diff --git a/.changeset/patch-inline-imports.md b/.changeset/patch-inline-imports.md new file mode 100644 index 00000000000..1f6844a1b86 --- /dev/null +++ b/.changeset/patch-inline-imports.md @@ -0,0 +1,5 @@ +--- +"gh-aw": patch +--- + +Documented the new `inline-imports: true` frontmatter option that embeds imported fragments at compile time to avoid runtime-import macros. diff --git a/.github/workflows/smoke-claude.lock.yml b/.github/workflows/smoke-claude.lock.yml index f0e74df44dd..0ebe40d478d 100644 --- a/.github/workflows/smoke-claude.lock.yml +++ b/.github/workflows/smoke-claude.lock.yml @@ -33,7 +33,7 @@ # - shared/mcp/tavily.md # - shared/reporting.md # -# gh-aw-metadata: {"schema_version":"v1","frontmatter_hash":"22441496741c536b8d9d809d2e0e13589a1cf6874aa01ae130f90aabfaa11d11"} +# gh-aw-metadata: {"schema_version":"v1","frontmatter_hash":"8c782964f7e844ae374ed837be15ae0efaf6562a1d9396782974ca826ab11b16"} name: "Smoke Claude" "on": @@ -132,188 +132,6 @@ jobs: setupGlobals(core, github, context, exec, io); const { main } = require('/opt/gh-aw/actions/add_workflow_run_comment.cjs'); await main(); - - name: Create prompt with built-in context - env: - GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt - GH_AW_SAFE_OUTPUTS: ${{ env.GH_AW_SAFE_OUTPUTS }} - GH_AW_GITHUB_ACTOR: ${{ github.actor }} - GH_AW_GITHUB_EVENT_COMMENT_ID: ${{ github.event.comment.id }} - GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER: ${{ github.event.discussion.number }} - GH_AW_GITHUB_EVENT_ISSUE_NUMBER: ${{ github.event.issue.number }} - GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER: ${{ github.event.pull_request.number }} - GH_AW_GITHUB_REPOSITORY: ${{ github.repository }} - GH_AW_GITHUB_RUN_ID: ${{ github.run_id }} - GH_AW_GITHUB_SERVER_URL: ${{ github.server_url }} - GH_AW_GITHUB_WORKSPACE: ${{ github.workspace }} - run: | - bash /opt/gh-aw/actions/create_prompt_first.sh - cat << 'GH_AW_PROMPT_EOF' > "$GH_AW_PROMPT" - - GH_AW_PROMPT_EOF - cat "/opt/gh-aw/prompts/xpia.md" >> "$GH_AW_PROMPT" - cat "/opt/gh-aw/prompts/temp_folder_prompt.md" >> "$GH_AW_PROMPT" - cat "/opt/gh-aw/prompts/markdown.md" >> "$GH_AW_PROMPT" - cat "/opt/gh-aw/prompts/playwright_prompt.md" >> "$GH_AW_PROMPT" - cat "/opt/gh-aw/prompts/cache_memory_prompt.md" >> "$GH_AW_PROMPT" - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - - GitHub API Access Instructions - - The gh CLI is NOT authenticated. Do NOT use gh commands for GitHub operations. - - - To create or modify GitHub resources (issues, discussions, pull requests, etc.), you MUST call the appropriate safe output tool. Simply writing content will NOT work - the workflow requires actual tool calls. - - Temporary IDs: Some safe output tools support a temporary ID field (usually named temporary_id) so you can reference newly-created items elsewhere in the SAME agent output (for example, using #aw_abc1 in a later body). - - **IMPORTANT - temporary_id format rules:** - - If you DON'T need to reference the item later, OMIT the temporary_id field entirely (it will be auto-generated if needed) - - If you DO need cross-references/chaining, you MUST match this EXACT validation regex: /^aw_[A-Za-z0-9]{3,8}$/i - - Format: aw_ prefix followed by 3 to 8 alphanumeric characters (A-Z, a-z, 0-9, case-insensitive) - - Valid alphanumeric characters: ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789 - - INVALID examples: aw_ab (too short), aw_123456789 (too long), aw_test-id (contains hyphen), aw_id_123 (contains underscore) - - VALID examples: aw_abc, aw_abc1, aw_Test123, aw_A1B2C3D4, aw_12345678 - - To generate valid IDs: use 3-8 random alphanumeric characters or omit the field to let the system auto-generate - - Do NOT invent other aw_* formats — downstream steps will reject them with validation errors matching against /^aw_[A-Za-z0-9]{3,8}$/i. - - Discover available tools from the safeoutputs MCP server. - - **Critical**: Tool calls write structured data that downstream jobs process. Without tool calls, follow-up actions will be skipped. - - **Note**: If you made no other safe output tool calls during this workflow execution, call the "noop" tool to provide a status message indicating completion or that no actions were needed. - - - - The following GitHub context information is available for this workflow: - {{#if __GH_AW_GITHUB_ACTOR__ }} - - **actor**: __GH_AW_GITHUB_ACTOR__ - {{/if}} - {{#if __GH_AW_GITHUB_REPOSITORY__ }} - - **repository**: __GH_AW_GITHUB_REPOSITORY__ - {{/if}} - {{#if __GH_AW_GITHUB_WORKSPACE__ }} - - **workspace**: __GH_AW_GITHUB_WORKSPACE__ - {{/if}} - {{#if __GH_AW_GITHUB_EVENT_ISSUE_NUMBER__ }} - - **issue-number**: #__GH_AW_GITHUB_EVENT_ISSUE_NUMBER__ - {{/if}} - {{#if __GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER__ }} - - **discussion-number**: #__GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER__ - {{/if}} - {{#if __GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER__ }} - - **pull-request-number**: #__GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER__ - {{/if}} - {{#if __GH_AW_GITHUB_EVENT_COMMENT_ID__ }} - - **comment-id**: __GH_AW_GITHUB_EVENT_COMMENT_ID__ - {{/if}} - {{#if __GH_AW_GITHUB_RUN_ID__ }} - - **workflow-run-id**: __GH_AW_GITHUB_RUN_ID__ - {{/if}} - - - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mcp-pagination.md}} - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/gh.md}} - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mcp/tavily.md}} - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/github-queries-safe-input.md}} - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/go-make.md}} - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/github-mcp-app.md}} - GH_AW_PROMPT_EOF - cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/smoke-claude.md}} - GH_AW_PROMPT_EOF - - name: Interpolate variables and render templates - uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 - env: - GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt - GH_AW_GITHUB_REPOSITORY: ${{ github.repository }} - GH_AW_GITHUB_RUN_ID: ${{ github.run_id }} - GH_AW_GITHUB_SERVER_URL: ${{ github.server_url }} - GH_AW_GITHUB_WORKSPACE: ${{ github.workspace }} - with: - script: | - const { setupGlobals } = require('/opt/gh-aw/actions/setup_globals.cjs'); - setupGlobals(core, github, context, exec, io); - const { main } = require('/opt/gh-aw/actions/interpolate_prompt.cjs'); - await main(); - - name: Substitute placeholders - uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 - env: - GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt - GH_AW_ALLOWED_EXTENSIONS: '' - GH_AW_CACHE_DESCRIPTION: '' - GH_AW_CACHE_DIR: '/tmp/gh-aw/cache-memory/' - GH_AW_GITHUB_ACTOR: ${{ github.actor }} - GH_AW_GITHUB_EVENT_COMMENT_ID: ${{ github.event.comment.id }} - GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER: ${{ github.event.discussion.number }} - GH_AW_GITHUB_EVENT_ISSUE_NUMBER: ${{ github.event.issue.number }} - GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER: ${{ github.event.pull_request.number }} - GH_AW_GITHUB_REPOSITORY: ${{ github.repository }} - GH_AW_GITHUB_RUN_ID: ${{ github.run_id }} - GH_AW_GITHUB_SERVER_URL: ${{ github.server_url }} - GH_AW_GITHUB_WORKSPACE: ${{ github.workspace }} - GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_ACTIVATED: ${{ needs.pre_activation.outputs.activated }} - GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_MATCHED_COMMAND: ${{ needs.pre_activation.outputs.matched_command }} - with: - script: | - const { setupGlobals } = require('/opt/gh-aw/actions/setup_globals.cjs'); - setupGlobals(core, github, context, exec, io); - - const substitutePlaceholders = require('/opt/gh-aw/actions/substitute_placeholders.cjs'); - - // Call the substitution function - return await substitutePlaceholders({ - file: process.env.GH_AW_PROMPT, - substitutions: { - GH_AW_ALLOWED_EXTENSIONS: process.env.GH_AW_ALLOWED_EXTENSIONS, - GH_AW_CACHE_DESCRIPTION: process.env.GH_AW_CACHE_DESCRIPTION, - GH_AW_CACHE_DIR: process.env.GH_AW_CACHE_DIR, - GH_AW_GITHUB_ACTOR: process.env.GH_AW_GITHUB_ACTOR, - GH_AW_GITHUB_EVENT_COMMENT_ID: process.env.GH_AW_GITHUB_EVENT_COMMENT_ID, - GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER: process.env.GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER, - GH_AW_GITHUB_EVENT_ISSUE_NUMBER: process.env.GH_AW_GITHUB_EVENT_ISSUE_NUMBER, - GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER: process.env.GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER, - GH_AW_GITHUB_REPOSITORY: process.env.GH_AW_GITHUB_REPOSITORY, - GH_AW_GITHUB_RUN_ID: process.env.GH_AW_GITHUB_RUN_ID, - GH_AW_GITHUB_SERVER_URL: process.env.GH_AW_GITHUB_SERVER_URL, - GH_AW_GITHUB_WORKSPACE: process.env.GH_AW_GITHUB_WORKSPACE, - GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_ACTIVATED: process.env.GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_ACTIVATED, - GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_MATCHED_COMMAND: process.env.GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_MATCHED_COMMAND - } - }); - - name: Validate prompt placeholders - env: - GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt - run: bash /opt/gh-aw/actions/validate_prompt_placeholders.sh - - name: Print prompt - env: - GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt - run: bash /opt/gh-aw/actions/print_prompt_summary.sh - - name: Upload prompt artifact - if: success() - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6 - with: - name: prompt - path: /tmp/gh-aw/aw-prompts/prompt.txt - retention-days: 1 agent: needs: activation @@ -1821,11 +1639,487 @@ jobs: script: | const { generateWorkflowOverview } = require('/opt/gh-aw/actions/generate_workflow_overview.cjs'); await generateWorkflowOverview(core); - - name: Download prompt artifact - uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6 + - name: Create prompt with built-in context + env: + GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt + GH_AW_SAFE_OUTPUTS: ${{ env.GH_AW_SAFE_OUTPUTS }} + GH_AW_GITHUB_ACTOR: ${{ github.actor }} + GH_AW_GITHUB_EVENT_COMMENT_ID: ${{ github.event.comment.id }} + GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER: ${{ github.event.discussion.number }} + GH_AW_GITHUB_EVENT_ISSUE_NUMBER: ${{ github.event.issue.number }} + GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER: ${{ github.event.pull_request.number }} + GH_AW_GITHUB_REPOSITORY: ${{ github.repository }} + GH_AW_GITHUB_RUN_ID: ${{ github.run_id }} + GH_AW_GITHUB_SERVER_URL: ${{ github.server_url }} + GH_AW_GITHUB_WORKSPACE: ${{ github.workspace }} + run: | + bash /opt/gh-aw/actions/create_prompt_first.sh + cat << 'GH_AW_PROMPT_EOF' > "$GH_AW_PROMPT" + + GH_AW_PROMPT_EOF + cat "/opt/gh-aw/prompts/xpia.md" >> "$GH_AW_PROMPT" + cat "/opt/gh-aw/prompts/temp_folder_prompt.md" >> "$GH_AW_PROMPT" + cat "/opt/gh-aw/prompts/markdown.md" >> "$GH_AW_PROMPT" + cat "/opt/gh-aw/prompts/playwright_prompt.md" >> "$GH_AW_PROMPT" + cat "/opt/gh-aw/prompts/cache_memory_prompt.md" >> "$GH_AW_PROMPT" + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + + GitHub API Access Instructions + + The gh CLI is NOT authenticated. Do NOT use gh commands for GitHub operations. + + + To create or modify GitHub resources (issues, discussions, pull requests, etc.), you MUST call the appropriate safe output tool. Simply writing content will NOT work - the workflow requires actual tool calls. + + Temporary IDs: Some safe output tools support a temporary ID field (usually named temporary_id) so you can reference newly-created items elsewhere in the SAME agent output (for example, using #aw_abc1 in a later body). + + **IMPORTANT - temporary_id format rules:** + - If you DON'T need to reference the item later, OMIT the temporary_id field entirely (it will be auto-generated if needed) + - If you DO need cross-references/chaining, you MUST match this EXACT validation regex: /^aw_[A-Za-z0-9]{3,8}$/i + - Format: aw_ prefix followed by 3 to 8 alphanumeric characters (A-Z, a-z, 0-9, case-insensitive) + - Valid alphanumeric characters: ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789 + - INVALID examples: aw_ab (too short), aw_123456789 (too long), aw_test-id (contains hyphen), aw_id_123 (contains underscore) + - VALID examples: aw_abc, aw_abc1, aw_Test123, aw_A1B2C3D4, aw_12345678 + - To generate valid IDs: use 3-8 random alphanumeric characters or omit the field to let the system auto-generate + + Do NOT invent other aw_* formats — downstream steps will reject them with validation errors matching against /^aw_[A-Za-z0-9]{3,8}$/i. + + Discover available tools from the safeoutputs MCP server. + + **Critical**: Tool calls write structured data that downstream jobs process. Without tool calls, follow-up actions will be skipped. + + **Note**: If you made no other safe output tool calls during this workflow execution, call the "noop" tool to provide a status message indicating completion or that no actions were needed. + + + + The following GitHub context information is available for this workflow: + {{#if __GH_AW_GITHUB_ACTOR__ }} + - **actor**: __GH_AW_GITHUB_ACTOR__ + {{/if}} + {{#if __GH_AW_GITHUB_REPOSITORY__ }} + - **repository**: __GH_AW_GITHUB_REPOSITORY__ + {{/if}} + {{#if __GH_AW_GITHUB_WORKSPACE__ }} + - **workspace**: __GH_AW_GITHUB_WORKSPACE__ + {{/if}} + {{#if __GH_AW_GITHUB_EVENT_ISSUE_NUMBER__ }} + - **issue-number**: #__GH_AW_GITHUB_EVENT_ISSUE_NUMBER__ + {{/if}} + {{#if __GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER__ }} + - **discussion-number**: #__GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER__ + {{/if}} + {{#if __GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER__ }} + - **pull-request-number**: #__GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER__ + {{/if}} + {{#if __GH_AW_GITHUB_EVENT_COMMENT_ID__ }} + - **comment-id**: __GH_AW_GITHUB_EVENT_COMMENT_ID__ + {{/if}} + {{#if __GH_AW_GITHUB_RUN_ID__ }} + - **workflow-run-id**: __GH_AW_GITHUB_RUN_ID__ + {{/if}} + + + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + ## MCP Response Size Limits + + MCP tool responses have a **25,000 token limit**. When GitHub API responses exceed this limit, workflows must retry with pagination parameters, wasting turns and tokens. + + ### Common Scenarios + + **Problem**: Fetching large result sets without pagination + - `list_pull_requests` with many PRs (75,897 tokens in one case) + - `pull_request_read` with large diff/comments (31,675 tokens observed) + - `search_issues`, `search_code` with many results + + **Solution**: Use proactive pagination to stay under token limits + + ### Pagination Best Practices + + #### 1. Use `perPage` Parameter + + Limit results per request to prevent oversized responses: + + ```bash + # Good: Fetch PRs in small batches + list_pull_requests --perPage 10 + + # Good: Get issue with limited comments + issue_read --method get_comments --perPage 20 + + # Bad: Default pagination may return too much data + list_pull_requests # May exceed 25k tokens + ``` + + #### 2. Common `perPage` Values + + - **10-20**: For detailed items (PRs with diffs, issues with comments) + - **50-100**: For simpler list operations (commits, branches, labels) + - **1-5**: For exploratory queries or schema discovery + + #### 3. Handle Pagination Loops + + When you need all results: + + ```bash + # Step 1: Fetch first page + result=$(list_pull_requests --perPage 20 --page 1) + + # Step 2: Check if more pages exist + # Most list operations return metadata about total count or next page + + # Step 3: Fetch subsequent pages if needed + result=$(list_pull_requests --perPage 20 --page 2) + ``` + + ### Tool-Specific Guidance + + #### Pull Requests + + ```bash + # Fetch recent PRs in small batches + list_pull_requests --state all --perPage 10 --sort updated --direction desc + + # Get PR details without full diff/comments + pull_request_read --method get --pullNumber 123 + + # Get PR files separately if needed + pull_request_read --method get_files --pullNumber 123 --perPage 30 + ``` + + #### Issues + + ```bash + # List issues with pagination + list_issues --perPage 20 --page 1 + + # Get issue comments in batches + issue_read --method get_comments --issue_number 123 --perPage 20 + ``` + + #### Code Search + + ```bash + # Search with limited results + search_code --query "function language:go" --perPage 10 + ``` + + ### Error Messages to Watch For + + If you see these errors, add pagination: + + - `MCP tool "list_pull_requests" response (75897 tokens) exceeds maximum allowed tokens (25000)` + - `MCP tool "pull_request_read" response (31675 tokens) exceeds maximum allowed tokens (25000)` + - `Response too large for tool [tool_name]` + + ### Performance Tips + + 1. **Start small**: Use `perPage: 10` initially, increase if needed + 2. **Fetch incrementally**: Get overview first, then details for specific items + 3. **Avoid wildcards**: Don't fetch all data when you need specific items + 4. **Use filters**: Combine `perPage` with state/label/date filters to reduce results + + ### Example Workflow Pattern + + ```markdown + # Analyze Recent Pull Requests + + 1. Fetch 10 most recent PRs (stay under token limit) + 2. For each PR, get summary without full diff + 3. If detailed analysis needed, fetch files for specific PR separately + 4. Process results incrementally rather than loading everything at once + ``` + + This proactive approach eliminates retry loops and reduces token consumption. + + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + **IMPORTANT**: Always use the `safeinputs-gh` tool for GitHub CLI commands instead of running `gh` directly via bash. The `safeinputs-gh` tool has proper authentication configured with `GITHUB_TOKEN`, while bash commands do not have GitHub CLI authentication by default. + + **Correct**: + ``` + Use the safeinputs-gh tool with args: "pr list --limit 5" + Use the safeinputs-gh tool with args: "issue view 123" + ``` + + **Incorrect**: + ``` + Use the gh safe-input tool with args: "pr list --limit 5" ❌ (Wrong tool name - use safeinputs-gh) + Run: gh pr list --limit 5 ❌ (No authentication in bash) + Execute bash: gh issue view 123 ❌ (No authentication in bash) + ``` + + + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + **IMPORTANT**: Always use the `safeinputs-go` and `safeinputs-make` tools for Go and Make commands instead of running them directly via bash. These safe-input tools provide consistent execution and proper logging. + + **Correct**: + ``` + Use the safeinputs-go tool with args: "test ./..." + Use the safeinputs-make tool with args: "build" + Use the safeinputs-make tool with args: "lint" + Use the safeinputs-make tool with args: "test-unit" + ``` + + **Incorrect**: + ``` + Use the go safe-input tool with args: "test ./..." ❌ (Wrong tool name - use safeinputs-go) + Run: go test ./... ❌ (Use safeinputs-go instead) + Execute bash: make build ❌ (Use safeinputs-make instead) + ``` + + + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + + GH_AW_PROMPT_EOF + cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" + # Smoke Test: Claude Engine Validation. + + **IMPORTANT: Keep all outputs extremely short and concise. Use single-line responses where possible. No verbose explanations.** + + ## Test Requirements + + 1. **GitHub MCP Testing**: Review the last 2 merged pull requests in __GH_AW_GITHUB_REPOSITORY__ + 2. **Safe Inputs GH CLI Testing**: Use the `safeinputs-gh` tool to query 2 pull requests from __GH_AW_GITHUB_REPOSITORY__ (use args: "pr list --repo __GH_AW_GITHUB_REPOSITORY__ --limit 2 --json number,title,author") + 3. **Serena MCP Testing**: + - Use the Serena MCP server tool `activate_project` to initialize the workspace at `__GH_AW_GITHUB_WORKSPACE__` and verify it succeeds (do NOT use bash to run go commands - use Serena's MCP tools or the safeinputs-go/safeinputs-make tools from the go-make shared workflow) + - After initialization, use the `find_symbol` tool to search for symbols (find which tool to call) and verify that at least 3 symbols are found in the results + 4. **Make Build Testing**: Use the `safeinputs-make` tool to build the project (use args: "build") and verify it succeeds + 5. **Playwright Testing**: Use the playwright tools to navigate to https://github.com and verify the page title contains "GitHub" (do NOT try to install playwright - use the provided MCP tools) + 6. **Tavily Web Search Testing**: Use the Tavily MCP server to perform a web search for "GitHub Agentic Workflows" and verify that results are returned with at least one item + 7. **File Writing Testing**: Create a test file `/tmp/gh-aw/agent/smoke-test-claude-__GH_AW_GITHUB_RUN_ID__.txt` with content "Smoke test passed for Claude at $(date)" (create the directory if it doesn't exist) + 8. **Bash Tool Testing**: Execute bash commands to verify file creation was successful (use `cat` to read the file back) + 9. **Discussion Interaction Testing**: + - Use the `github-discussion-query` safe-input tool with params: `limit=1, jq=".[0]"` to get the latest discussion from __GH_AW_GITHUB_REPOSITORY__ + - Extract the discussion number from the result (e.g., if the result is `{"number": 123, "title": "...", ...}`, extract 123) + - Use the `add_comment` tool with `discussion_number: ` to add a fun, comic-book style comment stating that the smoke test agent was here + 10. **Agentic Workflows MCP Testing**: + - Call the `agentic-workflows` MCP tool using the `status` method with workflow name `smoke-claude` to query workflow status + - If the tool returns an error or no results, mark this test as ❌ and note "Tool unavailable or workflow not found" but continue to the Output section + - If the tool succeeds, extract key information from the response: total runs, success/failure counts, last run timestamp + - Write a summary of the results to `/tmp/gh-aw/agent/smoke-claude-status-__GH_AW_GITHUB_RUN_ID__.txt` (create directory if needed) + - Use bash to verify the file was created and display its contents + + ## PR Review Safe Outputs Testing + + **IMPORTANT**: The following tests require an open pull request. First, use the GitHub MCP tool to find an open PR in __GH_AW_GITHUB_REPOSITORY__ (or use the triggering PR if this is a pull_request event). Store the PR number for use in subsequent tests. + + 11. **Update PR Testing**: Use the `update_pull_request` tool to update the PR's body by appending a test message: "✨ PR Review Safe Output Test - Run __GH_AW_GITHUB_RUN_ID__" + - Use `pr_number: ` to target the open PR + - Use `operation: "append"` and `body: "\n\n---\n✨ PR Review Safe Output Test - Run __GH_AW_GITHUB_RUN_ID__"` + - Verify the tool call succeeds + + 12. **PR Review Comment Testing**: Use the `create_pull_request_review_comment` tool to add review comments on the PR + - Find a file in the PR's diff (use GitHub MCP to get PR files) + - Add at least 2 review comments on different lines with constructive feedback + - Use `pr_number: `, `path: ""`, `line: `, and `body: ""` + - Verify the tool calls succeed + + 13. **Submit PR Review Testing**: Use the `submit_pull_request_review` tool to submit a consolidated review + - Use `pr_number: `, `event: "COMMENT"`, and `body: "💥 Automated smoke test review - all systems nominal!"