Skip to content

feat: config redesign + severity comparison fix#61

Merged
ajianaz merged 5 commits into
developfrom
feat/config-redesign-and-severity-fix
May 31, 2026
Merged

feat: config redesign + severity comparison fix#61
ajianaz merged 5 commits into
developfrom
feat/config-redesign-and-severity-fix

Conversation

@ajianaz

@ajianaz ajianaz commented May 31, 2026

Copy link
Copy Markdown
Collaborator

Summary

Config system redesign + severity comparison bug fix.

Closes #60

Changes

  • Config set writes YAML (not TOML), supports --global and base_url
  • Global config at ~/.cora/config.yaml with priority chain
  • Auth separated to ~/.cora/auth.toml (0600)
  • Severity fix: >=<= (Ord ordering was inverted)
  • Auto-migration from old config.toml with marker file
  • Git repo guard: config set (no --global) requires git repo
  • Cora self-review fixes: TOML injection, migration marker, file permissions
  • Docs updated: README, CONTRIBUTING, CHANGELOG

@coderabbitai

coderabbitai Bot commented May 31, 2026

Copy link
Copy Markdown

Warning

Review limit reached

@ajianaz, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 37 minutes and 45 seconds. Learn how PR review limits work.

Your organization has run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info
⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 5d9e09ff-2387-4ffa-9fb2-6ca07ad8910e

📥 Commits

Reviewing files that changed from the base of the PR and between 3bf8dc6 and 346140d.

⛔ Files ignored due to path filters (1)
  • Cargo.lock is excluded by !**/*.lock
📒 Files selected for processing (13)
  • CHANGELOG.md
  • CONTRIBUTING.md
  • README.md
  • docs/CONFIG-REDESIGN.md
  • docs/FEATURE-DESIGN.md
  • src/commands/auth.rs
  • src/commands/config_cmd.rs
  • src/commands/review.rs
  • src/commands/scan.rs
  • src/config/loader.rs
  • src/config/schema.rs
  • src/engine/review.rs
  • src/main.rs
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch feat/config-redesign-and-severity-fix

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

CTO Hermes added 5 commits May 31, 2026 22:59
- config set now writes YAML (not unread TOML)
- support project (.cora.yaml) and global (~/.cora/config.yaml) config
- config set --global flag for global config
- add base_url to config set keys
- auth writes to separate ~/.cora/auth.toml (0o600)
- config show displays resolved config with priority chain
- skip_serializing_if on all Option fields (no more null in YAML)
- fix severity comparison: Ord is Critical(0)<Major(1)<Minor(2)<Info(3),
  so 'at or above min_severity' uses <= not >=
- fix should_block in engine/review.rs and commands/scan.rs
- fix display filter in commands/review.rs (consistent direction)
- add config set --help, --global flag
- design docs: CONFIG-REDESIGN.md, FEATURE-DESIGN.md
…verity fix

- Fix global config path (~/.config/cora → ~/.cora/config.yaml)
- Document --global flag, base_url key, config priority chain
- Add Authentication section with auth.toml details
- Update CI/CD section with composite action example
- Fix CONTRIBUTING: Rust version, project structure, test example
- Add Unreleased changelog entry for all changes
- Fix API key TOML injection: use toml::Table instead of format!()
- Add migration marker (.migrated) to prevent repeated filesystem I/O
- Restrict global config file permissions to 0600
- Guard project config set: require git repo (no orphan files)
@ajianaz
ajianaz force-pushed the feat/config-redesign-and-severity-fix branch from d51983f to 346140d Compare May 31, 2026 15:59
@ajianaz
ajianaz merged commit c607e74 into develop May 31, 2026
6 of 7 checks passed
@ajianaz
ajianaz deleted the feat/config-redesign-and-severity-fix branch June 1, 2026 02:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant