHub's built-in metadata and organizational context, including practical guidance on implementing GitHub's security campaigns and vulnerability triage workflows
+- **New Content: [Champion Program](/library/collaboration/recommendations/champion-program/)** - Published a recommendation for champion programs that empower engaged employees to guide peers through AI-driven change.

content/library/overview/release-notes/2025-q4.md

@@ -2,6 +2,6 @@
 
 ## 2025 Q4
 
-- **New Content: Actions Runner Controller (ARC) best practices** - Published an opinionated guidance for operating ARC on Kubernetes, including recommendations for runner images, configuration, observability, and security trade-offs
-- **New Content: Securing developer workspace** - Published an design guidance for hardening developer workspaces, including identity and authorization, workspace isolation, and signed commit practices
-- **Update: Securing GitHub Actions workflows** - Added opinionated guidance for OIDC, repository rulesets, and safer workflow patterns, with specific recommendations for public repository security
+- **New Content: [Actions Runner Controller (ARC) best practices](/library/architecture/recommendations/deploying-actions-runner-controller/)** - Published an opinionated guidance for operating ARC on Kubernetes, including recommendations for runner images, configuration, observability, and security trade-offs
+- **New Content: [Securing developer workspace](/library/application-security/recommendations/securing-developer-workspace/)** - Published an design guidance for hardening developer workspaces, including identity and authorization, workspace isolation, and signed commit practices
+- **Update: [Securing GitHub Actions workflows](/library/application-security/recommendations/actions-security/)** - Added opinionated guidance for OIDC, repository rulesets, and safer workflow patterns, with specific recommendations for public repository security

content/library/overview/release-notes/2026-q1.md

@@ -2,10 +2,10 @@
 
 ## 2026 Q1
 
-- **New Content: Managing dependency threats** - Published a comprehensive guide for defending against supply chain attacks and managing dependency risks, covering layered defenses from lockfiles and dependency review to attestation verification and package confusion mitigation
-- **New Content: Expanding Enterprise Custom Agents context** - Published architecture guidance for extending GitHub Copilot custom agents with enterprise knowledge, including strategies for context enrichment, secure integration patterns, and scaling agent capabilities across the organization
-- **New Content: Implementing polyrepo engineering** - Published a design guide for coordinating engineering across multiple repositories, including manifest-driven integration, change set management, reusable workflow versioning, and release governance patterns
-- **Update: NIST SSDF implementation** - Expanded the NIST Secure Software Development Framework scenario with updated guidance on security configurations, repository rulesets, and practical implementation steps across all SSDF practice areas
-- **Update: Securing GitHub Actions workflows** - Enhanced the Actions security recommendation with detailed OIDC claims guidance, immutable subject identifiers, repository ruleset examples, and refined best practices for secure workflow patterns
-- **Update: Application Security design principles** - Added a security-by-design approach and developer workspace security considerations to the Application Security pillar's design principles
-- **Update: Anti-patterns** - Added guidance on avoiding PII detection with secret scanning custom patterns, highlighting why repurposing secret scanning for personally identifiable information creates compliance risk and alert fatigue
+- **New Content: [Managing dependency threats](/library/application-security/recommendations/managing-dependency-threats/)** - Published a comprehensive guide for defending against supply chain attacks and managing dependency risks, covering layered defenses from lockfiles and dependency review to attestation verification and package confusion mitigation
+- **New Content: [Expanding Enterprise Custom Agents context](/library/architecture/recommendations/expanding-enterprise-custom-agents-context/)** - Published architecture guidance for extending GitHub Copilot custom agents with enterprise knowledge, including strategies for context enrichment, secure integration patterns, and scaling agent capabilities across the organization
+- **New Content: [Implementing polyrepo engineering](/library/architecture/recommendations/implementing-polyrepo-engineering/)** - Published a design guide for coordinating engineering across multiple repositories, including manifest-driven integration, change set management, reusable workflow versioning, and release governance patterns
+- **Update: [NIST SSDF implementation](/library/scenarios/nist-ssdf-implementation/)** - Expanded the NIST Secure Software Development Framework scenario with updated guidance on security configurations, repository rulesets, and practical implementation steps across all SSDF practice areas
+- **Update: [Securing GitHub Actions workflows](/library/application-security/recommendations/actions-security/)** - Enhanced the Actions security recommendation with detailed OIDC claims guidance, immutable subject identifiers, repository ruleset examples, and refined best practices for secure workflow patterns
+- **Update: [Application Security design principles](/library/application-security/design-principles/)** - Added a security-by-design approach and developer workspace security considerations to the Application Security pillar's design principles
+- **Update: [Anti-patterns](/library/scenarios/anti-patterns/)** - Added guidance on avoiding PII detection with secret scanning custom patterns, highlighting why repurposing secret scanning for personally identifiable information creates compliance risk and alert fatigue