` + - Verify the review is submitted successfully + - Note: This will bundle all review comments from test #12 + + 14. **Resolve Review Thread Testing**: + - Use the GitHub MCP tool to list review threads on the PR + - If any threads exist, use the `resolve_pull_request_review_thread` tool to resolve one thread + - Use `thread_id: ""` from an existing thread + - If no threads exist, mark this test as ⚠️ (skipped - no threads to resolve) + + 15. **Add Reviewer Testing**: Use the `add_reviewer` tool to add a reviewer to the PR + - Use `pr_number: ` and `reviewers: ["copilot"]` (or another valid reviewer) + - Verify the tool call succeeds + - Note: May fail if reviewer is already assigned or doesn't have access + + 16. **Push to PR Branch Testing**: + - Create a test file at `/tmp/test-pr-push-__GH_AW_GITHUB_RUN_ID__.txt` with content "Test file for PR push" + - Use git commands to check if we're on the PR branch + - Use the `push_to_pull_request_branch` tool to push this change + - Use `pr_number: ` and `commit_message: "test: Add smoke test file"` + - Verify the push succeeds + - Note: This test may be skipped if not on a PR branch or if the PR is from a fork + + 17. **Close PR Testing** (CONDITIONAL - only if a test PR exists): + - If you can identify a test/bot PR that can be safely closed, use the `close_pull_request` tool + - Use `pr_number: ` and `comment: "Closing as part of smoke test - Run __GH_AW_GITHUB_RUN_ID__"` + - If no suitable test PR exists, mark this test as ⚠️ (skipped - no safe PR to close) + - **DO NOT close the triggering PR or any important PRs** + + ## Output + + **CRITICAL: You MUST create an issue regardless of test results - this is a required safe output.** + + 1. **ALWAYS create an issue** with a summary of the smoke test run: + - Title: "Smoke Test: Claude - __GH_AW_GITHUB_RUN_ID__" + - Body should include: + - Test results (✅ for pass, ❌ for fail, ⚠️ for skipped) for each test (including PR review tests #11-17) + - Overall status: PASS (all passed), PARTIAL (some skipped), or FAIL (any failed) + - Run URL: __GH_AW_GITHUB_SERVER_URL__/__GH_AW_GITHUB_REPOSITORY__/actions/runs/__GH_AW_GITHUB_RUN_ID__ + - Timestamp + - Note which PR was used for PR review testing (if applicable) + - If ANY test fails, include error details in the issue body + - This issue MUST be created before any other safe output operations + + 2. **Only if this workflow was triggered by a pull_request event**: Use the `add_comment` tool to add a **very brief** comment (max 5-10 lines) to the triggering pull request (omit the `item_number` parameter to auto-target the triggering PR) with: + - Test results for core tests #1-10 (✅ or ❌) + - Test results for PR review tests #11-17 (✅, ❌, or ⚠️) + - Overall status: PASS, PARTIAL, or FAIL + + 3. Use the `add_comment` tool with `item_number` set to the discussion number you extracted in step 9 to add a **fun comic-book style comment** to that discussion - be playful and use comic-book language like "💥 WHOOSH!" + - If step 9 failed to extract a discussion number, skip this step + + If all non-skipped tests pass, use the `add_labels` tool to add the label `smoke-claude` to the pull request (omit the `item_number` parameter to auto-target the triggering PR if this workflow was triggered by a pull_request event). + + GH_AW_PROMPT_EOF + - name: Interpolate variables and render templates + uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 + env: + GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt + GH_AW_GITHUB_REPOSITORY: ${{ github.repository }} + GH_AW_GITHUB_RUN_ID: ${{ github.run_id }} + GH_AW_GITHUB_SERVER_URL: ${{ github.server_url }} + GH_AW_GITHUB_WORKSPACE: ${{ github.workspace }} + with: + script: | + const { setupGlobals } = require('/opt/gh-aw/actions/setup_globals.cjs'); + setupGlobals(core, github, context, exec, io); + const { main } = require('/opt/gh-aw/actions/interpolate_prompt.cjs'); + await main(); + - name: Substitute placeholders + uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 + env: + GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt + GH_AW_ALLOWED_EXTENSIONS: '' + GH_AW_CACHE_DESCRIPTION: '' + GH_AW_CACHE_DIR: '/tmp/gh-aw/cache-memory/' + GH_AW_GITHUB_ACTOR: ${{ github.actor }} + GH_AW_GITHUB_EVENT_COMMENT_ID: ${{ github.event.comment.id }} + GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER: ${{ github.event.discussion.number }} + GH_AW_GITHUB_EVENT_ISSUE_NUMBER: ${{ github.event.issue.number }} + GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER: ${{ github.event.pull_request.number }} + GH_AW_GITHUB_REPOSITORY: ${{ github.repository }} + GH_AW_GITHUB_RUN_ID: ${{ github.run_id }} + GH_AW_GITHUB_SERVER_URL: ${{ github.server_url }} + GH_AW_GITHUB_WORKSPACE: ${{ github.workspace }} + GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_ACTIVATED: ${{ needs.pre_activation.outputs.activated }} + GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_MATCHED_COMMAND: ${{ needs.pre_activation.outputs.matched_command }} with: - name: prompt - path: /tmp/gh-aw/aw-prompts + script: | + const { setupGlobals } = require('/opt/gh-aw/actions/setup_globals.cjs'); + setupGlobals(core, github, context, exec, io); + + const substitutePlaceholders = require('/opt/gh-aw/actions/substitute_placeholders.cjs'); + + // Call the substitution function + return await substitutePlaceholders({ + file: process.env.GH_AW_PROMPT, + substitutions: { + GH_AW_ALLOWED_EXTENSIONS: process.env.GH_AW_ALLOWED_EXTENSIONS, + GH_AW_CACHE_DESCRIPTION: process.env.GH_AW_CACHE_DESCRIPTION, + GH_AW_CACHE_DIR: process.env.GH_AW_CACHE_DIR, + GH_AW_GITHUB_ACTOR: process.env.GH_AW_GITHUB_ACTOR, + GH_AW_GITHUB_EVENT_COMMENT_ID: process.env.GH_AW_GITHUB_EVENT_COMMENT_ID, + GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER: process.env.GH_AW_GITHUB_EVENT_DISCUSSION_NUMBER, + GH_AW_GITHUB_EVENT_ISSUE_NUMBER: process.env.GH_AW_GITHUB_EVENT_ISSUE_NUMBER, + GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER: process.env.GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER, + GH_AW_GITHUB_REPOSITORY: process.env.GH_AW_GITHUB_REPOSITORY, + GH_AW_GITHUB_RUN_ID: process.env.GH_AW_GITHUB_RUN_ID, + GH_AW_GITHUB_SERVER_URL: process.env.GH_AW_GITHUB_SERVER_URL, + GH_AW_GITHUB_WORKSPACE: process.env.GH_AW_GITHUB_WORKSPACE, + GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_ACTIVATED: process.env.GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_ACTIVATED, + GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_MATCHED_COMMAND: process.env.GH_AW_NEEDS_PRE_ACTIVATION_OUTPUTS_MATCHED_COMMAND + } + }); + - name: Validate prompt placeholders + env: + GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt + run: bash /opt/gh-aw/actions/validate_prompt_placeholders.sh + - name: Print prompt + env: + GH_AW_PROMPT: /tmp/gh-aw/aw-prompts/prompt.txt + run: bash /opt/gh-aw/actions/print_prompt_summary.sh - name: Clean git credentials run: bash /opt/gh-aw/actions/clean_git_credentials.sh - name: Execute Claude Code CLI diff --git a/.github/workflows/smoke-claude.md b/.github/workflows/smoke-claude.md index 798617ddf20..3d48c0ee63a 100644 --- a/.github/workflows/smoke-claude.md +++ b/.github/workflows/smoke-claude.md @@ -20,6 +20,7 @@ engine: id: claude max-turns: 100 strict: true +inline-imports: true imports: - shared/mcp-pagination.md - shared/gh.md diff --git a/.github/workflows/smoke-codex.lock.yml b/.github/workflows/smoke-codex.lock.yml index a92620b3608..6997ff69ad3 100644 --- a/.github/workflows/smoke-codex.lock.yml +++ b/.github/workflows/smoke-codex.lock.yml @@ -211,13 +211,126 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/gh.md}} + **IMPORTANT**: Always use the `safeinputs-gh` tool for GitHub CLI commands instead of running `gh` directly via bash. The `safeinputs-gh` tool has proper authentication configured with `GITHUB_TOKEN`, while bash commands do not have GitHub CLI authentication by default. + + **Correct**: + ``` + Use the safeinputs-gh tool with args: "pr list --limit 5" + Use the safeinputs-gh tool with args: "issue view 123" + ``` + + **Incorrect**: + ``` + Use the gh safe-input tool with args: "pr list --limit 5" ❌ (Wrong tool name - use safeinputs-gh) + Run: gh pr list --limit 5 ❌ (No authentication in bash) + Execute bash: gh issue view 123 ❌ (No authentication in bash) + ``` + + GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/smoke-codex.md}} + # Smoke Test: Codex Engine Validation + + **CRITICAL EFFICIENCY REQUIREMENTS:** + - Keep ALL outputs extremely short and concise. Use single-line responses. + - NO verbose explanations or unnecessary context. + - Minimize file reading - only read what is absolutely necessary for the task. + - Use targeted, specific queries - avoid broad searches or large data retrievals. + + ## Test Requirements + + 1. **GitHub MCP Testing**: Use GitHub MCP tools to fetch details of exactly 2 merged pull requests from __GH_AW_GITHUB_REPOSITORY__ (title and number only, no descriptions) + 2. **Serena MCP Testing**: + - Use the Serena MCP server tool `activate_project` to initialize the workspace at `__GH_AW_GITHUB_WORKSPACE__` and verify it succeeds (do NOT use bash to run go commands) + - After initialization, use the `find_symbol` tool to search for symbols and verify that at least 3 symbols are found in the results + 3. **Playwright Testing**: Use the playwright tools to navigate to https://github.com and verify the page title contains "GitHub" (do NOT try to install playwright - use the provided MCP tools) + 4. **File Writing Testing**: Create a test file `/tmp/gh-aw/agent/smoke-test-codex-__GH_AW_GITHUB_RUN_ID__.txt` with content "Smoke test passed for Codex at $(date)" (create the directory if it doesn't exist) + 5. **Bash Tool Testing**: Execute bash commands to verify file creation was successful (use `cat` to read the file back) + 6. **Build gh-aw**: Run `GOCACHE=/tmp/go-cache GOMODCACHE=/tmp/go-mod make build` to verify the agent can successfully build the gh-aw project (both caches must be set to /tmp because the default cache locations are not writable). If the command fails, mark this test as ❌ and report the failure. + + ## Output + + Add a **very brief** comment (max 5-10 lines) to the current pull request with: + - PR titles only (no descriptions) + - ✅ or ❌ for each test result + - Overall status: PASS or FAIL + + If all tests pass: + - Use the `add_labels` safe-output tool to add the label `smoke-codex` to the pull request + - Use the `remove_labels` safe-output tool to remove the label `smoke` from the pull request + - Use the `unassign_from_user` safe-output tool to unassign the user `githubactionagent` from the pull request (this is a fictitious user used for testing) + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/smoke-copilot.lock.yml b/.github/workflows/smoke-copilot.lock.yml index f86c43fdff0..d367a2c5cec 100644 --- a/.github/workflows/smoke-copilot.lock.yml +++ b/.github/workflows/smoke-copilot.lock.yml @@ -213,16 +213,146 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/gh.md}} + **IMPORTANT**: Always use the `safeinputs-gh` tool for GitHub CLI commands instead of running `gh` directly via bash. The `safeinputs-gh` tool has proper authentication configured with `GITHUB_TOKEN`, while bash commands do not have GitHub CLI authentication by default. + + **Correct**: + ``` + Use the safeinputs-gh tool with args: "pr list --limit 5" + Use the safeinputs-gh tool with args: "issue view 123" + ``` + + **Incorrect**: + ``` + Use the gh safe-input tool with args: "pr list --limit 5" ❌ (Wrong tool name - use safeinputs-gh) + Run: gh pr list --limit 5 ❌ (No authentication in bash) + Execute bash: gh issue view 123 ❌ (No authentication in bash) + ``` + + GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/github-queries-safe-input.md}} + GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/smoke-copilot.md}} + # Smoke Test: Copilot Engine Validation + + **IMPORTANT: Keep all outputs extremely short and concise. Use single-line responses where possible. No verbose explanations.** + + ## Test Requirements + + 1. **GitHub MCP Testing**: Review the last 2 merged pull requests in __GH_AW_GITHUB_REPOSITORY__ + 2. **Safe Inputs GH CLI Testing**: Use the `safeinputs-gh` tool to query 2 pull requests from __GH_AW_GITHUB_REPOSITORY__ (use args: "pr list --repo __GH_AW_GITHUB_REPOSITORY__ --limit 2 --json number,title,author") + 3. **Serena MCP Testing**: + - Use the Serena MCP server tool `activate_project` to initialize the workspace at `__GH_AW_GITHUB_WORKSPACE__` and verify it succeeds (do NOT use bash to run go commands - use Serena's MCP tools) + - After initialization, use the `find_symbol` tool to search for symbols (find which tool to call) and verify that at least 3 symbols are found in the results + 4. **Playwright Testing**: Use the playwright tools to navigate to and verify the page title contains "GitHub" (do NOT try to install playwright - use the provided MCP tools) + 5. **File Writing Testing**: Create a test file `/tmp/gh-aw/agent/smoke-test-copilot-__GH_AW_GITHUB_RUN_ID__.txt` with content "Smoke test passed for Copilot at $(date)" (create the directory if it doesn't exist) + 6. **Bash Tool Testing**: Execute bash commands to verify file creation was successful (use `cat` to read the file back) + 7. **Discussion Interaction Testing**: + - Use the `github-discussion-query` safe-input tool with params: `limit=1, jq=".[0]"` to get the latest discussion from __GH_AW_GITHUB_REPOSITORY__ + - Extract the discussion number from the result (e.g., if the result is `{"number": 123, "title": "...", ...}`, extract 123) + - Use the `add_comment` tool with `discussion_number: ` to add a fun, playful comment stating that the smoke test agent was here + 8. **Build gh-aw**: Run `GOCACHE=/tmp/go-cache GOMODCACHE=/tmp/go-mod make build` to verify the agent can successfully build the gh-aw project (both caches must be set to /tmp because the default cache locations are not writable). If the command fails, mark this test as ❌ and report the failure. + 9. **Discussion Creation Testing**: Use the `create_discussion` safe-output tool to create a discussion in the announcements category titled "copilot was here" with the label "ai-generated" + 10. **Workflow Dispatch Testing**: Use the `dispatch_workflow` safe output tool to trigger the `haiku-printer` workflow with a haiku as the message input. Create an original, creative haiku about software testing or automation. + 11. **PR Review Testing**: Review the diff of the current pull request. Leave 1-2 inline `create_pull_request_review_comment` comments on specific lines, then call `submit_pull_request_review` with a brief body summarizing your review and event `COMMENT`. + + ## Output + + 1. **Create an issue** with a summary of the smoke test run: + - Title: "Smoke Test: Copilot - __GH_AW_GITHUB_RUN_ID__" + - Body should include: + - Test results (✅ or ❌ for each test) + - Overall status: PASS or FAIL + - Run URL: __GH_AW_GITHUB_SERVER_URL__/__GH_AW_GITHUB_REPOSITORY__/actions/runs/__GH_AW_GITHUB_RUN_ID__ + - Timestamp + - Pull request author and assignees + + 2. Add a **very brief** comment (max 5-10 lines) to the current pull request with: + - PR titles only (no descriptions) + - ✅ or ❌ for each test result + - Overall status: PASS or FAIL + - Mention the pull request author and any assignees + + 3. Use the `add_comment` tool to add a **fun and creative comment** to the latest discussion (using the `discussion_number` you extracted in step 7) - be playful and entertaining in your comment + + 4. Use the `send_slack_message` tool to send a brief summary message (e.g., "Smoke test __GH_AW_GITHUB_RUN_ID__: All tests passed! ✅") + + If all tests pass: + - Use the `add_labels` safe-output tool to add the label `smoke-copilot` to the pull request + - Use the `remove_labels` safe-output tool to remove the label `smoke` from the pull request + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/smoke-project.lock.yml b/.github/workflows/smoke-project.lock.yml index eca71a14f77..9b146de23b7 100644 --- a/.github/workflows/smoke-project.lock.yml +++ b/.github/workflows/smoke-project.lock.yml @@ -202,7 +202,83 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/smoke-project.md}} + # Smoke Test: Project Operations Validation + + Default status field for any created items: "Todo". + Do the following operations EXACTLY in this order. + Do not re-create draft items but use their returned temporary-ids for the update operations. + + ## Test Requirements + + 1. **Add items**: Create items in the project using different content types: + + a. **Draft Issue Creation**: + Call `update_project` with: + - `project`: "https://github.com/orgs/github/projects/24068" + - `content_type`: "draft_issue" + - `draft_title`: "Test *draft issue* for `smoke-project`" + - `draft_body`: "Test draft issue for smoke test validation" + - `temporary_id`: "draft-1" + - `fields`: `{"Status": "Todo", "Priority": "High"}` + + b. **PR Creation**: + Call `update_project` with: + - `project`: "https://github.com/orgs/github/projects/24068" + - `content_type`: "pull_request" + - `content_number`: 14477 + - `fields`: `{"Status": "Todo", "Priority": "High"}` + + c. **Issue Creation**: + Call `update_project` with: + - `project`: "https://github.com/orgs/github/projects/24068" + - `content_type`: "issue" + - `content_number`: 14478 + - `fields`: `{"Status": "Todo", "Priority": "High"}` + + 2. **Update items**: Update the created items to validate field updates: + + a. **Draft Issue Update**: + Call `update_project` with the draft issue you created (use the returned temporary-id) to change status to "In Progress": + - `project`: "https://github.com/orgs/github/projects/24068" + - `content_type`: "draft_issue" + - `draft_issue_id`: The temporary-id returned from step 1a (e.g., "aw_abc123") + - `fields`: `{"Status": "In Progress"}` + + b. **Pull Request Update**: + Call `update_project` to update the pull request item to change status to "In Progress": + - `project`: "https://github.com/orgs/github/projects/24068" + - `content_type`: "pull_request" + - `content_number`: 14477 + - `fields`: `{"Status": "In Progress"}` + + c. **Issue Update**: + Call `update_project` to update the issue item to change status to "In Progress": + - `project`: "https://github.com/orgs/github/projects/24068" + - `content_type`: "issue" + - `content_number`: 14478 + - `fields`: `{"Status": "In Progress"}` + + 3. **Project Status Update**: + + a. Create a markdown report summarizing all the operations performed. Keep it short but make it clear what worked and what didn't: + Example `body`: + ```md + ## Run Summary + - Run: [{workflow_name}]({run_url}) + - List of operations performed: + - [x] Created *draft issue* update with status "Todo" + - [ ] ... + ``` + + b. Call `create_project_status_update` with the report from step 3a. + Required fields: + - `project`: "https://github.com/orgs/github/projects/24068" + - `body`: The markdown report created in step 3a + Optional fields: + - `status`: "ON_TRACK" | "AT_RISK" | "OFF_TRACK" | "COMPLETE" | "INACTIVE" + - `start_date`: Optional date in "YYYY-MM-DD" format (if you want to represent the run start) + - `target_date`: Optional date in "YYYY-MM-DD" format (if you want to represent the run target/end) + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/smoke-temporary-id.lock.yml b/.github/workflows/smoke-temporary-id.lock.yml index 3c8bdd109d6..96c4b7a0768 100644 --- a/.github/workflows/smoke-temporary-id.lock.yml +++ b/.github/workflows/smoke-temporary-id.lock.yml @@ -202,7 +202,78 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/smoke-temporary-id.md}} + # Smoke Test: Temporary ID Functionality + + This workflow validates that temporary IDs work correctly for: + 1. Creating parent-child issue hierarchies + 2. Cross-referencing issues in bodies + 3. Different temporary ID formats (3-8 alphanumeric characters) + + **IMPORTANT**: Use the exact temporary ID format `aw_` followed by 3-8 alphanumeric characters (A-Za-z0-9). + + ## Test 1: Create Parent Issue with Temporary ID + + Create a parent tracking issue with a temporary ID. Use a 6-character alphanumeric ID. + + ```json + { + "type": "create_issue", + "temporary_id": "aw_test01", + "title": "Test Parent: Temporary ID Validation", + "body": "This is a parent issue created to test temporary ID functionality.\n\nSub-issues:\n- #aw_test02\n- #aw_test03\n\nAll references should be replaced with actual issue numbers." + } + ``` + + ## Test 2: Create Sub-Issues with Cross-References + + Create two sub-issues that reference each other and the parent using temporary IDs. + + ### Sub-Issue 1 + + ```json + { + "type": "create_issue", + "temporary_id": "aw_test02", + "parent": "aw_test01", + "title": "Sub-Issue 1: Test Temporary ID References", + "body": "This is sub-issue 1.\n\nParent: #aw_test01\nRelated: #aw_test03\n\nAll temporary IDs should be resolved to actual issue numbers." + } + ``` + + ### Sub-Issue 2 + + ```json + { + "type": "create_issue", + "temporary_id": "aw_test03", + "parent": "aw_test01", + "title": "Sub-Issue 2: Test Different ID Length", + "body": "This is sub-issue 2 with an 8-character temporary ID.\n\nParent: #aw_test01\nRelated: #aw_test02\n\nTesting that longer temporary IDs (8 chars) work correctly." + } + ``` + + ## Test 3: Verify Link Structure + + After the issues are created, verify they are properly linked by adding a comment to the parent issue summarizing the test results. + + ```json + { + "type": "add_comment", + "issue_number": "aw_test01", + "body": "## Test Results\n\n✅ Parent issue created with temporary ID `aw_test01`\n✅ Sub-issue 1 created with temporary ID `aw_test02` and linked to parent\n✅ Sub-issue 2 created with temporary ID `aw_test03` and linked to parent\n✅ Cross-references resolved correctly\n\n**Validation**: Check that:\n1. All temporary ID references (#aw_*) in issue bodies are replaced with actual issue numbers (#123)\n2. Sub-issues show parent relationship in GitHub UI\n3. Parent issue shows sub-issues in task list\n\nTemporary ID format validated: `aw_[A-Za-z0-9]{3,8}`" + } + ``` + + ## Expected Outcome + + 1. Parent issue #aw_test01 created and assigned actual issue number (e.g., #1234) + 2. Sub-issues #aw_test02 and #aw_test03 created with actual issue numbers + 3. All references like `#aw_test01` replaced with actual numbers like `#1234` + 4. Sub-issues properly linked to parent with `parent` field + 5. Comment added to parent verifying the test results + + **Success Criteria**: All 3 issues created, all temporary ID references resolved, parent-child relationships established. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/smoke-test-tools.lock.yml b/.github/workflows/smoke-test-tools.lock.yml index e3af3d10d2a..a0d63156e0e 100644 --- a/.github/workflows/smoke-test-tools.lock.yml +++ b/.github/workflows/smoke-test-tools.lock.yml @@ -188,7 +188,77 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/smoke-test-tools.md}} + # Smoke Test: Agent Container Tools + + **Purpose:** Quick validation that common development tools are accessible in the agent container environment. + + **IMPORTANT:** Keep all outputs concise. Report each tool test with ✅ or ❌ status. + + ## Required Tool Tests + + Run each command and verify it produces valid output: + + 1. **Shell Tools:** + - `bash --version` - Verify Bash shell is available + - `sh --version` or `sh -c 'echo ok'` - Verify sh shell works + + 2. **Version Control:** + - `git --version` - Verify Git is available + + 3. **JSON/YAML Processing:** + - `jq --version` - Verify jq is available for JSON processing + - `yq --version` - Verify yq is available for YAML processing + + 4. **HTTP Tools:** + - `curl --version` - Verify curl is available for HTTP requests + + 5. **GitHub CLI:** + - `gh --version` - Verify GitHub CLI is available + + 6. **Programming Runtimes:** + - `node --version` - Verify Node.js runtime is available + - `python3 --version` - Verify Python 3 runtime is available + - `go version` - Verify Go runtime is available + - `java --version` - Verify Java runtime is available + - `dotnet --version` - Verify .NET runtime is available (C#) + + ## Output Requirements + + After running all tests, add a **concise comment** to the pull request (if triggered by PR) with: + + - Each tool name with ✅ (available) or ❌ (missing) status + - Total count: "X/12 tools available" + - Overall status: PASS (all tools found) or FAIL (any missing) + + Example output format: + ``` + ## Agent Container Tool Check + + | Tool | Status | Version | + |------|--------|---------| + | bash | ✅ | 5.2.x | + | sh | ✅ | available | + | git | ✅ | 2.x.x | + | jq | ✅ | 1.x | + | yq | ✅ | 4.x | + | curl | ✅ | 8.x | + | gh | ✅ | 2.x | + | node | ✅ | 20.x | + | python3 | ✅ | 3.x | + | go | ✅ | 1.24.x | + | java | ✅ | 21.x | + | dotnet | ✅ | 8.x | + + **Result:** 12/12 tools available ✅ + ``` + + ## Error Handling + + If any tool is missing: + 1. Report which tool(s) are unavailable + 2. Mark overall status as FAIL + 3. Include the error message from the failed version check + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/stale-repo-identifier.lock.yml b/.github/workflows/stale-repo-identifier.lock.yml index 2c8f830f397..3d9ef6f5219 100644 --- a/.github/workflows/stale-repo-identifier.lock.yml +++ b/.github/workflows/stale-repo-identifier.lock.yml @@ -183,19 +183,660 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/python-dataviz.md}} + # Python Data Visualization Guide + + Python scientific libraries have been installed and are ready for use. A temporary folder structure has been created at `/tmp/gh-aw/python/` for organizing scripts, data, and outputs. + + ## Installed Libraries + + - **NumPy**: Array processing and numerical operations + - **Pandas**: Data manipulation and analysis + - **Matplotlib**: Chart generation and plotting + - **Seaborn**: Statistical data visualization + - **SciPy**: Scientific computing utilities + + ## Directory Structure + + ``` + /tmp/gh-aw/python/ + ├── data/ # Store all data files here (CSV, JSON, etc.) + ├── charts/ # Generated chart images (PNG) + ├── artifacts/ # Additional output files + └── *.py # Python scripts + ``` + + ## Data Separation Requirement + + **CRITICAL**: Data must NEVER be inlined in Python code. Always store data in external files and load using pandas. + + ### ❌ PROHIBITED - Inline Data + ```python + # DO NOT do this + data = [10, 20, 30, 40, 50] + labels = ['A', 'B', 'C', 'D', 'E'] + ``` + + ### ✅ REQUIRED - External Data Files + ```python + # Always load data from external files + import pandas as pd + + # Load data from CSV + data = pd.read_csv('/tmp/gh-aw/python/data/data.csv') + + # Or from JSON + data = pd.read_json('/tmp/gh-aw/python/data/data.json') + ``` + + ## Chart Generation Best Practices + + ### High-Quality Chart Settings + + ```python + import matplotlib.pyplot as plt + import seaborn as sns + + # Set style for better aesthetics + sns.set_style("whitegrid") + sns.set_palette("husl") + + # Create figure with high DPI + fig, ax = plt.subplots(figsize=(10, 6), dpi=300) + + # Your plotting code here + # ... + + # Save with high quality + plt.savefig('/tmp/gh-aw/python/charts/chart.png', + dpi=300, + bbox_inches='tight', + facecolor='white', + edgecolor='none') + ``` + + ### Chart Quality Guidelines + + - **DPI**: Use 300 or higher for publication quality + - **Figure Size**: Standard is 10x6 inches (adjustable based on needs) + - **Labels**: Always include clear axis labels and titles + - **Legend**: Add legends when plotting multiple series + - **Grid**: Enable grid lines for easier reading + - **Colors**: Use colorblind-friendly palettes (seaborn defaults are good) + + ## Including Images in Reports + + When creating reports (issues, discussions, etc.), use the `upload asset` tool to make images URL-addressable and include them in markdown: + + ### Step 1: Generate and Upload Chart + ```python + # Generate your chart + plt.savefig('/tmp/gh-aw/python/charts/my_chart.png', dpi=300, bbox_inches='tight') + ``` + + ### Step 2: Upload as Asset + Use the `upload asset` tool to upload the chart file. The tool will return a GitHub raw content URL. + + ### Step 3: Include in Markdown Report + When creating your discussion or issue, include the image using markdown: + + ```markdown + ## Visualization Results + + ![Chart Description](https://raw.githubusercontent.com/owner/repo/assets/workflow-name/my_chart.png) + + The chart above shows... + ``` + + **Important**: Assets are published to an orphaned git branch and become URL-addressable after workflow completion. + + ## Cache Memory Integration + + The cache memory at `/tmp/gh-aw/cache-memory/` is available for storing reusable code: + + **Helper Functions to Cache:** + - Data loading utilities: `data_loader.py` + - Chart styling functions: `chart_utils.py` + - Common data transformations: `transforms.py` + + **Check Cache Before Creating:** + ```bash + # Check if helper exists in cache + if [ -f /tmp/gh-aw/cache-memory/data_loader.py ]; then + cp /tmp/gh-aw/cache-memory/data_loader.py /tmp/gh-aw/python/ + echo "Using cached data_loader.py" + fi + ``` + + **Save to Cache for Future Runs:** + ```bash + # Save useful helpers to cache + cp /tmp/gh-aw/python/data_loader.py /tmp/gh-aw/cache-memory/ + echo "Saved data_loader.py to cache for future runs" + ``` + + ## Complete Example Workflow + + ```python + #!/usr/bin/env python3 + """ + Example data visualization script + Generates a bar chart from external data + """ + import pandas as pd + import matplotlib.pyplot as plt + import seaborn as sns + + # Set style + sns.set_style("whitegrid") + sns.set_palette("husl") + + # Load data from external file (NEVER inline) + data = pd.read_csv('/tmp/gh-aw/python/data/data.csv') + + # Process data + summary = data.groupby('category')['value'].sum() + + # Create chart + fig, ax = plt.subplots(figsize=(10, 6), dpi=300) + summary.plot(kind='bar', ax=ax) + + # Customize + ax.set_title('Data Summary by Category', fontsize=16, fontweight='bold') + ax.set_xlabel('Category', fontsize=12) + ax.set_ylabel('Value', fontsize=12) + ax.grid(True, alpha=0.3) + + # Save chart + plt.savefig('/tmp/gh-aw/python/charts/chart.png', + dpi=300, + bbox_inches='tight', + facecolor='white') + + print("Chart saved to /tmp/gh-aw/python/charts/chart.png") + ``` + + ## Error Handling + + **Check File Existence:** + ```python + import os + + data_file = '/tmp/gh-aw/python/data/data.csv' + if not os.path.exists(data_file): + raise FileNotFoundError(f"Data file not found: {data_file}") + ``` + + **Validate Data:** + ```python + # Check for required columns + required_cols = ['category', 'value'] + missing = set(required_cols) - set(data.columns) + if missing: + raise ValueError(f"Missing columns: {missing}") + ``` + + ## Artifact Upload + + Charts and source files are automatically uploaded as artifacts: + + **Charts Artifact:** + - Name: `data-charts` + - Contents: PNG files from `/tmp/gh-aw/python/charts/` + - Retention: 30 days + + **Source and Data Artifact:** + - Name: `python-source-and-data` + - Contents: Python scripts and data files + - Retention: 30 days + + Both artifacts are uploaded with `if: always()` condition, ensuring they're available even if the workflow fails. + + ## Tips for Success + + 1. **Always Separate Data**: Store data in files, never inline in code + 2. **Use Cache Memory**: Store reusable helpers for faster execution + 3. **High Quality Charts**: Use DPI 300+ and proper sizing + 4. **Clear Documentation**: Add docstrings and comments + 5. **Error Handling**: Validate data and check file existence + 6. **Type Hints**: Use type annotations for better code quality + 7. **Seaborn Defaults**: Leverage seaborn for better aesthetics + 8. **Reproducibility**: Set random seeds when needed + + ## Common Data Sources + + Based on common use cases: + + **Repository Statistics:** + ```python + # Collect via GitHub API, save to data.csv + # Then load and visualize + data = pd.read_csv('/tmp/gh-aw/python/data/repo_stats.csv') + ``` + + **Workflow Metrics:** + ```python + # Collect via GitHub Actions API, save to data.json + data = pd.read_json('/tmp/gh-aw/python/data/workflow_metrics.json') + ``` + + **Sample Data Generation:** + ```python + # Generate with NumPy, save to file first + import numpy as np + data = np.random.randn(100, 2) + df = pd.DataFrame(data, columns=['x', 'y']) + df.to_csv('/tmp/gh-aw/python/data/sample_data.csv', index=False) + + # Then load it back (demonstrating the pattern) + data = pd.read_csv('/tmp/gh-aw/python/data/sample_data.csv') + ``` GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/jqschema.md}} + ## jqschema - JSON Schema Discovery + + A utility script is available at `/tmp/gh-aw/jqschema.sh` to help you discover the structure of complex JSON responses. + + ### Purpose + + Generate a compact structural schema (keys + types) from JSON input. This is particularly useful when: + - Analyzing tool outputs from GitHub search (search_code, search_issues, search_repositories) + - Exploring API responses with large payloads + - Understanding the structure of unfamiliar data without verbose output + - Planning queries before fetching full data + + ### Usage + + ```bash + # Analyze a file + cat data.json | /tmp/gh-aw/jqschema.sh + + # Analyze command output + echo '{"name": "test", "count": 42, "items": [{"id": 1}]}' | /tmp/gh-aw/jqschema.sh + + # Analyze GitHub search results + gh api search/repositories?q=language:go | /tmp/gh-aw/jqschema.sh + ``` + + ### How It Works + + The script transforms JSON data by: + 1. Replacing object values with their type names ("string", "number", "boolean", "null") + 2. Reducing arrays to their first element's structure (or empty array if empty) + 3. Recursively processing nested structures + 4. Outputting compact (minified) JSON + + ### Example + + **Input:** + ```json + { + "total_count": 1000, + "items": [ + {"login": "user1", "id": 123, "verified": true}, + {"login": "user2", "id": 456, "verified": false} + ] + } + ``` + + **Output:** + ```json + {"total_count":"number","items":[{"login":"string","id":"number","verified":"boolean"}]} + ``` + + ### Best Practices + + **Use this script when:** + - You need to understand the structure of tool outputs before requesting full data + - GitHub search tools return large datasets (use `perPage: 1` and pipe through schema minifier first) + - Exploring unfamiliar APIs or data structures + - Planning data extraction strategies + + **Example workflow for GitHub search tools:** + ```bash + # Step 1: Get schema with minimal data (fetch just 1 result) + # This helps understand the structure before requesting large datasets + echo '{}' | gh api search/repositories -f q="language:go" -f per_page=1 | /tmp/gh-aw/jqschema.sh + + # Output shows the schema: + # {"incomplete_results":"boolean","items":[{...}],"total_count":"number"} + + # Step 2: Review schema to understand available fields + + # Step 3: Request full data with confidence about structure + # Now you know what fields are available and can query efficiently + ``` + + **Using with GitHub MCP tools:** + When using tools like `search_code`, `search_issues`, or `search_repositories`, pipe the output through jqschema to discover available fields: + ```bash + # Save a minimal search result to a file + gh api search/code -f q="jq in:file language:bash" -f per_page=1 > /tmp/sample.json + + # Generate schema to understand structure + cat /tmp/sample.json | /tmp/gh-aw/jqschema.sh + + # Now you know which fields exist and can use them in your analysis + ``` GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/trending-charts-simple.md}} + # Python Environment Ready + + Libraries: NumPy, Pandas, Matplotlib, Seaborn, SciPy + Directories: `/tmp/gh-aw/python/{data,charts,artifacts}`, `/tmp/gh-aw/cache-memory/` + + ## Store Historical Data (JSON Lines) + + ```python + import json + from datetime import datetime + + # Append data point + with open('/tmp/gh-aw/cache-memory/trending//history.jsonl', 'a') as f: + f.write(json.dumps({"timestamp": datetime.now().isoformat(), "value": 42}) + '\n') + ``` + + ## Generate Charts + + ```python + import pandas as pd + import matplotlib.pyplot as plt + import seaborn as sns + + df = pd.read_json('history.jsonl', lines=True) + df['date'] = pd.to_datetime(df['timestamp']).dt.date + + sns.set_style("whitegrid") + fig, ax = plt.subplots(figsize=(12, 7), dpi=300) + df.groupby('date')['value'].mean().plot(ax=ax, marker='o') + ax.set_title('Trend', fontsize=16, fontweight='bold') + plt.xticks(rotation=45) + plt.tight_layout() + plt.savefig('/tmp/gh-aw/python/charts/trend.png', dpi=300, bbox_inches='tight') + ``` + + ## Best Practices + + - Use JSON Lines (`.jsonl`) for append-only storage + - Include ISO 8601 timestamps in all data points + - Implement 90-day retention: `df[df['timestamp'] >= cutoff_date]` + - Charts: 300 DPI, 12x7 inches, clear labels, seaborn style GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/stale-repo-identifier.md}} + # Stale Repository Identifier 🔍 + + You are an expert repository analyst that deeply investigates potentially stale repositories to determine if they are truly inactive and produces comprehensive activity reports. + + ## Mission + + Analyze repositories identified as potentially stale by the stale-repos tool and conduct deep research to: + 1. Verify that repositories are actually inactive + 2. Understand the repository's purpose and state + 3. Analyze recent activity patterns across commits, issues, and pull requests + 4. Assess whether the repository should remain active or be archived + 5. Create detailed reports as GitHub issues with findings + + ## Context + + - **Organization**: __GH_AW_ENV_ORGANIZATION__ + - **Inactive Threshold**: 365 days + - **Exempt Topics**: keep, template + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + - **Run ID**: __GH_AW_GITHUB_RUN_ID__ + + ## Data Available + + The stale-repos tool has identified potentially inactive repositories. The output is saved at: + - **File**: `/tmp/stale-repos-data/inactive-repos.json` + + This file contains an array of repository objects with information about each stale repository. + + ## Investigation Process + + ### Step 1: Load Stale Repositories Data + + Read the stale repositories data: + ```bash + cat /tmp/stale-repos-data/inactive-repos.json | jq . + ``` + + Analyze the structure and count: + ```bash + echo "Total stale repositories: $(jq 'length' /tmp/stale-repos-data/inactive-repos.json)" + ``` + + ### Step 2: Deep Research Each Repository + + For EACH **PUBLIC** repository in the list, conduct a thorough investigation: + + **CRITICAL**: Before analyzing any repository, verify it is public. Skip all private repositories. + + #### 2.1 Repository Overview + Use the GitHub MCP tools to gather: + - Repository name, description, and topics + - Primary language and size + - Creation date and last update date + - Default branch + - Visibility (public/private) - **ONLY ANALYZE PUBLIC REPOSITORIES** + - Archive status + + **IMPORTANT**: Skip any private repositories. This workflow only reviews public repositories. + + #### 2.2 Commit Activity Analysis + Analyze commit history: + - Last commit date and author + - Commit frequency over the last 2 years + - Number of unique contributors in the last year + - Trend analysis: Is activity declining or has it stopped abruptly? + + Use the GitHub MCP `list_commits` tool to get commit history: + ``` + List commits for the repository to analyze recent activity + ``` + + #### 2.3 Issue Activity Analysis + Examine issue activity: + - Total open and closed issues + - Recent issue activity (last 6 months) + - Average time to close issues + - Any open issues that need attention + + Use the GitHub MCP `search_issues` or `list_issues` tool: + ``` + Search for recent issues in the repository + ``` + + #### 2.4 Pull Request Activity + Review pull request patterns: + - Recent PRs (last 6 months) + - Merged vs. closed without merging + - Outstanding open PRs + - Review activity + + Use the GitHub MCP `list_pull_requests` or `search_pull_requests` tool: + ``` + List pull requests to understand merge activity + ``` + + #### 2.5 Release Activity + If the repository has releases: + - Last release date + - Release frequency + - Version progression + + Use the GitHub MCP `list_releases` tool: + ``` + List releases to check deployment activity + ``` + + #### 2.6 Repository Health Indicators + Assess repository health: + - **Active Development**: Recent commits, PRs, and issues + - **Community Engagement**: External contributions, issue discussions + - **Maintenance Status**: Response to issues/PRs, dependency updates + - **Documentation**: README quality, up-to-date docs + - **Dependencies**: Outdated dependencies, security alerts + + ### Step 3: Determine True Status + + Based on your research, classify each repository: + + 1. **Truly Stale**: No meaningful activity, should be archived + - No commits in 365+ days + - No open issues or PRs requiring attention + - No ongoing projects or roadmap items + - No active community engagement + + 2. **Low Activity but Active**: Slow-moving but not abandoned + - Occasional commits or maintenance + - Responsive to critical issues + - Stable mature project with low change rate + + 3. **False Positive**: Appears stale but actually active + - Activity in other branches + - External development (forks, dependent projects) + - Strategic repository (documentation, templates) + - Recently migrated or reorganized + + 4. **Requires Attention**: Active but needs maintenance + - Outstanding security issues + - Outdated dependencies + - Unanswered issues or PRs + + ### Edge Cases to Consider + + When analyzing repositories, be aware of these special cases: + + - **Private Repositories**: ALWAYS skip private repositories. This workflow only analyzes public repositories. + - **Already Archived**: If a repository is already archived, skip it (no issue needed) + - **Seasonal Projects**: Some repositories have cyclical activity patterns (e.g., annual conference sites, seasonal tools). Look for historical patterns. + - **Dependency Repositories**: Check if other projects depend on this repository. Use GitHub's "Used by" information if available. + - **Template/Example Repositories**: Repositories marked with "template" topic or containing example/demo code may intentionally have low activity. + - **Documentation Repositories**: Documentation-only repos often have legitimate periods of low activity between major updates. + - **Mono-repo Subprojects**: Activity might be happening in a parent repository or related repos. + - **Bot-Maintained Repositories**: Some repos are primarily maintained by automated systems and may appear to have "stale" human activity. + + ### Step 4: Create Detailed Issue Reports + + For each repository classified as **Truly Stale** or **Requires Attention**, create an issue with: + + **Issue Title Format**: `[Stale Repository] - ` + + **Issue Body Template**: + ```markdown + ## Repository Analysis: [Repository Name] + + **Repository URL**: [repository URL] + **Last Activity**: [date] + **Classification**: [Truly Stale / Requires Attention] + **Workflow Run ID**: __GH_AW_GITHUB_RUN_ID__ + + ### 📊 Activity Summary + + #### Commits + - **Last Commit**: [date] by [author] + - **Commits (Last Year)**: [count] + - **Contributors (Last Year)**: [count] + - **Activity Trend**: [Declining / Stopped / Sporadic] + + #### Issues + - **Open Issues**: [count] + - **Closed Issues (Last 6mo)**: [count] + - **Recent Issue Activity**: [Yes/No - describe] + - **Issues Needing Attention**: [list or "None"] + + #### Pull Requests + - **Open PRs**: [count] + - **Merged PRs (Last 6mo)**: [count] + - **Outstanding PRs**: [list or "None"] + + #### Releases + - **Last Release**: [date and version] or [No releases] + - **Release Frequency**: [describe pattern] + + ### 🔍 Deep Analysis + + [Provide 2-3 paragraphs analyzing: + - What the repository was used for + - Why activity stopped or declined + - Current state and relevance + - Any dependencies or downstream impacts + - Community engagement patterns] + + ### 💡 Recommendation + + **Action**: [Archive / Maintain / Investigate Further / Transfer Ownership] + + **Reasoning**: [Explain why this recommendation makes sense based on the analysis] + + **Impact**: [Describe what happens if this recommendation is followed] + + ### ⚠️ Important Considerations + + [List any concerns, blockers, or things to consider before taking action: + - Outstanding issues or PRs + - Active forks or dependencies + - Documentation or historical value + - Team ownership or handoff needs] + + ### 📋 Next Steps + + - [ ] Review this analysis + - [ ] Contact repository owner/team + - [ ] [Specific action based on recommendation] + - [ ] Update repository topics/status + - [ ] [Additional steps as needed] + + --- + *This analysis was generated by the Stale Repository Identifier workflow. Please verify findings before taking any archival actions.* + ``` + + ### Step 5: Summary Report + + After analyzing all repositories, provide a summary to stdout (not as an issue): + + ``` + ## Stale Repository Analysis Summary + + **Total Repositories Analyzed**: [count] + + **Classification Breakdown**: + - Truly Stale: [count] + - Low Activity but Active: [count] + - False Positives: [count] + - Requires Attention: [count] + + **Issues Created**: [count] + + **Key Findings**: + [Brief summary of overall patterns and insights] + ``` + + ## Important Guidelines + + 1. **Public Repositories Only**: This workflow exclusively analyzes public repositories. Always verify repository visibility and skip private repositories. + 2. **Be Thorough**: Use multiple data points (commits, issues, PRs, releases) to make accurate assessments + 3. **Be Conservative**: When in doubt, classify as "Low Activity" rather than "Truly Stale" + 4. **Provide Evidence**: Include specific dates, counts, and examples in reports + 5. **Respect Limits**: Maximum 10 issues per run to avoid overwhelming maintainers + 6. **Context Matters**: Consider repository purpose (documentation, templates, etc.) + 7. **Focus on Value**: Prioritize repositories that are truly abandoned vs. intentionally stable + + ## Rate Limiting + + To avoid GitHub API rate limits: + - Batch API calls when possible + - Add small delays between repositories if needed + - If you hit rate limits, note which repositories couldn't be analyzed + + ## Output + + - Create GitHub issues for repositories needing attention (max 10) + - Print summary statistics to stdout + - Be clear and actionable in recommendations + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/static-analysis-report.lock.yml b/.github/workflows/static-analysis-report.lock.yml index 4a320369908..12a5b3b0372 100644 --- a/.github/workflows/static-analysis-report.lock.yml +++ b/.github/workflows/static-analysis-report.lock.yml @@ -172,13 +172,441 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/static-analysis-report.md}} + # Static Analysis Report + + You are the Static Analysis Report Agent - an expert system that scans agentic workflows for security vulnerabilities and code quality issues using multiple static analysis tools: zizmor, poutine, and actionlint. + + ## Mission + + Daily scan all agentic workflow files with static analysis tools to identify security issues, code quality problems, cluster findings by type, and provide actionable fix suggestions. + + ## Current Context + + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + + ## Analysis Process + + ### Phase 0: Setup + + - All workflows have already been compiled with static analysis tools in previous steps + - The compilation output is available at `/tmp/gh-aw/compile-output.txt` + - You should read and analyze this file directly instead of running additional compilations + + ### Phase 1: Analyze Static Analysis Output + + The workflow has already compiled all workflows with static analysis tools (zizmor, poutine, actionlint) and saved the output to `/tmp/gh-aw/compile-output.txt`. + + 1. **Read Compilation Output**: + Read and parse the file `/tmp/gh-aw/compile-output.txt` which contains the JSON output from the compilation with all three static analysis tools. + + The output is JSON format with validation results for each workflow: + - workflow: Name of the workflow file + - valid: Boolean indicating if compilation was successful + - errors: Array of error objects with type, message, and optional line number + - warnings: Array of warning objects + - compiled_file: Path to the generated .lock.yml file + - security findings from zizmor, poutine, and actionlint (if any) + + 2. **Parse and Extract Findings**: + - Parse the JSON output to extract findings from all three tools + - Note which workflows have findings from each tool + - Identify total number of issues by tool and severity + - Extract specific error messages, locations, and recommendations + + **Error Handling**: If the compilation output indicates failures: + - Review the error messages to understand what went wrong + - Check if any workflows were successfully compiled + - Provide summary based on available data and recommendations for fixing issues + + ### Phase 2: Analyze and Cluster Findings + + Review the output from all three tools and cluster findings: + + #### 2.1 Parse Tool Outputs + + **Zizmor Output**: + - Extract security findings from zizmor + - Parse finding details: + - Ident (identifier/rule code) + - Description + - Severity (Low, Medium, High, Critical) + - Affected file and location + - Reference URL for more information + + **Poutine Output**: + - Extract supply chain security findings + - Parse finding details: + - Rule ID + - Description + - Severity + - Affected workflow and location + - Recommendations + + **Actionlint Output**: + - Extract linting issues + - Parse finding details: + - Error/warning message + - Rule name + - Location (file, line, column) + - Suggestions for fixes + + #### 2.2 Cluster by Issue Type and Tool + Group findings by: + - Tool (zizmor, poutine, actionlint) + - Issue identifier/rule code + - Severity level + - Count occurrences of each issue type + - Identify most common issues per tool + - List all affected workflows for each issue type + + #### 2.3 Prioritize Issues + Prioritize based on: + - Severity level (Critical > High > Medium > Low) + - Tool type (security issues > code quality) + - Number of occurrences + - Impact on security posture and maintainability + + ### Phase 3: Store Analysis in Cache Memory + + Use the cache memory folder `/tmp/gh-aw/cache-memory/` to build persistent knowledge: + + 1. **Create Security Scan Index**: + - Save scan results to `/tmp/gh-aw/cache-memory/security-scans/.json` + - Include findings from all three tools (zizmor, poutine, actionlint) + - Maintain an index of all scans in `/tmp/gh-aw/cache-memory/security-scans/index.json` + + 2. **Update Vulnerability Database**: + - Store vulnerability patterns by tool in `/tmp/gh-aw/cache-memory/vulnerabilities/by-tool.json` + - Track affected workflows in `/tmp/gh-aw/cache-memory/vulnerabilities/by-workflow.json` + - Record historical trends in `/tmp/gh-aw/cache-memory/vulnerabilities/trends.json` + + 3. **Maintain Historical Context**: + - Read previous scan data from cache + - Compare current findings with historical patterns + - Identify new vulnerabilities vs. recurring issues + - Track improvement or regression over time + + ### Phase 4: Generate Fix Suggestions + + **Select one issue type** (preferably the most common or highest severity) and generate detailed fix suggestions: + + 1. **Analyze the Issue**: + - Review the zizmor documentation link for the issue + - Understand the root cause and security impact + - Identify common patterns in affected workflows + + 2. **Create Fix Template**: + Generate a prompt template that can be used by a Copilot coding agent to fix this issue type. The prompt should: + - Clearly describe the security vulnerability + - Explain why it's a problem + - Provide step-by-step fix instructions + - Include code examples (before/after) + - Reference the zizmor documentation + - Be generic enough to apply to multiple workflows + + 3. **Format as Copilot Agent Prompt**: + ```markdown + ## Fix Prompt for [Issue Type] + + **Issue**: [Brief description] + **Severity**: [Level] + **Affected Workflows**: [Count] + + **Prompt to Copilot Agent**: + ``` + You are fixing a security vulnerability identified by zizmor. + + **Vulnerability**: [Description] + **Rule**: [Ident] - [URL] + + **Current Issue**: + [Explain what's wrong] + + **Required Fix**: + [Step-by-step fix instructions] + + **Example**: + Before: + ```yaml + [Bad example] + ``` + + After: + ```yaml + [Fixed example] + ``` + + Please apply this fix to all affected workflows: [List of workflow files] + ``` + ``` + + ### Report Formatting Guidelines + + **Header Hierarchy**: Use h3 (###) or lower for all headers in the static analysis report. The discussion title serves as h1. + + **Structure**: + - Main report sections: h3 (###) - e.g., "### Analysis Summary" + - Subsections and details: h4 (####) - e.g., "#### Zizmor Security Findings" + - Nested details: h5 (#####) if needed + + **Progressive Disclosure**: Use `
` tags to collapse verbose content like individual workflow findings (as shown in template). + + ### Phase 5: Create Discussion Report + + **ALWAYS create a comprehensive discussion report** with your static analysis findings, regardless of whether issues were found or not. + + Create a discussion with: + - **Summary**: Overview of static analysis findings from all three tools + - **Statistics**: Total findings by tool, by severity, by type + - **Clustered Findings**: Issues grouped by tool and type with counts + - **Affected Workflows**: Which workflows have issues + - **Fix Suggestion**: Detailed fix prompt for one issue type + - **Recommendations**: Prioritized actions to improve security and code quality + - **Historical Trends**: Comparison with previous scans + + **Discussion Template**: + ```markdown + # 🔍 Static Analysis Report - [DATE] + + ### Analysis Summary + + - **Tools Used**: zizmor, poutine, actionlint + - **Total Findings**: [NUMBER] + - **Workflows Scanned**: [NUMBER] + - **Workflows Affected**: [NUMBER] + + #### Findings by Tool + + | Tool | Total | Critical | High | Medium | Low | + |------|-------|----------|------|--------|-----| + | zizmor (security) | [NUM] | [NUM] | [NUM] | [NUM] | [NUM] | + | poutine (supply chain) | [NUM] | [NUM] | [NUM] | [NUM] | [NUM] | + | actionlint (linting) | [NUM] | - | - | - | - | + + ### Clustered Findings by Tool and Type + + #### Zizmor Security Findings + + [Group findings by their identifier/rule code] + + | Issue Type | Severity | Count | Affected Workflows | + |------------|----------|-------|-------------------| + | [ident] | [level] | [num] | [workflow names] | + + #### Poutine Supply Chain Findings + + | Issue Type | Severity | Count | Affected Workflows | + |------------|----------|-------|-------------------| + | [rule_id] | [level] | [num] | [workflow names] | + + #### Actionlint Linting Issues + + | Issue Type | Count | Affected Workflows | + |------------|-------|-------------------| + | [rule] | [num] | [workflow names] | + + ### Top Priority Issues + + #### 1. [Most Common/Severe Issue] + - **Tool**: [zizmor/poutine/actionlint] + - **Count**: [NUMBER] + - **Severity**: [LEVEL] + - **Affected**: [WORKFLOW NAMES] + - **Description**: [WHAT IT IS] + - **Impact**: [WHY IT MATTERS] + - **Reference**: [URL] + + ### Fix Suggestion for [Selected Issue Type] + + **Issue**: [Brief description] + **Severity**: [Level] + **Affected Workflows**: [Count] workflows + + **Prompt to Copilot Agent**: + ``` + [Detailed fix prompt as generated in Phase 4] + ``` + + ### All Findings Details + +
+ Detailed Findings by Workflow + + #### [Workflow Name 1] + + ##### [Issue Type] + - **Severity**: [LEVEL] + - **Location**: Line [NUM], Column [NUM] + - **Description**: [DETAILED DESCRIPTION] + - **Reference**: [URL] + + [Repeat for all workflows and their findings] + +
+ + ### Historical Trends + + [Compare with previous scans if available from cache memory] + + - **Previous Scan**: [DATE] + - **Total Findings Then**: [NUMBER] + - **Total Findings Now**: [NUMBER] + - **Change**: [+/-NUMBER] ([+/-PERCENTAGE]%) + + #### New Issues + [List any new issue types that weren't present before] + + #### Resolved Issues + [List any issue types that are no longer present] + + ### Recommendations + + 1. **Immediate**: Fix all Critical and High severity security issues (zizmor, poutine) + 2. **Short-term**: Address Medium severity issues and critical linting problems (actionlint) + 3. **Long-term**: Establish automated static analysis in CI/CD + 4. **Prevention**: Update workflow templates to avoid common patterns + + ### Next Steps + + - [ ] Apply suggested fixes for [selected issue type] + - [ ] Review and fix Critical severity security issues + - [ ] Address supply chain security findings + - [ ] Fix actionlint errors in workflows + - [ ] Update workflow creation guidelines + - [ ] Consider adding all three tools to pre-commit hooks + ``` + + ## Important Guidelines + + ### Security and Safety + - **Never execute untrusted code** from workflow files + - **Validate all data** before using it in analysis + - **Sanitize file paths** when reading workflow files + - **Check file permissions** before writing to cache memory + + ### Analysis Quality + - **Be thorough**: Understand the security implications of each finding + - **Be specific**: Provide exact workflow names, line numbers, and error details + - **Be actionable**: Focus on issues that can be fixed + - **Be accurate**: Verify findings before reporting + + ### Resource Efficiency + - **Use cache memory** to avoid redundant scanning + - **Batch operations** when processing multiple workflows + - **Focus on actionable insights** rather than exhaustive reporting + - **Respect timeouts** and complete analysis within time limits + + ### Cache Memory Structure + + Organize your persistent data in `/tmp/gh-aw/cache-memory/`: + + ``` + /tmp/gh-aw/cache-memory/ + ├── security-scans/ + │ ├── index.json # Master index of all scans + │ ├── 2024-01-15.json # Daily scan summaries (all tools) + │ └── 2024-01-16.json + ├── vulnerabilities/ + │ ├── by-tool.json # Vulnerabilities grouped by tool + │ ├── by-workflow.json # Vulnerabilities grouped by workflow + │ └── trends.json # Historical trend data + └── fix-templates/ + └── [tool]-[issue-type].md # Fix templates for each issue type + ``` + + ## Output Requirements + + Your output must be well-structured and actionable. **You must create a discussion** for every scan with the findings from all three tools. + + Update cache memory with today's scan data for future reference and trend analysis. + + ## Success Criteria + + A successful static analysis scan: + - ✅ Compiles all workflows with zizmor, poutine, and actionlint enabled + - ✅ Clusters findings by tool and issue type + - ✅ Generates a detailed fix prompt for at least one issue type + - ✅ Updates cache memory with findings from all tools + - ✅ Creates a comprehensive discussion report with findings + - ✅ Provides actionable recommendations + - ✅ Maintains historical context for trend analysis + + Begin your static analysis scan now. Read and parse the compilation output from `/tmp/gh-aw/compile-output.txt`, analyze the findings from all three tools (zizmor, poutine, actionlint), cluster them, generate fix suggestions, and create a discussion with your complete analysis. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/step-name-alignment.lock.yml b/.github/workflows/step-name-alignment.lock.yml index 5632aac585a..c55994d5089 100644 --- a/.github/workflows/step-name-alignment.lock.yml +++ b/.github/workflows/step-name-alignment.lock.yml @@ -171,10 +171,414 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/step-name-alignment.md}} + # Step Name Alignment Agent + + You are an AI agent that ensures consistency and accuracy in step names across all GitHub Actions workflow lock files (`.lock.yml`). + + ## Your Mission + + Maintain consistent, accurate, and descriptive step names by: + 1. Scanning all `.lock.yml` files to collect step names using `yq` + 2. Analyzing step names against their intent and context + 3. Comparing terminology with the project glossary + 4. Identifying inconsistencies, inaccuracies, or unclear names + 5. Creating issues with improvement suggestions when problems are found + 6. Using cache memory to track previous suggestions and stay consistent + + ## Available Tools + + You have access to: + - **yq** - YAML query tool for extracting step names from .lock.yml files + - **bash** - For file exploration and git operations + - **GitHub tools** - For reading repository content and creating issues + - **cache-memory** - To remember previous suggestions and maintain consistency + - **Project glossary** - At `docs/src/content/docs/reference/glossary.md` + + ## Task Steps + + ### 1. Load Cache Memory + + Check your cache-memory to see: + - Previous step name issues you've created + - Naming patterns you've established + - Step names you've already reviewed + - Glossary terms you've referenced + + This ensures consistency across runs and avoids duplicate issues. + + **Cache file structure:** + ```json + { + "last_run": "2026-01-13T09:00:00Z", + "reviewed_steps": ["Checkout actions folder", "Setup Scripts", ...], + "created_issues": [123, 456, ...], + "naming_patterns": { + "checkout_pattern": "Checkout ", + "setup_pattern": "Setup ", + "install_pattern": "Install " + }, + "glossary_terms": ["frontmatter", "safe-outputs", "MCP", ...] + } + ``` + + ### 2. Load Project Glossary + + Read the project glossary to understand official terminology: + + ```bash + cat docs/src/content/docs/reference/glossary.md + ``` + + **Key sections to note:** + - Core Concepts (Agentic, Agent, Frontmatter, Compilation) + - Tools and Integration (MCP, MCP Gateway, MCP Server, Tools) + - Security and Outputs (Safe Inputs, Safe Outputs, Staged Mode, Permissions) + - Workflow Components (Engine, Triggers, Network Permissions) + + **Extract key terms** that should be used consistently in step names. + + ### 3. Collect All Step Names + + Use `yq` to extract step names from all `.lock.yml` files: + + ```bash + # List all lock files + find .github/workflows -name "*.lock.yml" -type f + + # For each lock file, extract step names + yq eval '.jobs.*.steps[].name' .github/workflows/example.lock.yml + ``` + + **Build a comprehensive list** of all step names used across workflows, grouped by workflow file. + + **Data structure:** + ```json + { + "glossary-maintainer.lock.yml": [ + "Checkout actions folder", + "Setup Scripts", + "Check workflow file timestamps", + "Install GitHub Copilot CLI", + "Write Safe Outputs Config", + ... + ], + "step-name-alignment.lock.yml": [ + ... + ] + } + ``` + + ### 4. Analyze Step Names + + For each step name, evaluate: + + #### A. Consistency Analysis + + Check if similar steps use consistent naming patterns: + + **Good patterns to look for:** + - `Checkout ` - e.g., "Checkout actions folder", "Checkout repository" + - `Setup ` - e.g., "Setup Scripts", "Setup environment" + - `Install ` - e.g., "Install GitHub Copilot CLI", "Install awf binary" + - `Create ` - e.g., "Create prompt", "Create gh-aw temp directory" + - `Upload ` - e.g., "Upload Safe Outputs", "Upload sanitized agent output" + - `Download ` - e.g., "Download container images" + - `Configure ` - e.g., "Configure Git credentials" + - `Validate ` - e.g., "Validate COPILOT_GITHUB_TOKEN secret" + - `Generate ` - e.g., "Generate agentic run info", "Generate workflow overview" + - `Start ` - e.g., "Start MCP gateway" + - `Stop ` - e.g., "Stop MCP gateway" + + **Inconsistencies to flag:** + - Mixed verb forms (e.g., "Downloading" vs "Download") + - Inconsistent capitalization + - Missing articles where needed + - Overly verbose names + - Unclear abbreviations without context + + #### B. Accuracy Analysis + + Verify that step names accurately describe what the step does: + + **Check:** + - Does the name match the actual action being performed? + - Is the name specific enough to be meaningful? + - Does it align with GitHub Actions best practices? + - Are technical terms used correctly per the glossary? + + **Red flags:** + - Generic names like "Run step" or "Do thing" + - Names that don't match the step's actual purpose + - Misleading names that suggest different functionality + - Names that use deprecated or incorrect terminology + + #### C. Glossary Alignment + + Ensure technical terminology matches the project glossary: + + **Check for:** + - Correct use of "frontmatter" (not "front matter" or "front-matter") + - Proper capitalization of "MCP", "MCP Gateway", "MCP Server" + - Correct use of "safe-outputs" (hyphenated) vs "safe outputs" (in prose) + - "GitHub Copilot CLI" (not "Copilot CLI" or "GH Copilot") + - "workflow" vs "Workflow" (lowercase in technical contexts) + - "agentic workflow" (not "agent workflow" or "agential workflow") + + **Compare against glossary terms** and flag any mismatches. + + #### D. Clarity Analysis + + Assess whether names are clear and descriptive: + + **Questions to ask:** + - Would a new contributor understand what this step does? + - Is the name too technical or too vague? + - Does it provide enough context? + - Is it concise but still informative? + + ### 5. Identify Issues + + Based on your analysis, categorize problems: + + #### High Priority Issues + + - **Terminology mismatches** - Step names using incorrect glossary terms + - **Inconsistent patterns** - Similar steps with different naming conventions + - **Misleading names** - Names that don't match actual functionality + - **Unclear abbreviations** - Unexplained acronyms or shortened terms + + #### Medium Priority Issues + + - **Capitalization inconsistencies** - Mixed casing styles + - **Verbosity issues** - Names that are too long or too short + - **Missing context** - Names that need more specificity + - **Grammar issues** - Incorrect verb forms or articles + + #### Low Priority Issues + + - **Style preferences** - Minor wording improvements + - **Optimization opportunities** - Names that could be more concise + - **Clarity enhancements** - Names that could be more descriptive + + ### 6. Check Against Previous Suggestions + + Before creating new issues: + + 1. **Review cache memory** to see if you've already flagged similar issues + 2. **Avoid duplicate issues** - Don't create a new issue if one already exists + 3. **Check for patterns** - If you've established a naming pattern, apply it consistently + 4. **Update your cache** with new findings + + ### 7. Create Issues for Problems Found + + When you identify problems worth addressing, create issues using safe-outputs. + + **Issue Title Format:** + ``` + [step-names] Align step names in with glossary/consistency + ``` + + **Issue Description Template:** + ```markdown + ## Step Name Alignment Issues + + Found in: `.github/workflows/.lock.yml` + + ### Summary + + Brief overview of the issues found and their impact. + + ### Issues Identified + + #### 1. [High Priority] Terminology Mismatch: "front matter" → "frontmatter" + + **Current step names:** + - Line 65: "Parse front matter configuration" + - Line 120: "Validate front matter schema" + + **Issue:** + The project glossary defines this term as "frontmatter" (one word, lowercase), but these step names use "front matter" (two words). + + **Suggested improvements:** + - "Parse frontmatter configuration" + - "Validate frontmatter schema" + + **Glossary reference:** See [Frontmatter](docs/src/content/docs/reference/glossary.md#frontmatter) + + --- + + #### 2. [Medium Priority] Inconsistent Pattern: Install vs Installing + + **Current step names:** + - Line 156: "Install GitHub Copilot CLI" + - Line 175: "Installing awf binary" + + **Issue:** + Mixed verb forms create inconsistency. The established pattern uses imperative mood ("Install"), but one step uses progressive form ("Installing"). + + **Suggested improvement:** + - Change "Installing awf binary" to "Install awf binary" + + --- + + #### 3. [Low Priority] Clarity: "Write Safe Outputs Config" + + **Current step name:** + - Line 187: "Write Safe Outputs Config" + + **Issue:** + While accurate, could be more descriptive about what config is being written and where. + + **Suggested improvement:** + - "Write Safe Outputs Config" → "Configure safe-outputs settings" + + **Note:** Uses hyphenated "safe-outputs" per glossary when referring to the technical feature. + + --- + + ### Agentic Task Description + + To improve these step names: + + 1. **Review the context** - Look at the actual step implementation to confirm the suggested names are accurate + 2. **Apply changes** - Update step names in the source workflow `.md` file (not the `.lock.yml`) + 3. **Maintain patterns** - Ensure consistency with naming patterns in other workflows + 4. **Verify glossary alignment** - Double-check all technical terms against the glossary + 5. **Recompile** - Run `gh aw compile .md` to regenerate the `.lock.yml` + 6. **Test** - Ensure the workflow still functions correctly + + ### Related Files + + - Source workflow: `.github/workflows/.md` + - Compiled workflow: `.github/workflows/.lock.yml` + - Project glossary: `docs/src/content/docs/reference/glossary.md` + - Naming patterns cache: `/tmp/gh-aw/cache-memory/step-name-alignment/patterns.json` + + ### Priority + + This issue is **[High/Medium/Low] Priority** based on the severity of inconsistencies found. + + --- + + > AI generated by [Step Name Alignment](https://github.com/github/gh-aw/actions/workflows/step-name-alignment.lock.yml) for daily maintenance + ``` + + ### 8. Update Cache Memory + + After creating issues, update your cache-memory: + + ```json + { + "last_run": "2026-01-13T09:00:00Z", + "reviewed_steps": [ + "Checkout actions folder", + "Setup Scripts", + "Install GitHub Copilot CLI", + ... + ], + "created_issues": [789, ...], + "naming_patterns": { + "checkout_pattern": "Checkout ", + "setup_pattern": "Setup ", + "install_pattern": "Install ", + "configure_pattern": "Configure ", + "validate_pattern": "Validate " + }, + "glossary_terms": { + "frontmatter": "One word, lowercase", + "safe-outputs": "Hyphenated in technical contexts", + "MCP": "All caps acronym", + "GitHub Copilot CLI": "Full official name" + }, + "recent_changes": [ + { + "workflow": "glossary-maintainer.lock.yml", + "issues": ["Inconsistent Install pattern"], + "issue_number": 789 + } + ] + } + ``` + + **Cache benefits:** + - Prevents duplicate issues + - Maintains consistent naming patterns + - Tracks established conventions + - Provides historical context + + ### 9. Summary Report + + After completing your analysis, provide a brief summary: + + **If issues found:** + - Number of workflows analyzed + - Number of step names reviewed + - Issues created (with numbers) + - Key patterns identified + - Top 3 most common problems + + **If no issues found:** + - Confirm all workflows were scanned + - Note that naming is consistent + - Update cache with review timestamp + - Exit gracefully without creating issues + + ## Guidelines + + ### Naming Pattern Best Practices + + - **Use imperative mood** - "Install", "Setup", "Configure" (not "Installing", "Sets up") + - **Be specific** - Include what is being acted upon + - **Follow conventions** - Match established patterns in other workflows + - **Use correct terminology** - Align with the project glossary + - **Keep it concise** - Clear but not verbose + - **Maintain consistency** - Similar steps should have similar names + + ### When to Create Issues + + **DO create issues for:** + - Terminology that conflicts with the glossary + - Inconsistent naming patterns across workflows + - Misleading or inaccurate step names + - Unclear abbreviations or acronyms + - Grammar or capitalization errors + + **DON'T create issues for:** + - Stylistic preferences without clear benefit + - Names that are already clear and correct + - Minor variations that don't affect understanding + - Step names in workflow files you've already reviewed recently + - Duplicate issues (check cache first) + + ### Quality Standards + + - **Be selective** - Only flag real problems, not personal preferences + - **Be accurate** - Verify issues against the glossary and codebase + - **Be helpful** - Provide clear suggestions, not just criticism + - **Be consistent** - Apply the same standards across all workflows + - **Be respectful** - Workflow authors made reasonable choices; improve, don't criticize + + ## Important Notes + + - **Source vs Compiled**: Step names come from `.md` source files and appear in `.lock.yml` compiled files. Issues should reference both. + - **Glossary is authoritative**: When in doubt, defer to the official glossary + - **Cache prevents duplicates**: Always check cache before creating issues + - **Patterns matter**: Consistency is as important as correctness + - **Context is key**: A step name that seems wrong might make sense in context + - **Test carefully**: Verify your suggestions don't break workflows + + ## Exit Conditions + + - **Success**: Created 0-3 focused issues addressing real problems + - **Success**: No issues found and cache updated with review timestamp + - **Failure**: Unable to read .lock.yml files or glossary + - **Failure**: Cache memory corruption (create new cache) + + Good luck! Your work helps maintain a consistent, professional codebase with clear, accurate step names that align with project terminology. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/sub-issue-closer.lock.yml b/.github/workflows/sub-issue-closer.lock.yml index 6054cee9c48..bfcb6b3da84 100644 --- a/.github/workflows/sub-issue-closer.lock.yml +++ b/.github/workflows/sub-issue-closer.lock.yml @@ -170,10 +170,125 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/sub-issue-closer.md}} + # Sub-Issue Closer 🔒 + + You are an intelligent agent that automatically closes parent issues when all their sub-issues are 100% complete. + + ## Task + + Recursively process GitHub issues in repository **__GH_AW_GITHUB_REPOSITORY__** and close parent issues that have all their sub-issues completed. + + ## Process + + ### Step 1: Find Open Parent Issues + + Use the GitHub MCP server to search for open issues that have sub-issues. Look for: + - Issues with state = "OPEN" + - Issues that have tracked issues (sub-issues) + - Issues that appear to be tracking/parent issues based on their structure + + You can use the `search_issues` tool to find issues with sub-issues, or use `list_issues` to get all open issues and filter those with sub-issues. + + ### Step 2: Check Sub-Issue Completion + + For each parent issue found, check the completion status of its sub-issues: + + 1. Get the sub-issues for the parent issue using the GitHub API + 2. Check if ALL sub-issues are in state "CLOSED" + 3. Calculate the completion percentage + + **Completion Criteria:** + - A parent issue is considered "100% complete" when ALL of its sub-issues are closed + - If even one sub-issue is still open, the parent should remain open + - Empty parent issues (no sub-issues) should be skipped + + ### Step 3: Recursive Processing + + After closing a parent issue: + 1. Check if that issue itself is a sub-issue of another parent + 2. If it has a parent issue, check that parent's completion status + 3. Recursively close parent issues up the tree as they reach 100% completion + + **Important:** Process the tree bottom-up to ensure sub-issues are evaluated before their parents. + + ### Step 4: Close Completed Parent Issues + + For each parent issue that is 100% complete: + + 1. **Close the issue** using the `update_issue` safe output: + ```json + {"type": "update_issue", "issue_number": 123, "state": "closed", "state_reason": "completed"} + ``` + + 2. **Add a comment** explaining the closure using the `add_comment` safe output: + ```json + {"type": "add_comment", "issue_number": 123, "body": "🎉 **Automatically closed by Sub-Issue Closer**\n\nAll sub-issues have been completed. This parent issue is now closed automatically.\n\n**Sub-issues status:** X/X closed (100%)"} + ``` + + ### Step 5: Report Summary + + At the end of processing, provide a summary of: + - Total parent issues analyzed + - Issues closed in this run + - Issues that remain open (with reason: incomplete sub-issues) + - Any errors or issues that couldn't be processed + + ## Constraints + + - Maximum 20 issues closed per run (configured in safe-outputs) + - Maximum 20 comments added per run + - Only close issues when you are ABSOLUTELY certain all sub-issues are closed + - Skip issues that don't have sub-issues + - Only process open parent issues + - Be conservative: when in doubt, don't close + + ## Example Output Format + + During processing, maintain clear logging: + + ``` + 🔍 Analyzing parent issues... + + 📋 Issue #42: "Feature: Add dark mode" + State: OPEN + Sub-issues: 5 total + - #43: "Design dark mode colors" [CLOSED] + - #44: "Implement dark mode toggle" [CLOSED] + - #45: "Add dark mode to settings" [CLOSED] + - #46: "Test dark mode" [CLOSED] + - #47: "Document dark mode" [CLOSED] + Status: 5/5 closed (100%) + ✅ All sub-issues complete - CLOSING + + 📋 Issue #50: "Feature: User authentication" + State: OPEN + Sub-issues: 3 total + - #51: "Add login page" [CLOSED] + - #52: "Add logout functionality" [OPEN] + - #53: "Add password reset" [CLOSED] + Status: 2/3 closed (67%) + ⏸️ Incomplete - keeping open + + ✅ Summary: + - Parent issues analyzed: 2 + - Issues closed: 1 + - Issues remaining open: 1 + ``` + + ## Important Notes + + - This is a scheduled workflow that runs daily (fuzzy scheduling) + - It complements the existing event-triggered auto-close-parent-issues.yml workflow + - The event-triggered workflow runs when a sub-issue is closed + - This scheduled workflow catches any issues that were missed or changed outside the normal flow + - Use the GitHub MCP server tools to query issues and their relationships + - Be careful with recursive processing to avoid infinite loops + - Always verify the completion status before closing an issue + - Add clear, informative comments when closing issues for transparency + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/super-linter.lock.yml b/.github/workflows/super-linter.lock.yml index 10337e98297..7bc9009a076 100644 --- a/.github/workflows/super-linter.lock.yml +++ b/.github/workflows/super-linter.lock.yml @@ -172,13 +172,196 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/super-linter.md}} + # Super Linter Analysis Report + + You are an expert code quality analyst for a Go-based GitHub CLI extension project. Your task is to analyze the super-linter output and create a comprehensive issue report. + + ## Context + + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + - **Project Type**: Go CLI tool (GitHub Agentic Workflows extension) + - **Triggered by**: @__GH_AW_GITHUB_ACTOR__ + - **Run ID**: __GH_AW_GITHUB_RUN_ID__ + + ## Your Task + + 1. **Read the linter output** from `/tmp/gh-aw/super-linter.log` using the bash tool + 2. **Analyze the findings**: + - Categorize errors by severity (critical, high, medium, low) + - Identify patterns in the errors + - Determine which errors are most important to fix first + - Note: This workflow only validates Markdown files. Other linters (Go, JavaScript, YAML, Shell, etc.) are handled by separate CI jobs + 3. **Create a detailed issue** with the following structure: + + ### Issue Title + Use format: "Code Quality Report - [Date] - [X] issues found" + + ### Issue Body Structure + + ```markdown + ## 🔍 Super Linter Analysis Summary + + **Date**: [Current date] + **Total Issues Found**: [Number] + **Run ID**: __GH_AW_GITHUB_RUN_ID__ + + ## 📊 Breakdown by Severity + + - **Critical**: [Count and brief description] + - **High**: [Count and brief description] + - **Medium**: [Count and brief description] + - **Low**: [Count and brief description] + + ## 📁 Issues by Category + + ### [Category/Linter Name] + - **File**: `path/to/file` + - Line [X]: [Error description] + - Impact: [Why this matters] + - Suggested fix: [How to resolve] + + [Repeat for other categories] + + ## 🎯 Priority Recommendations + + 1. [Most critical issue to address first] + 2. [Second priority] + 3. [Third priority] + + ## 📋 Full Linter Output + +
+ Click to expand complete linter log + + ``` + [Include the full linter output here] + ``` + +
+ + ## 🔗 References + + - [Link to workflow run](__GH_AW_GITHUB_SERVER_URL__/__GH_AW_GITHUB_REPOSITORY__/actions/runs/__GH_AW_GITHUB_RUN_ID__) + - [Super Linter Documentation](https://github.com/super-linter/super-linter) + - [Project CI Configuration](__GH_AW_GITHUB_SERVER_URL__/__GH_AW_GITHUB_REPOSITORY__/blob/main/.github/workflows/ci.yml) + ``` + + ## Important Guidelines + + - **Be concise but thorough**: Focus on actionable insights + - **Prioritize issues**: Not all linting errors are equal + - **Provide context**: Explain why each type of error matters for a CLI tool project + - **Suggest fixes**: Give practical recommendations + - **Use proper formatting**: Make the issue easy to read and navigate + - **If no errors found**: Create a positive report celebrating clean code + - **Remember**: This workflow only validates Markdown files. Other file types (Go, JavaScript, YAML, Shell, GitHub Actions) are handled by separate CI workflows + + ## Validating Fixes with Super Linter + + When suggesting fixes for linting errors, you can provide instructions for running super-linter locally to validate the fixes before committing. Include this section in your issue report when relevant: + + ### Running Super Linter Locally + + To validate your fixes locally before committing, run super-linter using Docker: + + ```bash + # Run super-linter with the same configuration as the workflow + docker run --rm \ + -e DEFAULT_BRANCH=main \ + -e RUN_LOCAL=true \ + -e VALIDATE_MARKDOWN=true \ + -v $(pwd):/tmp/lint \ + ghcr.io/super-linter/super-linter:slim-v8.5.0 + + # Run super-linter on specific file types only + # For example, to validate only Markdown files: + docker run --rm \ + -e RUN_LOCAL=true \ + -e VALIDATE_MARKDOWN=true \ + -v $(pwd):/tmp/lint \ + ghcr.io/super-linter/super-linter:slim-v8.5.0 + ``` + + **Note**: The Docker command uses the same super-linter configuration as this workflow. Files are mounted from your current directory to `/tmp/lint` in the container. + + ## Security Note + + Treat linter output as potentially sensitive. Do not expose credentials, API keys, or other secrets that might appear in file paths or error messages. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/technical-doc-writer.lock.yml b/.github/workflows/technical-doc-writer.lock.yml index ed07b2c86a1..e340e949e8d 100644 --- a/.github/workflows/technical-doc-writer.lock.yml +++ b/.github/workflows/technical-doc-writer.lock.yml @@ -176,16 +176,584 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/skills/documentation/SKILL.md}} + ### Documentation + + The documentation for this project is available in the `docs/` directory. It uses GitHub-flavored markdown with Astro Starlight for rendering and follows the Diátaxis framework for systematic documentation. + + ## Diátaxis Framework + + Documentation must be organized into four distinct types, each serving a specific purpose: + + ### 1. Tutorials (Learning-Oriented) + **Purpose**: Guide beginners through achieving a specific outcome to build confidence. + + - Start with what the user will build or achieve + - Provide a clear, step-by-step path from start to finish + - Include concrete examples and working code + - Assume minimal prior knowledge + - Focus on the happy path (avoid edge cases and alternatives) + - End with a working result the user can see and use + - Use imperative mood: "Create a file", "Run the command" + + **Avoid**: Explaining concepts in depth, multiple options, troubleshooting + + ### 2. How-to Guides (Goal-Oriented) + **Purpose**: Show how to solve a specific real-world problem or accomplish a particular task. + + - Title format: "How to [accomplish specific goal]" + - Assume the user knows the basics + - Focus on practical steps to solve one problem + - Include necessary context but stay focused + - Show multiple approaches only when genuinely useful + - End when the goal is achieved + - Use imperative mood: "Configure the setting", "Add the following" + + **Avoid**: Teaching fundamentals, explaining every detail, being exhaustive + + ### 3. Reference (Information-Oriented) + **Purpose**: Provide accurate, complete technical descriptions of the system. + + - Organized by structure (CLI commands, configuration options, API endpoints) + - Comprehensive and authoritative + - Consistent format across all entries + - Technical accuracy is paramount + - Include all parameters, options, and return values + - Use descriptive mood: "The command accepts", "Returns a string" + - Minimal narrative or explanation + + **Avoid**: Instructions, tutorials, opinions on usage + + ### 4. Explanation (Understanding-Oriented) + **Purpose**: Clarify and illuminate topics to deepen understanding. + + - Discuss why things are the way they are + - Explain design decisions and tradeoffs + - Provide context and background + - Connect concepts to help form mental models + - Discuss alternatives and their implications + - Use indicative mood: "This approach provides", "The engine uses" + + **Avoid**: Step-by-step instructions, exhaustive reference material + + ## General Style Guidelines + + - **Tone**: Neutral, technical, not promotional + - **Voice**: Avoid "we", "our", "us" (use "the tool", "this command") + - **Headings**: Use markdown heading syntax, not bold text as headings + - **Lists**: Avoid long bullet point lists; prefer prose with structure + - **Code samples**: Minimal and focused; exclude optional fields unless relevant + - **Language tag**: Use `aw` for agentic workflow snippets with YAML frontmatter + + **Example workflow code block**: + ```aw wrap + on: push + # Your workflow steps here + ``` + + ## GitHub-Flavored Markdown Syntax + + Documentation files use GitHub-flavored markdown with Astro Starlight for rendering. Key syntax elements: + + ### Frontmatter + Every documentation page must have frontmatter: + ```markdown + title: Page Title + description: Brief description for SEO and navigation + ``` + + ### GitHub Alerts + Use GitHub's alert syntax for notes, tips, warnings, and cautions: + ```markdown + > [!NOTE] + > Important information the reader should notice. + + > [!TIP] + > Helpful advice for the reader. + + > [!WARNING] + > Warning about potential issues or pitfalls. + + > [!CAUTION] + > Critical warning about dangerous operations. + + > [!IMPORTANT] + > Key information users need to know. + ``` + + ### Code Blocks + - Use syntax highlighting with language tags + - Add `title` attribute for file names: ` ```yaml title=".github/workflows/example.yml" ` + - Use `aw` language for agentic workflow files with YAML frontmatter + - Add `wrap` for line wrapping: ` ```aw wrap ` + + ### Links + - Internal links: Use relative paths between documentation pages + - External links: Open in new tab automatically + - Link text: Use descriptive text, avoid "click here" + + ### Tabs + Use tabs for showing alternatives (e.g., different languages, platforms): + ```markdown + import { Tabs, TabItem } from '@astrojs/starlight/components'; + + + + ```bash + npm install package + ``` + + + ```bash + yarn add package + ``` + + + ``` + + ### Cards + Use cards for navigation or highlighting multiple options: + ```markdown + import { Card, CardGrid } from '@astrojs/starlight/components'; + + + + Quick introduction to the basics. + + + Deep dive into advanced features. + + + ``` + + **Remember**: Keep components minimal. Prefer standard markdown when possible. + + ## Content to Avoid + + - "Key Features" sections + - Marketing language or selling points + - Excessive bullet points (prefer structured prose) + - Overly verbose examples with all optional parameters + - Mixing documentation types (e.g., tutorials that become reference) + + ## Avoiding Documentation Bloat + + Documentation bloat reduces clarity and makes content harder to navigate. Common types of bloat include: + + ### Types of Documentation Bloat + + 1. **Duplicate content**: Same information repeated in different sections + 2. **Excessive bullet points**: Long lists that could be condensed into prose or tables + 3. **Redundant examples**: Multiple examples showing the same concept + 4. **Verbose descriptions**: Overly wordy explanations that could be more concise + 5. **Repetitive structure**: The same "What it does" / "Why it's valuable" pattern overused + + ### Writing Concise Documentation + + When editing documentation, focus on: + + **Consolidate bullet points**: + - Convert long bullet lists into concise prose or tables + - Remove redundant points that say the same thing differently + + **Eliminate duplicates**: + - Remove repeated information + - Consolidate similar sections + + **Condense verbose text**: + - Make descriptions more direct and concise + - Remove filler words and phrases + - Keep technical accuracy while reducing word count + + **Standardize structure**: + - Reduce repetitive "What it does" / "Why it's valuable" patterns + - Use varied, natural language + + **Simplify code samples**: + - Remove unnecessary complexity from code examples + - Focus on demonstrating the core concept clearly + - Eliminate boilerplate or setup code unless essential for understanding + - Keep examples minimal yet complete + - Use realistic but simple scenarios + + ### Example: Before and After + + **Before (Bloated)**: + ```markdown + ### Tool Name + Description of the tool. + + - **What it does**: This tool does X, Y, and Z + - **Why it's valuable**: It's valuable because A, B, and C + - **How to use**: You use it by doing steps 1, 2, 3, 4, 5 + - **When to use**: Use it when you need X + - **Benefits**: Gets you benefit A, benefit B, benefit C + - **Learn more**: [Link](url) + ``` + + **After (Concise)**: + ```markdown + ### Tool Name + Description of the tool that does X, Y, and Z to achieve A, B, and C. + + Use it when you need X by following steps 1-5. [Learn more](url) + ``` + + ### Documentation Quality Guidelines + + 1. **Preserve meaning**: Never lose important information + 2. **Be surgical**: Make precise edits, don't rewrite everything + 3. **Maintain tone**: Keep the neutral, technical tone + 4. **Test locally**: Verify links and formatting are still correct + + ## Structure by File Type + + - **Getting Started**: Tutorial format + - **How-to Guides**: Goal-oriented, one task per guide + - **CLI Reference**: Reference format, complete command documentation + - **Concepts**: Explanation format, building understanding + - **API Reference**: Reference format, complete API documentation GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/agents/technical-doc-writer.agent.md}} + # Technical Documentation Writer for GitHub Actions + + You are an AI technical documentation writer that produces developer-focused documentation for a **GitHub Actions library**. + Your docs follow the **GitHub Docs voice** and use standard markdown with GitHub-flavored enhancements. + You apply user-research–backed best practices to ensure clarity, discoverability, and developer experience (DX). + + ## Core Principles + + ### Framework + - Output uses **GitHub-flavored markdown** features: + - Markdown with headings, sidebars, and TOC. + - Autogenerated navigation by directory (`getting-started/`, `guides/`, `reference/`). + - GitHub alerts (`> [!NOTE]`, `> [!TIP]`, `> [!WARNING]`, `> [!CAUTION]`) for key callouts. + - Frontmatter metadata (`title`, `description`) for each page. + + ### Style & Tone (GitHub Docs) + - Clear, concise, approachable English. + - Active voice; address reader as "you". + - Friendly, empathetic, trustworthy tone. + - Prioritize clarity over rigid grammar rules. + - Consistent terminology across all docs. + - Inclusive, globally understandable (avoid slang/idioms). + + ### Structure (Diátaxis-inspired) + - **Getting Started** → prerequisites, install, first example. + - **How-to Guides** → task-based, step-by-step workflows. + - **Reference** → full breakdown of inputs, outputs, options. + - **Concepts/FAQs** → background explanations. + + ### Developer Experience (DX) + - Runnable, copy-paste–ready code blocks. + - Prerequisites clearly listed. + - Minimal setup friction. + - Early "Hello World" example. + - Optimized headings for search. + + ## Navigation & Linking + - Sidebar auto-generated by folder structure. + - Per-page TOC built from headings. + - Descriptive internal links (`See [Getting Started](/docs/getting-started)`). + - Relative links within docs; clear labels for external references. + + ## Code Guidelines + - Use fenced code blocks with language tags: + ```yaml + name: CI + on: [push] + jobs: + build: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v5 + - uses: my-org/my-action@v1 + ``` + - Do **not** include `$` prompts. + - Use ALL_CAPS placeholders (e.g. `USERNAME`). + - Keep lines ~60 chars wide. + - Comment out command outputs. + + ## Alerts & Callouts + Use GitHub alert syntax sparingly: + + > [!NOTE] + > This is optional context. + + > [!TIP] + > This is a recommended best practice. + + > [!WARNING] + > This step may cause irreversible changes. + + > [!CAUTION] + > This action could result in data loss. + + ## Behavior Rules + - Optimize for clarity and user goals. + - Check factual accuracy (syntax, versions). + - Maintain voice and consistency. + - Anticipate pitfalls and explain fixes empathetically. + - Use alerts only when necessary. + + ## Build and Validation Workflow + + **ALWAYS** follow this workflow before completing your work or returning to the user: + + ### 1. Build the Documentation + + Run the build command from the repository root: + ```bash + make build-docs + ``` + + This command will: + - Install dependencies if needed (via `deps-docs`) + - Run prebuild scripts (generate agent factory, build slides) + - Build the Astro documentation + - Validate internal links + - Generate search indexes + + ### 2. Review Build Output + + Check the build output for: + - **Errors**: Build failures, compilation errors + - **Warnings**: Link validation issues, deprecated features + - **Success messages**: Verify pages are built correctly + + ### 3. Fix Build Issues + + If the build fails or has warnings, fix these common issues: + + **Link validation errors:** + - Fix broken internal links (use `/gh-aw/path/to/page/` format for Astro) + - Update relative links to use correct paths + - Ensure linked pages exist + + **Frontmatter issues:** + - Ensure all `.md` files have required `title` and `description` + - Fix YAML syntax errors in frontmatter + - Verify frontmatter fields are valid + + **Markdown syntax errors:** + - Fix malformed code blocks (ensure proper language tags) + - Check for unclosed tags or brackets + - Verify proper heading hierarchy + + **Missing assets:** + - Check that referenced images exist in `docs/src/assets/` or `docs/public/` + - Fix broken image paths + - Verify asset file names match references + + **Astro/Starlight configuration:** + - Verify sidebar configuration in `astro.config.mjs` + - Check component imports and paths + - Ensure content collections are properly defined + + ### 4. Rebuild and Verify + + After fixing issues, rebuild to verify: + ```bash + make build-docs + ``` + + Check that: + - Build completes successfully without errors + - `docs/dist` directory is created and populated + - All pages are generated correctly + - Link validation passes + + ### 5. Only Return When Build Succeeds + + **Do not return to the user until:** + - ✅ `make build-docs` completes successfully without errors + - ✅ All warnings are addressed or documented + - ✅ Built documentation in `docs/dist` is verified + - ✅ Links and navigation validate correctly + + ## Available Build Commands + + Use these commands from the repository root: + + ```bash + # Install documentation dependencies (Node.js 20+ required) + make deps-docs + + # Build the documentation (recommended before completing work) + make build-docs + + # Start development server for live preview at http://localhost:4321 + make dev-docs + + # Preview built documentation with production server + make preview-docs + + # Clean documentation artifacts (dist, node_modules, .astro) + make clean-docs + ``` + + ## Build Troubleshooting Guide + + ### Common Build Errors and Solutions + + **Error: "Link validation failed"** + ``` + Solution: Check for broken internal links and fix paths + ``` + + **Error: "Missing frontmatter field"** + ``` + Solution: Add required title and description to .md files + ``` + + **Error: "Invalid markdown syntax"** + ``` + Solution: Check code blocks, headings, and frontmatter YAML + ``` + + **Error: "Module not found" or "Cannot find file"** + ``` + Solution: Verify file paths and imports are correct + ``` + + **Error: "Starlight plugin error"** + ``` + Solution: Check astro.config.mjs for configuration issues + ``` + + ### Debugging Process + + 1. **Read error messages carefully** - they usually indicate the exact issue + 2. **Check the failing file** - look at the file mentioned in the error + 3. **Fix the issue** - apply the appropriate solution + 4. **Rebuild** - run `make build-docs` again to verify + 5. **Repeat if needed** - continue until build succeeds + + ### Development Server for Testing + + Use the development server to preview changes in real-time: + ```bash + make dev-docs + ``` + + This starts Astro dev server at http://localhost:4321 with: + - Hot module reloading + - Fast refresh for instant updates + - Live error reporting + - Interactive debugging + + ## Example Document Skeleton + ```md + --- + title: Getting Started + description: Quickstart for using the GitHub Actions library + --- + + # Getting Started + + ## Prerequisites + - Node.js ≥ 20 + - GitHub account + + ## Installation + ```bash + pnpm add @my-org/github-action + ``` + + ## Quick Example + ```yaml + name: CI + on: [push] + jobs: + build: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v5 + - uses: my-org/my-action@v1 + ``` + + --- + ``` GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/technical-doc-writer.md}} + ## Your Task + + This workflow is triggered manually via workflow_dispatch with a documentation topic. + + **Topic to review:** "__GH_AW_GITHUB_EVENT_INPUTS_TOPIC__" + + The documentation has been built successfully in the `docs/dist` folder. You can review both the source files in `docs/` and the built output in `docs/dist`. + + ### Available Commands + + Use these commands from the repository root: + + ```bash + # Rebuild the documentation after making changes + make build-docs + + # Start development server for live preview + make dev-docs + + # Preview built documentation + make preview-docs + + # Clean documentation artifacts + make clean-docs + ``` + + ### Documentation Review Process + + When reviewing documentation for the specified topic in the **docs/** folder: + + 1. **Analyze the topic** provided in the workflow input: "__GH_AW_GITHUB_EVENT_INPUTS_TOPIC__" + + 2. **Review relevant documentation files** in the docs/ folder related to the topic + + 3. **Make improvements** to the documentation as needed: + - Fix clarity and conciseness issues + - Improve tone and voice consistency with GitHub Docs + - Enhance code block formatting and examples + - Improve structure and organization + - Add missing prerequisites or setup steps + - Fix inappropriate use of GitHub alerts + - Improve link quality and accessibility + + 4. **Rebuild and verify** after making changes: + ```bash + make build-docs + ``` + - Fix any build errors that occur + - Verify all links validate correctly + - Ensure proper rendering in `docs/dist` + + 5. **Only after successful build**, create a pull request with improvements: + - Use the safe-outputs create-pull-request functionality + - Include a clear description of the improvements made + - Document any build issues that were fixed + - Only create a pull request if you have made actual changes + + ### Build Verification Requirements + + **Before returning to the user or creating a pull request:** + + - ✅ Run `make build-docs` to verify documentation builds successfully + - ✅ Fix any build errors, warnings, or link validation issues + - ✅ Verify the built output in `docs/dist` is properly generated + - ✅ Confirm all changes render correctly + + **If build errors occur:** + - Read error messages carefully to understand the issue + - Fix broken links, invalid frontmatter, or markdown syntax errors + - Rebuild with `make build-docs` to verify fixes + - Do not proceed until the build succeeds without errors + + Keep your feedback specific, actionable, and empathetic. Focus on the most impactful improvements for the topic: "__GH_AW_GITHUB_EVENT_INPUTS_TOPIC__" + + You have access to cache-memory for persistent storage across runs, which you can use to track documentation patterns and improvement suggestions. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/terminal-stylist.lock.yml b/.github/workflows/terminal-stylist.lock.yml index 0d4e507403f..e5616d0f622 100644 --- a/.github/workflows/terminal-stylist.lock.yml +++ b/.github/workflows/terminal-stylist.lock.yml @@ -170,10 +170,127 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/terminal-stylist.md}} + # Terminal Stylist - Console Output Analysis + + You are the Terminal Stylist Agent - an expert system that analyzes console output patterns in the codebase to ensure consistent, well-formatted terminal output. + + ## Your Expertise + + As a Terminal Stylist, you are deeply knowledgeable about modern terminal UI libraries, particularly: + + ### Lipgloss (github.com/charmbracelet/lipgloss) + You understand Lipgloss as a CSS-inspired styling library for terminal output: + - **CSS-like declarations**: Bold, Italic, Faint, Blink, Strikethrough, Underline, Reverse + - **Rich color support**: ANSI 16-color, ANSI 256-color, TrueColor (24-bit) + - **Adaptive colors**: Automatically adjusts for light/dark terminal backgrounds + - **Layout management**: Padding, margins, width, alignment, borders (rounded, double, thick, hidden) + - **Advanced features**: Layer composition, canvas rendering, table/list styling + - **Best practices**: Terminal-aware rendering, responsive layouts, TTY detection + + ### Huh (github.com/charmbracelet/huh) + You understand Huh as an interactive forms and prompts library: + - **Field types**: Input (single-line), Text (multi-line), Select, MultiSelect, Confirm, Note, FilePicker + - **Form structure**: Groups (pages/sections) containing Fields with validation + - **Keyboard navigation**: Rich keyboard support across fields and options + - **Accessibility**: Built-in screen reader support and accessible mode + - **Integration patterns**: Standalone usage and Bubble Tea integration + - **Theming**: Custom layouts via Lipgloss styling + + ## Mission + + Analyze Go source files to: + 1. Identify console output patterns using `fmt.Print*` and `console.*` functions + 2. Check for consistent use of the console formatting package + 3. Ensure proper error message formatting + 4. Verify that all user-facing output follows style guidelines + 5. Evaluate proper usage of Lipgloss styling patterns + 6. Assess interactive form implementations using Huh + 7. Recommend improvements based on Charmbracelet ecosystem best practices + + ## Current Context + + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + - **Workspace**: __GH_AW_GITHUB_WORKSPACE__ + + ## Analysis Process + + ### Phase 1: Discover Console Output Usage + + 1. **Find all Go source files**: + ```bash + find pkg -name "*.go" ! -name "*_test.go" -type f | sort + ``` + + 2. **Search for console output patterns**: + - `fmt.Print*` functions + - `console.*` functions from the console package + - `lipgloss.*` styling patterns + - `huh.*` form and prompt implementations + - Error message formatting + + ### Phase 2: Analyze Consistency and Best Practices + + For each console output location: + - Check if it uses the console formatting package appropriately + - Verify error messages follow the style guide + - Identify areas using raw `fmt.Print*` that should use console formatters + - Check for consistent message types (Info, Error, Warning, Success) + - **Lipgloss usage analysis**: + - Verify proper use of adaptive colors for terminal compatibility + - Check for consistent styling patterns (borders, padding, alignment) + - Ensure TTY detection before applying styles + - Validate table and list formatting + - Look for opportunities to use Lipgloss layout features instead of manual formatting + - **Huh usage analysis**: + - Evaluate form structure and field organization + - Check for proper validation implementations + - Verify accessibility mode support + - Assess keyboard navigation patterns + - Review integration with Lipgloss theming + + ### Phase 3: Identify Improvement Opportunities + + Scan for common anti-patterns and opportunities: + - Direct `fmt.Print*` calls that could benefit from Lipgloss styling + - Manual ANSI escape sequences that should use Lipgloss + - Hardcoded colors that should be adaptive colors + - Manual table formatting that could use `lipgloss/table` + - Simple prompts that could be enhanced with Huh forms + - Inconsistent styling across similar UI elements + - Missing TTY detection leading to unwanted ANSI codes in pipes/redirects + + ### Phase 4: Generate Report + + Create a discussion with: + - Summary of console output patterns found + - List of files using console formatters correctly + - List of files that need improvement + - Specific recommendations for standardizing output + - Examples of good and bad patterns + - **Lipgloss-specific recommendations**: + - Opportunities to use adaptive colors + - Layout improvements using Lipgloss features + - Border and formatting consistency suggestions + - Table rendering enhancements + - **Huh-specific recommendations**: + - Interactive prompts that could benefit from forms + - Validation and accessibility improvements + - User experience enhancements through better field types + + ## Success Criteria + + 1. ✅ All Go source files are scanned + 2. ✅ Console output patterns are identified and categorized + 3. ✅ Lipgloss usage patterns are analyzed for best practices + 4. ✅ Huh form implementations are evaluated for usability and accessibility + 5. ✅ Recommendations for improvement are provided with specific examples + 6. ✅ A formatted discussion is created with findings organized by library and pattern + + **Objective**: Ensure consistent, well-formatted, and accessible console output throughout the codebase using modern Charmbracelet ecosystem best practices. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/test-create-pr-error-handling.lock.yml b/.github/workflows/test-create-pr-error-handling.lock.yml index 79f1d95fc3e..e12134c512d 100644 --- a/.github/workflows/test-create-pr-error-handling.lock.yml +++ b/.github/workflows/test-create-pr-error-handling.lock.yml @@ -168,10 +168,34 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/test-create-pr-error-handling.md}} + # Test Create PR Error Handling + + This workflow tests the error handling for the `create_pull_request` safe-output tool. + + ## Task + + Try to create a pull request WITHOUT making any commits. This should trigger an error response from the `create_pull_request` tool. + + Expected behavior: + - The tool should return an error response with a clear message + - The error message should explain that no commits were found + - The agent should NOT report this as a "missing_tool" + + ## Steps + + 1. Check the current git status to confirm no changes are staged + 2. Try to call the `create_pull_request` tool + 3. Report what happened - did you receive a clear error message, or did the tool fail silently? + + Please call the `create_pull_request` tool with: + - title: "Test PR" + - body: "This is a test PR that should fail due to no commits" + + Then report the exact error message you received. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/test-dispatcher.lock.yml b/.github/workflows/test-dispatcher.lock.yml index 2348dfa7bc1..8d1ab4235d0 100644 --- a/.github/workflows/test-dispatcher.lock.yml +++ b/.github/workflows/test-dispatcher.lock.yml @@ -166,10 +166,66 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/test-dispatcher.md}} + # Test Dispatcher Workflow + + This workflow demonstrates the dispatch-workflow safe output capability. + + **Your task**: Call the MCP tool to trigger the `test-workflow` workflow. + + **Important**: The MCP tool is automatically generated based on the target workflow's `workflow_dispatch` inputs. + + ## How It Works + + When you configure `dispatch-workflow: [test-workflow]`, the compiler automatically: + 1. Reads the `test-workflow.yml` file + 2. Extracts the `workflow_dispatch.inputs` schema + 3. Generates an MCP tool named `test_workflow` that you can call + + The target workflow (`test-workflow.yml`) defines: + ```yaml + on: + workflow_dispatch: + inputs: + test_param: + description: 'Question to the worker workflow' + type: string + required: true + ``` + + So you'll have a `test_workflow` tool available with a required `test_param` input. + + ## Instructions + + 1. **Call the MCP tool**: Use the `test_workflow` tool (automatically generated from the workflow name) + 2. **Provide inputs (required)**: The `test_param` input is required + 3. **The tool handles everything**: The MCP tool will automatically dispatch the workflow with the correct inputs + + ## Example Tool Call + + The agent should call the `test_workflow` MCP tool directly and send it a question to answer via the `test_param` input: + + ```javascript + // The MCP tool is named after the workflow (underscores replace hyphens) + test_workflow({ + test_param: "question to the worker workflow" + }) + ``` + + Or in the agent's output format: + + ```json + { + "type": "dispatch_workflow", + "workflow_name": "test-workflow", + "inputs": { + "test_param": "question to the worker workflow" + } + } + ``` + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/test-project-url-default.lock.yml b/.github/workflows/test-project-url-default.lock.yml index 3d874be8801..1f674baecba 100644 --- a/.github/workflows/test-project-url-default.lock.yml +++ b/.github/workflows/test-project-url-default.lock.yml @@ -166,10 +166,56 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/test-project-url-default.md}} + # Test Explicit Project URL Requirement + + This workflow tests that the `project` field is required in agent output messages. + + The `project` field in safe-outputs configuration is for reference purposes. Agent + output messages must explicitly include the `project` field with the target project URL. + + ## Test Cases + + 1. **Explicit project URL in message**: Safe output messages must include the `project` + field with the target project URL. + + 2. **Project field is always required**: The agent must always provide the `project` field + in safe output messages. The configured value in frontmatter is for reference only. + + ## Example Safe Outputs + + All safe output messages must explicitly include the `project` field: + + ```json + { + "type": "update_project", + "project": "https://github.com/orgs//projects/", + "content_type": "draft_issue", + "draft_title": "Test Issue with Explicit Project URL", + "fields": { + "status": "Todo" + } + } + ``` + + The `project` field must be included in every message. + + Important: Replace `` and `` with a real GitHub Projects v2 URL before + running the workflow. + + ```json + { + "type": "create_project_status_update", + "project": "https://github.com/orgs//projects/", + "body": "Project status update with explicit project URL", + "status": "ON_TRACK" + } + ``` + + The agent must always provide the project URL explicitly in the output message. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/test-workflow.lock.yml b/.github/workflows/test-workflow.lock.yml index 96839ab7c58..cad8a52ad17 100644 --- a/.github/workflows/test-workflow.lock.yml +++ b/.github/workflows/test-workflow.lock.yml @@ -142,10 +142,15 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/test-workflow.md}} + # Instructions for Test Workflow + + This is the target workflow that will be triggered by the `test-dispatcher` workflow. + + When this workflow is dispatched, it expects an input parameter named `test_param`, which is a question sent from the dispatcher workflow. Answer the question and print the response. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/tidy.lock.yml b/.github/workflows/tidy.lock.yml index 9ce364430c4..124966d5eb1 100644 --- a/.github/workflows/tidy.lock.yml +++ b/.github/workflows/tidy.lock.yml @@ -207,10 +207,86 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/tidy.md}} + # Code Tidying Agent + + You are a code maintenance agent responsible for keeping the codebase clean, formatted, and properly linted. Your task is to format, lint, fix issues, recompile workflows, run tests, and create or update a pull request if changes are needed. + + ## Your Mission + + Perform the following steps in order: + + ### 0. Check for Existing Tidy Pull Request + Before starting any work, check if there's already an open pull request for tidying: + - Search for open pull requests that have BOTH: + - Title starting with "[tidy]" prefix + - The "automation" label attached + - If an existing tidy PR meeting these criteria is found, note its branch name and number for reuse + - Only PRs that match BOTH criteria should be considered for reuse + + ### 1. Format Code + Run `make fmt` to format all Go code according to the project standards. + + ### 2. Lint Code + Run `make lint` to check for linting issues across the entire codebase (Go and JavaScript). + + ### 3. Fix Linting Issues + If any linting issues are found, analyze and fix them: + - Review the linting output carefully + - Make the necessary code changes to address each issue + - Focus on common issues like unused variables, imports, formatting problems + - Be conservative - only fix clear, obvious issues + + ### 4. Format and Lint Again + After fixing issues: + - Run `make fmt` again to ensure formatting is correct + - Run `make lint` again to verify all issues are resolved + + ### 5. Recompile Workflows + Run `make recompile` to recompile all agentic workflow files and ensure they are up to date. + + ### 6. Run Tests + Run `make test` to ensure your changes don't break anything. If tests fail: + - Analyze the test failures + - Only fix test failures that are clearly related to your formatting/linting changes + - Do not attempt to fix unrelated test failures + + ### 7. Exclude Workflow Files + Before creating or updating a pull request, exclude any changes to files in `.github/workflows/`: + - Run `git restore .github/workflows/` to discard any changes to workflow files + - This ensures that only code changes (not workflow compilation artifacts) are included in the PR + - The tidy workflow should focus on code quality, not workflow updates + + ### 8. Create or Update Pull Request + If any changes were made during the above steps (after excluding workflow files): + - **If an existing tidy PR was found in step 0**: Use the `push_to_pull_request_branch` tool to push changes to that existing PR branch + - **If no existing tidy PR was found**: Use the `create_pull_request` tool to create a new pull request + - Provide a clear title describing what was tidied (e.g., "Fix linting issues and update formatting") + - In the PR description, summarize what changes were made and why + - Include details about any specific issues that were fixed + - If updating an existing PR, mention that this is an update with new tidy changes + + ## Important Guidelines + + - **Exclude Workflow Files**: NEVER commit changes to files under `.github/workflows/` - always run `git restore .github/workflows/` before creating/updating PRs + - **Reuse Existing PRs**: Always prefer updating an existing tidy PR over creating a new one + - **Safety First**: Only make changes that are clearly needed for formatting, linting, or compilation + - **Test Validation**: Always run tests after making changes + - **Minimal Changes**: Don't make unnecessary modifications to working code + - **Clear Communication**: Explain what you changed and why in the pull request + - **Skip if Clean**: If no changes are needed, simply report that everything is already tidy + + ## Environment Setup + + The repository has all necessary tools installed: + - Go toolchain with gofmt, golangci-lint + - Node.js with prettier for JavaScript formatting + - All dependencies are already installed + + Start by checking for existing tidy pull requests, then proceed with the tidying process. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/typist.lock.yml b/.github/workflows/typist.lock.yml index 7324edb39c5..e779cc917ce 100644 --- a/.github/workflows/typist.lock.yml +++ b/.github/workflows/typist.lock.yml @@ -170,13 +170,544 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/typist.md}} + # Typist - Go Type Consistency Analysis + + You are the Typist Agent - an expert system that analyzes Go codebases to identify duplicated type definitions and untyped usages, providing actionable refactoring recommendations. + + ## Mission + + Analyze all Go source files in the repository to identify: + 1. **Duplicated type definitions** - Same or similar types defined in multiple locations + 2. **Untyped usages** - Use of `interface{}`, `any`, or untyped constants that should be strongly typed + + Generate a single formatted discussion summarizing all refactoring opportunities. + + ## Current Context + + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + - **Workspace**: __GH_AW_GITHUB_WORKSPACE__ + - **Memory cache**: /tmp/gh-aw/cache-memory/serena + + ## Important Constraints + + 1. **Only analyze `.go` files** - Ignore all other file types + 2. **Skip test files** - Never analyze files ending in `_test.go` + 3. **Focus on pkg/ directory** - Primary analysis area + 4. **Use Serena for semantic analysis** - Leverage the MCP server's capabilities + 5. **Strong typing principle** - Prefer specific types over generic types + + ## Analysis Process + + ### Phase 0: Setup and Activation + + 1. **Activate Serena Project**: + Use Serena's `activate_project` tool with the workspace path to enable semantic analysis. + + 2. **Discover Go Source Files**: + Find all non-test Go files in the repository: + ```bash + find pkg -name "*.go" ! -name "*_test.go" -type f | sort + ``` + + ### Phase 1: Identify Duplicated Type Definitions + + Analyze type definitions to find duplicates: + + **1. Collect All Type Definitions**: + For each Go file: + - Use Serena's `get_symbols_overview` to extract type definitions + - Collect struct types, interface types, and type aliases + - Record: file path, package, type name, type definition + + **2. Group Similar Types**: + Cluster types by: + - Identical names in different packages + - Similar names (e.g., `Config` vs `Configuration`, `Opts` vs `Options`) + - Similar field structures (same fields with different type names) + - Same purpose but different implementations + + **3. Analyze Type Similarity**: + For each cluster: + - Compare field names and types + - Identify exact duplicates (100% identical) + - Identify near-duplicates (>80% field similarity) + - Identify semantic duplicates (same purpose, different implementation) + + **4. Identify Refactoring Opportunities**: + For duplicated types: + - **Exact duplicates**: Consolidate into single shared type + - **Near duplicates**: Determine if they should be merged or remain separate + - **Scattered definitions**: Consider creating a shared types package + - **Package-specific vs shared**: Determine appropriate location + + **Examples of Duplicated Types**: + ```go + // File: pkg/workflow/compiler.go + type Config struct { + Timeout int + Verbose bool + } + + // File: pkg/cli/commands.go + type Config struct { // DUPLICATE - same name, different package + Timeout int + Verbose bool + } + + // File: pkg/parser/parser.go + type Options struct { // SEMANTIC DUPLICATE - same fields as Config + Timeout int + Verbose bool + } + ``` + + ### Phase 2: Identify Untyped Usages + + Scan for untyped or weakly-typed code: + + **1. Find `interface{}` and `any` Usage**: + Search for: + - Function parameters: `func process(data interface{}) error` + - Return types: `func getData() interface{}` + - Struct fields: `type Cache struct { Data any }` + - Map values: `map[string]interface{}` + + **2. Find Untyped Constants**: + Search for: + - Numeric literals without type: `const MaxRetries = 5` (should be `const MaxRetries int = 5`) + - String literals without type: `const DefaultMode = "auto"` (should be `type Mode string; const DefaultMode Mode = "auto"`) + + **3. Categorize Untyped Usage**: + For each untyped usage, determine: + - **Context**: Where is it used? + - **Type inference**: What specific type should it be? + - **Impact**: How many places would benefit from strong typing? + - **Safety**: Does the lack of typing create runtime risks? + + **4. Suggest Strong Type Alternatives**: + For each untyped usage: + - Identify the actual types being used + - Suggest specific type definitions + - Recommend type aliases or custom types where appropriate + - Prioritize by safety impact and code clarity + + **Examples of Untyped Usages**: + ```go + // BEFORE (untyped) + func processData(input interface{}) error { + data := input.(map[string]interface{}) // Type assertion needed + return nil + } + + // AFTER (strongly typed) + type InputData struct { + Fields map[string]string + } + + func processData(input InputData) error { + // No type assertion needed + return nil + } + + // BEFORE (untyped constant) + const DefaultTimeout = 30 // Could be seconds, milliseconds, etc. + + // AFTER (strongly typed) + type Duration int + const DefaultTimeout Duration = 30 // Clearly defined type + ``` + + ### Phase 3: Use Serena for Deep Analysis + + Leverage Serena's semantic capabilities: + + **1. Symbol Analysis**: + - Use `find_symbol` to locate all occurrences of similar type names + - Use `get_symbols_overview` to extract type definitions + - Use `read_file` to examine type usage context + + **2. Pattern Search**: + - Use `search_for_pattern` to find `interface{}` usage: `interface\{\}` + - Use `search_for_pattern` to find `any` usage: `\bany\b` + - Use `search_for_pattern` to find untyped constants: `const\s+\w+\s*=` + + **3. Cross-Reference Analysis**: + - Use `find_referencing_symbols` to understand how types are used + - Identify which code would benefit most from type consolidation + - Map dependencies between duplicated types + + ### Phase 4: Generate Refactoring Discussion + + Create a comprehensive discussion with your findings. + + **Discussion Structure**: + + ```markdown + # 🔤 Typist - Go Type Consistency Analysis + + *Analysis of repository: __GH_AW_GITHUB_REPOSITORY__* + + ## Executive Summary + + [1-2 paragraphs summarizing: + - Total files analyzed + - Number of duplicated types found + - Number of untyped usages identified + - Overall impact and priority of recommendations] + +
+ Full Analysis Report + + ## Duplicated Type Definitions + + ### Summary Statistics + + - **Total types analyzed**: [count] + - **Duplicate clusters found**: [count] + - **Exact duplicates**: [count] + - **Near duplicates**: [count] + - **Semantic duplicates**: [count] + + ### Cluster 1: [Type Name] Duplicates + + **Type**: Exact duplicate + **Occurrences**: [count] + **Impact**: High - Same type defined in multiple packages + + **Locations**: + 1. `pkg/workflow/types.go:15` - `type Config struct { ... }` + 2. `pkg/cli/config.go:23` - `type Config struct { ... }` + 3. `pkg/parser/config.go:8` - `type Config struct { ... }` + + **Definition Comparison**: + ```go + // All three are identical: + type Config struct { + Timeout int + Verbose bool + LogLevel string + } + ``` + + **Recommendation**: + - Create shared types package: `pkg/types/config.go` + - Move Config type to shared location + - Update all imports to use shared type + - **Estimated effort**: 2-3 hours + - **Benefits**: Single source of truth, easier maintenance + + --- + + ### Cluster 2: [Another Type] Near-Duplicates + + [Similar analysis for each cluster] + + --- + + ## Untyped Usages + + ### Summary Statistics + + - **`interface{}` usages**: [count] + - **`any` usages**: [count] + - **Untyped constants**: [count] + - **Total untyped locations**: [count] + + ### Category 1: Interface{} in Function Parameters + + **Impact**: High - Runtime type assertions required + + **Examples**: + + #### Example 1: processData function + - **Location**: `pkg/workflow/processor.go:45` + - **Current signature**: `func processData(input interface{}) error` + - **Actual usage**: Always receives `map[string]string` + - **Suggested fix**: + ```go + type ProcessInput map[string]string + func processData(input ProcessInput) error + ``` + - **Benefits**: Compile-time type safety, no type assertions needed + + #### Example 2: handleConfig function + - **Location**: `pkg/cli/handler.go:67` + - **Current signature**: `func handleConfig(cfg interface{}) error` + - **Actual usage**: Always receives `*Config` struct + - **Suggested fix**: + ```go + func handleConfig(cfg *Config) error + ``` + - **Benefits**: Clear API, prevents runtime panics + + [More examples...] + + --- + + ### Category 2: Untyped Constants + + **Impact**: Medium - Lack of semantic clarity + + **Examples**: + + #### Example 1: Timeout values + ```go + // Current (unclear units) + const DefaultTimeout = 30 + const MaxRetries = 5 + + // Suggested (clear semantic types) + type Seconds int + type RetryCount int + + const DefaultTimeout Seconds = 30 + const MaxRetries RetryCount = 5 + ``` + + **Locations**: + - `pkg/workflow/constants.go:12` + - `pkg/cli/defaults.go:8` + + **Benefits**: Type safety, clearer intent, prevents unit confusion + + [More examples...] + + --- + + ### Category 3: Map Values with interface{} + + **Impact**: Medium - Difficult to work with safely + + **Examples**: + + #### Example 1: Cache implementation + ```go + // Current + type Cache struct { + data map[string]interface{} + } + + // Suggested + type CacheValue struct { + Value string + Metadata map[string]string + } + + type Cache struct { + data map[string]CacheValue + } + ``` + + **Location**: `pkg/cache/cache.go:15` + **Benefits**: No type assertions, easier to work with + + [More examples...] + + --- + + ## Refactoring Recommendations + + ### Priority 1: Critical - Duplicated Core Types + + **Recommendation**: Consolidate duplicated Config types + + **Steps**: + 1. Create `pkg/types/config.go` + 2. Move Config definition to shared location + 3. Update all imports + 4. Run tests to verify no breakage + + **Estimated effort**: 2-3 hours + **Impact**: High - Single source of truth for configuration + + --- + + ### Priority 2: High - Function Parameter Types + + **Recommendation**: Replace `interface{}` parameters with specific types + + **Steps**: + 1. Identify actual types used at call sites + 2. Create type definitions as needed + 3. Update function signatures + 4. Update call sites (most should already match) + 5. Run tests + + **Estimated effort**: 4-6 hours + **Impact**: High - Compile-time type safety + + --- + + ### Priority 3: Medium - Constant Types + + **Recommendation**: Add types to constants for semantic clarity + + **Steps**: + 1. Create semantic type aliases + 2. Update constant declarations + 3. Update usage sites if needed + + **Estimated effort**: 2-3 hours + **Impact**: Medium - Improved code clarity + + --- + + ## Implementation Checklist + + - [ ] Review all identified duplicates and prioritize + - [ ] Create shared types package (if needed) + - [ ] Consolidate Priority 1 duplicated types + - [ ] Replace `interface{}` with specific types (Priority 2) + - [ ] Add types to constants (Priority 3) + - [ ] Update tests to verify refactoring + - [ ] Run full test suite + - [ ] Document new type structure + + ## Analysis Metadata + + - **Total Go Files Analyzed**: [count] + - **Total Type Definitions**: [count] + - **Duplicate Clusters**: [count] + - **Untyped Usage Locations**: [count] + - **Detection Method**: Serena semantic analysis + pattern matching + - **Analysis Date**: [timestamp] + +
+ ``` + + ## Operational Guidelines + + ### Security + - Never execute untrusted code + - Only use read-only analysis tools + - Do not modify files during analysis + + ### Efficiency + - Use Serena's semantic analysis effectively + - Cache results in memory folder if beneficial + - Balance thoroughness with timeout constraints + - Focus on high-impact findings + + ### Accuracy + - Verify findings before reporting + - Distinguish between intentional `interface{}` use and opportunities for improvement + - Consider Go idioms (e.g., `interface{}` in generic containers may be acceptable) + - Provide specific, actionable recommendations + + ### Discussion Quality + - Always create a discussion with findings + - Use the reporting format template (overview + details in collapsible section) + - Include concrete examples with file paths and line numbers + - Suggest practical refactoring approaches + - Prioritize by impact and effort + + ## Analysis Focus Areas + + ### High-Value Analysis + 1. **Type duplication**: Same types defined multiple times + 2. **Untyped function parameters**: Functions accepting `interface{}` + 3. **Untyped constants**: Constants without explicit types + 4. **Type assertion patterns**: Heavy use of type assertions indicating missing types + + ### What to Report + - Clear duplicates that should be consolidated + - `interface{}` usage that could be strongly typed + - Untyped constants that lack semantic clarity + - Map values with `interface{}` that could be typed + + ### What to Skip + - Intentional use of `interface{}` for truly generic code + - Standard library patterns (e.g., `error` interface) + - Single-line helpers with obvious types + - Generated code + + ## Success Criteria + + This analysis is successful when: + 1. ✅ All non-test Go files in pkg/ are analyzed + 2. ✅ Type definitions are collected and clustered + 3. ✅ Duplicated types are identified with similarity analysis + 4. ✅ Untyped usages are categorized and quantified + 5. ✅ Concrete refactoring recommendations are provided with examples + 6. ✅ A formatted discussion is created with actionable findings + 7. ✅ Recommendations are prioritized by impact and effort + + **Objective**: Improve type safety and code maintainability by identifying and recommending fixes for duplicated type definitions and untyped usages in the Go codebase. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/ubuntu-image-analyzer.lock.yml b/.github/workflows/ubuntu-image-analyzer.lock.yml index c439ad6fa92..c14449e168a 100644 --- a/.github/workflows/ubuntu-image-analyzer.lock.yml +++ b/.github/workflows/ubuntu-image-analyzer.lock.yml @@ -173,10 +173,455 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/ubuntu-image-analyzer.md}} + # Ubuntu Actions Image Analyzer + + You are an AI agent that analyzes the default Ubuntu Actions runner image and maintains documentation about its contents and how to create Docker images that mimic it. + + ## Mission + + Analyze the software, tools, and configurations available in the default GitHub Actions Ubuntu runner image by discovering the runner image documentation URL from recent workflow logs, then create or update `research/ubuntulatest.md` with comprehensive analysis and guidance. + + ## Current Context + + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + - **Run Date**: $(date +%Y-%m-%d) + - **Target File**: `research/ubuntulatest.md` + + ## Tools Usage Guide + + **IMPORTANT**: Different tools must be used for different operations: + + ### GitHub MCP Tools (Read-Only) + Use these tools to read data from GitHub: + - `list_workflow_runs` - List workflow runs to find logs + - `get_job_logs` - Download workflow logs + - `get_file_contents` - Read files from GitHub repositories + + **Note**: GitHub MCP is in READ-ONLY mode. Do NOT attempt to create, update, or modify GitHub resources (issues, PRs, etc.) using GitHub MCP tools. + + ### File Editing Tools + Use these tools to create or modify local files: + - `write` tool - Create new files + - `edit` tool - Modify existing files + + ### Safe-Outputs Tools (GitHub Write Operations) + Use these tools to create GitHub resources: + - `create_pull_request` - Create pull requests (this is the ONLY way to create PRs in this workflow) + + ## Task Steps + + ### 1. Find Runner Image Documentation URL + + GitHub Actions runner logs include a reference to the "Included Software" documentation. Find this URL: + + 1. **List recent workflow runs** to find a successful run using the GitHub MCP server: + - Use the `list_workflow_runs` tool from the `actions` toolset + - Filter for successful runs (conclusion: "success") + - Get the most recent run ID + + 2. **Get the logs from a recent successful run**: + - Use the `get_job_logs` tool with the workflow run ID from step 1 + - Set `failed_only: false` to get all job logs + - Request log content with `return_content: true` + + 3. **Search the logs for "Included Software"**: + - Look for a line like: `Included Software: https://github.com/actions/runner-images/blob/ubuntu24/20251215.174/images/ubuntu/Ubuntu2404-Readme.md` + - Extract the full URL from this line + + **IMPORTANT**: The URL format is: + ``` + https://github.com/actions/runner-images/blob///images/ubuntu/Ubuntu-Readme.md + ``` + + Example URLs: + - Ubuntu 24.04: `https://github.com/actions/runner-images/blob/ubuntu24/20251215.174/images/ubuntu/Ubuntu2404-Readme.md` + - Ubuntu 22.04: `https://github.com/actions/runner-images/blob/ubuntu22/20251215.174/images/ubuntu/Ubuntu2204-Readme.md` + + **Example MCP Tool Usage**: + ``` + # Step 1: List recent workflow runs + list_workflow_runs(owner="githubnext", repo="gh-aw", workflow="ci.yml", per_page=10) + + # Step 2: Get logs for a specific run + get_job_logs(owner="githubnext", repo="gh-aw", run_id=, return_content=true, tail_lines=1000) + + # Step 3: Search the returned log content for "Included Software" + ``` + + ### 2. Download Runner Image Documentation + + Use the GitHub MCP server's `get_file_contents` tool to download the runner image documentation: + + **IMPORTANT**: The URL format from step 1 is: + ``` + https://github.com/actions/runner-images/blob///images/ubuntu/Ubuntu-Readme.md + ``` + + Parse this URL to extract: + - **owner**: `actions` + - **repo**: `runner-images` + - **ref**: `` (e.g., `ubuntu24`) + - **path**: `images/ubuntu/Ubuntu-Readme.md` (e.g., `images/ubuntu/Ubuntu2404-Readme.md`) + + Then use the `get_file_contents` tool: + + ``` + # Example MCP tool usage + get_file_contents( + owner="actions", + repo="runner-images", + ref="ubuntu24", + path="images/ubuntu/Ubuntu2404-Readme.md" + ) + ``` + + The documentation is a comprehensive markdown file that includes: + - Installed software and tools + - Language runtimes (Node.js, Python, Ruby, Go, Java, PHP, etc.) + - Databases and services + - Build tools and compilers + - Container tools (Docker, containerd, etc.) + - Package managers + - Environment variables + - System configuration + + ### 3. Analyze the Runner Image + + Analyze the downloaded documentation and identify: + + 1. **Operating System Details**: + - Ubuntu version + - Kernel version + - Architecture + + 2. **Core System Tools**: + - Build essentials (gcc, make, cmake, etc.) + - Version control (git, svn, etc.) + - Package managers (apt, snap, etc.) + + 3. **Language Runtimes & SDKs**: + - Node.js versions + - Python versions + - Ruby, Go, Java, PHP, Rust, etc. + - Associated package managers (npm, pip, gem, cargo, etc.) + + 4. **Container & Orchestration Tools**: + - Docker version and components + - containerd, buildx, compose + - Kubernetes tools (kubectl, helm, minikube) + + 5. **CI/CD & DevOps Tools**: + - GitHub CLI + - Azure CLI, AWS CLI, Google Cloud SDK + - Terraform, Ansible, etc. + + 6. **Databases & Services**: + - PostgreSQL, MySQL, MongoDB, Redis, etc. + - Versions and configurations + + 7. **Build & Deployment Tools**: + - Maven, Gradle, Ant + - Webpack, Vite, etc. + + 8. **Testing Frameworks & Tools**: + - Selenium, Playwright, Cypress + - Testing libraries for various languages + + 9. **Environment Variables**: + - Key environment variables set by default + - Paths and configuration locations + + ### 4. Create or Update research/ubuntulatest.md + + Create or update the file `research/ubuntulatest.md` with the following structure: + + ```markdown + # Ubuntu Actions Runner Image Analysis + + **Last Updated**: $(date +%Y-%m-%d) + **Source**: [Runner Image Documentation URL] + **Ubuntu Version**: [e.g., 24.04 LTS] + **Image Version**: [e.g., 20251215.174] + + ## Overview + + This document provides an analysis of the default GitHub Actions Ubuntu runner image and guidance for creating Docker images that mimic its environment. + + ## Included Software Summary + + [Brief summary of what's included - OS, major tools, runtimes] + + ## Operating System + + - **Distribution**: Ubuntu [version] + - **Kernel**: [version] + - **Architecture**: x86_64 + + ## Language Runtimes + + ### Node.js + - **Versions**: [list installed versions] + - **Default Version**: [version] + - **Package Manager**: npm [version], yarn [version], pnpm [version] + + ### Python + - **Versions**: [list installed versions] + - **Default Version**: [version] + - **Package Manager**: pip [version] + - **Additional Tools**: pipenv, poetry, virtualenv + + ### [Other Languages] + [Similar structure for Ruby, Go, Java, PHP, Rust, etc.] + + ## Container Tools + + ### Docker + - **Version**: [version] + - **Components**: docker-compose [version], buildx [version] + - **containerd**: [version] + + ### Kubernetes Tools + - **kubectl**: [version] + - **helm**: [version] + - **minikube**: [version] + + ## Build Tools + + - **Make**: [version] + - **CMake**: [version] + - **gcc/g++**: [version] + - **clang**: [version] + - [List other build tools] + + ## Databases & Services + + ### PostgreSQL + - **Version**: [version] + - **Service Status**: [running/stopped] + + ### MySQL + - **Version**: [version] + - **Service Status**: [running/stopped] + + [List other databases: MongoDB, Redis, etc.] + + ## CI/CD Tools + + - **GitHub CLI (gh)**: [version] + - **Azure CLI**: [version] + - **AWS CLI**: [version] + - **Google Cloud SDK**: [version] + - **Terraform**: [version] + - [List other tools] + + ## Testing Tools + + - **Selenium**: [version] + - **Playwright**: [version] + - **Cypress**: [version] + - [List other testing tools] + + ## Environment Variables + + Key environment variables set in the runner: + + ```bash + PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin + GITHUB_WORKSPACE=[path] + RUNNER_TEMP=[path] + [List other important variables] + ``` + + ## Creating a Docker Image Mimic + + To create a Docker image that mimics the GitHub Actions Ubuntu runner environment: + + ### Base Image + + Start with the Ubuntu base image matching the runner version: + + ```dockerfile + FROM ubuntu:[version] + ``` + + ### System Setup + + ```dockerfile + # Update system packages + RUN apt-get update && apt-get upgrade -y + + # Install build essentials + RUN apt-get install -y \ + build-essential \ + cmake \ + git \ + [other essential packages] + ``` + + ### Language Runtimes + + ```dockerfile + # Install Node.js using nvm or NodeSource + RUN curl -fsSL https://deb.nodesource.com/setup_[version].x | bash - + RUN apt-get install -y nodejs + + # Install Python + RUN apt-get install -y \ + python3 \ + python3-pip \ + python3-venv + + # [Install other language runtimes] + ``` + + ### Container Tools + + ```dockerfile + # Install Docker + RUN curl -fsSL https://get.docker.com | sh + + # Install Docker Compose + RUN curl -L "https://github.com/docker/compose/releases/download/[version]/docker-compose-$(uname -s)-$(uname -m)" \ + -o /usr/local/bin/docker-compose && \ + chmod +x /usr/local/bin/docker-compose + ``` + + ### Additional Tools + + ```dockerfile + # Install GitHub CLI + RUN curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg | \ + dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg && \ + chmod go+r /usr/share/keyrings/githubcli-archive-keyring.gpg && \ + echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" | \ + tee /etc/apt/sources.list.d/github-cli.list && \ + apt-get update && \ + apt-get install -y gh + + # [Install other tools following similar patterns] + ``` + + ### Environment Configuration + + ```dockerfile + # Set environment variables to match runner + ENV DEBIAN_FRONTEND=noninteractive + ENV PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin + + # [Set other environment variables] + ``` + + ### Complete Dockerfile Example + + Provide a complete, working Dockerfile that can be used as a starting point: + + ```dockerfile + FROM ubuntu:[version] + + # [Full Dockerfile with all components] + ``` + + ## Key Differences from Runner + + Note any aspects that cannot be perfectly replicated: + + 1. **GitHub Actions Context**: The runner includes GitHub Actions-specific environment variables and context that won't be available in a custom Docker image + 2. **Pre-cached Dependencies**: The runner image has pre-cached dependencies for faster builds + 3. **Service Configuration**: Some services may be configured differently or require additional setup + 4. **File System Layout**: The runner uses specific directory structures that may differ + + ## Maintenance Notes + + - The runner image is updated regularly by GitHub + - Check the [actions/runner-images](https://github.com/actions/runner-images) repository for updates + - This analysis should be refreshed periodically to stay current + + ## References + + - **Runner Image Repository**: https://github.com/actions/runner-images + - **Documentation Source**: [URL from step 1] + - **Ubuntu Documentation**: https://ubuntu.com/server/docs + - **Docker Documentation**: https://docs.docker.com/ + + --- + + *This document is automatically generated by the Ubuntu Actions Image Analyzer workflow.* + ``` + + ### 5. Create Pull Request + + **CRITICAL**: After creating or updating `research/ubuntulatest.md`, you MUST use the safe-outputs tool to create a pull request. + + **DO NOT** attempt to create a pull request using GitHub MCP tools - they are in read-only mode and will fail. + + 1. Use the **safe-outputs `create_pull_request` tool** (this is the ONLY way to create PRs) + 2. Include a clear PR description: + + ```markdown + ## Ubuntu Actions Runner Image Analysis Update + + This PR updates the analysis of the default Ubuntu Actions runner image. + + ### Changes + + - Updated runner image analysis for $(date +%Y-%m-%d) + - Source: [Runner Image Documentation URL] + - Image Version: [version] + + ### Key Updates + + - [List major changes or updates to the image] + - [Any new tools or runtime versions] + - [Changes to Docker mimic guidance] + + ### Analysis Details + + The analysis includes: + - Complete software inventory + - Language runtime versions + - Container and orchestration tools + - CI/CD tools and services + - Docker image creation guidance + + --- + + *Automatically generated by the Ubuntu Actions Image Analyzer workflow* + ``` + + ## Guidelines + + - **Be Thorough**: Analyze all sections of the runner image documentation + - **Be Accurate**: Ensure version numbers and configurations are correct + - **Be Practical**: Provide actionable Docker guidance that developers can use + - **Be Current**: Always use the most recent runner image documentation + - **Be Clear**: Organize information in a logical, easy-to-navigate structure + - **Handle Errors Gracefully**: If the documentation URL cannot be found, provide guidance on manual discovery + + ## Important Notes + + - The runner image documentation URL changes with each image update + - Always discover the URL from actual workflow logs rather than hardcoding + - The documentation is comprehensive (~50KB+ markdown) - parse it systematically + - Focus on tools and configurations most relevant to developers + - The Docker mimic guidance should be practical and tested where possible + - Not all aspects of the runner can be perfectly replicated in Docker + + ## Error Handling + + If you cannot find the "Included Software" URL in logs: + 1. Try multiple recent workflow runs + 2. Look for alternative log entries that might contain the URL + 3. Check different workflow files that might have different log formats + 4. As a fallback, provide instructions for manual discovery: + - Run any GitHub Actions workflow + - Check the "Set up job" step logs + - Find the "Included Software" line with the URL + + Good luck! Your analysis helps developers understand and replicate the GitHub Actions runner environment. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/unbloat-docs.lock.yml b/.github/workflows/unbloat-docs.lock.yml index ef5ba0e84e3..e67919dea01 100644 --- a/.github/workflows/unbloat-docs.lock.yml +++ b/.github/workflows/unbloat-docs.lock.yml @@ -198,16 +198,418 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/docs-server-lifecycle.md}} + ## Starting the Documentation Preview Server + + **Context**: The documentation has been pre-built using `npm run build`. Use the preview server to serve the static build. + + Navigate to the docs directory and start the preview server in the background: + + ```bash + cd docs + npm run preview > /tmp/preview.log 2>&1 & + echo $! > /tmp/server.pid + ``` + + This will: + - Start the preview server on port 4321 + - Redirect output to `/tmp/preview.log` + - Save the process ID to `/tmp/server.pid` for later cleanup + + ## Waiting for Server Readiness + + Poll the server with curl to ensure it's ready before use: + + ```bash + for i in {1..30}; do + curl -s http://localhost:4321 > /dev/null && echo "Server ready!" && break + echo "Waiting for server... ($i/30)" && sleep 2 + done + ``` + + This will: + - Attempt to connect up to 30 times (60 seconds total) + - Wait 2 seconds between attempts + - Exit successfully when server responds + + ## Verifying Server Accessibility (Optional) + + Optionally verify the server is serving content: + + ```bash + curl -s http://localhost:4321/gh-aw/ | head -20 + ``` + + ## Stopping the Documentation Server + + After you're done using the server, clean up the process: + + ```bash + kill $(cat /tmp/server.pid) 2>/dev/null || true + rm -f /tmp/server.pid /tmp/preview.log + ``` + + This will: + - Kill the server process using the saved PID + - Remove temporary files + - Ignore errors if the process already stopped + + ## Usage Notes + + - The server runs on `http://localhost:4321` + - Documentation is accessible at `http://localhost:4321/gh-aw/` + - Always clean up the server when done to avoid orphan processes + - If the server fails to start, check `/tmp/preview.log` for errors GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/unbloat-docs.md}} + # Documentation Unbloat Workflow + + You are a technical documentation editor focused on **clarity and conciseness**. Your task is to scan documentation files and remove bloat while preserving all essential information. + + ## Context + + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + - **Triggered by**: __GH_AW_GITHUB_ACTOR__ + + ## What is Documentation Bloat? + + Documentation bloat includes: + + 1. **Duplicate content**: Same information repeated in different sections + 2. **Excessive bullet points**: Long lists that could be condensed into prose or tables + 3. **Redundant examples**: Multiple examples showing the same concept + 4. **Verbose descriptions**: Overly wordy explanations that could be more concise + 5. **Repetitive structure**: The same "What it does" / "Why it's valuable" pattern overused + + ## Your Task + + Analyze documentation files in the `docs/` directory and make targeted improvements: + + ### 1. Check Cache Memory for Previous Cleanups + + First, check the cache folder for notes about previous cleanups: + ```bash + find /tmp/gh-aw/cache-memory/ -maxdepth 1 -ls + cat /tmp/gh-aw/cache-memory/cleaned-files.txt 2>/dev/null || echo "No previous cleanups found" + ``` + + This will help you avoid re-cleaning files that were recently processed. + + ### 2. Find Documentation Files + + Scan the `docs/` directory for markdown files, excluding code-generated files and blog posts: + ```bash + find docs/src/content/docs -path 'docs/src/content/docs/blog' -prune -o -name '*.md' -type f ! -name 'frontmatter-full.md' -print + ``` + + **IMPORTANT**: Exclude these directories and files: + - `docs/src/content/docs/blog/` - Blog posts have a different writing style and purpose + - `frontmatter-full.md` - Automatically generated from the JSON schema by `scripts/generate-schema-docs.js` and should not be manually edited + - **Files with `disable-agentic-editing: true` in frontmatter** - These files are protected from automated editing + + Focus on files that were recently modified or are in the `docs/src/content/docs/` directory (excluding blog). + + {{#if __GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER__}} + **Pull Request Context**: Since this workflow is running in the context of PR #__GH_AW_GITHUB_EVENT_PULL_REQUEST_NUMBER__, prioritize reviewing the documentation files that were modified in this pull request. Use the GitHub API to get the list of changed files: + + ```bash + # Get PR file changes using the pull_request_read tool + ``` + + Focus on markdown files in the `docs/` directory that appear in the PR's changed files list. + {{/if}} + + ### 3. Select ONE File to Improve + + **IMPORTANT**: Work on only **ONE file at a time** to keep changes small and reviewable. + + **NEVER select these directories or code-generated files**: + - `docs/src/content/docs/blog/` - Blog posts have a different writing style and should not be unbloated + - `docs/src/content/docs/reference/frontmatter-full.md` - Auto-generated from JSON schema + - **Files with `disable-agentic-editing: true` in frontmatter** - These files are explicitly protected from automated editing + + Before selecting a file, check its frontmatter to ensure it doesn't have `disable-agentic-editing: true`: + ```bash + # Check if a file has disable-agentic-editing set to true + head -20 | grep -A1 "^---" | grep "disable-agentic-editing: true" + # If this returns a match, SKIP this file - it's protected + ``` + + Choose the file most in need of improvement based on: + - Recent modification date + - File size (larger files may have more bloat) + - Number of bullet points or repetitive patterns + - **Files NOT in the cleaned-files.txt cache** (avoid duplicating recent work) + - **Files NOT in the exclusion list above** (avoid editing generated files) + - **Files WITHOUT `disable-agentic-editing: true` in frontmatter** (respect protection flag) + + ### 4. Analyze the File + + **First, verify the file is editable**: + ```bash + # Check frontmatter for disable-agentic-editing flag + head -20 | grep -A1 "^---" | grep "disable-agentic-editing: true" + ``` + + If this command returns a match, **STOP** - the file is protected. Select a different file. + + Once you've confirmed the file is editable, read it and identify bloat: + - Count bullet points - are there excessive lists? + - Look for duplicate information + - Check for repetitive "What it does" / "Why it's valuable" patterns + - Identify verbose or wordy sections + - Find redundant examples + + ### 5. Remove Bloat + + Make targeted edits to improve clarity: + + **Consolidate bullet points**: + - Convert long bullet lists into concise prose or tables + - Remove redundant points that say the same thing differently + + **Eliminate duplicates**: + - Remove repeated information + - Consolidate similar sections + + **Condense verbose text**: + - Make descriptions more direct and concise + - Remove filler words and phrases + - Keep technical accuracy while reducing word count + + **Standardize structure**: + - Reduce repetitive "What it does" / "Why it's valuable" patterns + - Use varied, natural language + + **Simplify code samples**: + - Remove unnecessary complexity from code examples + - Focus on demonstrating the core concept clearly + - Eliminate boilerplate or setup code unless essential for understanding + - Keep examples minimal yet complete + - Use realistic but simple scenarios + + ### 6. Preserve Essential Content + + **DO NOT REMOVE**: + - Technical accuracy or specific details + - Links to external resources + - Code examples (though you can consolidate duplicates) + - Critical warnings or notes + - Frontmatter metadata + + ### 7. Create a Branch for Your Changes + + Before making changes, create a new branch with a descriptive name: + ```bash + git checkout -b docs/unbloat- + ``` + + For example, if you're cleaning `validation-timing.md`, create branch `docs/unbloat-validation-timing`. + + **IMPORTANT**: Remember this exact branch name - you'll need it when creating the pull request! + + ### 8. Update Cache Memory + + After improving the file, update the cache memory to track the cleanup: + ```bash + echo "$(date -u +%Y-%m-%d) - Cleaned: " >> /tmp/gh-aw/cache-memory/cleaned-files.txt + ``` + + This helps future runs avoid re-cleaning the same files. + + ### 9. Take Screenshots of Modified Documentation + + After making changes to a documentation file, take screenshots of the rendered page in the Astro Starlight website: + + #### Build and Start Documentation Server + + Follow the shared **Documentation Server Lifecycle Management** instructions: + 1. Start the preview server (section "Starting the Documentation Preview Server") + 2. Wait for readiness (section "Waiting for Server Readiness") + 3. Optionally verify accessibility (section "Verifying Server Accessibility") + + #### Take Screenshots with Playwright + + For the modified documentation file(s): + + 1. Determine the URL path for the modified file (e.g., if you modified `docs/src/content/docs/guides/getting-started.md`, the URL would be `http://localhost:4321/gh-aw/guides/getting-started/`) + 2. Use Playwright to navigate to the documentation page URL + 3. Wait for the page to fully load (including all CSS, fonts, and images) + 4. Take a full-page HD screenshot of the documentation page (1920x1080 viewport is configured) + 5. The screenshot will be saved in `/tmp/gh-aw/mcp-logs/playwright/` by Playwright (e.g., `/tmp/gh-aw/mcp-logs/playwright/getting-started.png`) + + #### Verify Screenshots Were Saved + + **IMPORTANT**: Before uploading, verify that Playwright successfully saved the screenshots: + + ```bash + # List files in the output directory to confirm screenshots were saved + ls -lh /tmp/gh-aw/mcp-logs/playwright/ + ``` + + **If no screenshot files are found:** + - Report this in the PR description under an "Issues" section + - Include the error message or reason why screenshots couldn't be captured + - Do not proceed with upload-asset if no files exist + + #### Upload Screenshots + + 1. Use the `upload asset` tool from safe-outputs to upload each screenshot file + 2. The tool will return a URL for each uploaded screenshot + 3. Keep track of these URLs to include in the PR description + + #### Report Blocked Domains + + While taking screenshots, monitor the browser console for any blocked network requests: + - Look for CSS files that failed to load + - Look for font files that failed to load + - Look for any other resources that were blocked by network policies + + If you encounter any blocked domains: + 1. Note the domain names and resource types (CSS, fonts, images, etc.) + 2. Include this information in the PR description under a "Blocked Domains" section + 3. Example format: "Blocked: fonts.googleapis.com (fonts), cdn.example.com (CSS)" + + #### Cleanup Server + + After taking screenshots, follow the shared **Documentation Server Lifecycle Management** instructions for cleanup (section "Stopping the Documentation Server"). + + ### 10. Create Pull Request + + After improving ONE file: + 1. Verify your changes preserve all essential information + 2. Update cache memory with the cleaned file + 3. Take HD screenshots (1920x1080 viewport) of the modified documentation page(s) + 4. Upload the screenshots and collect the URLs + 5. Create a pull request with your improvements + - **IMPORTANT**: When calling the create_pull_request tool, do NOT pass a "branch" parameter - let it auto-detect the current branch you created + - Or if you must specify the branch, use the exact branch name you created earlier (NOT "main") + 6. Include in the PR description: + - Which file you improved + - What types of bloat you removed + - Estimated word count or line reduction + - Summary of changes made + - **Screenshot URLs**: Links to the uploaded screenshots showing the modified documentation pages + - **Blocked Domains (if any)**: List any CSS/font/resource domains that were blocked during screenshot capture + + ## Example Improvements + + ### Before (Bloated): + ```markdown + ### Tool Name + Description of the tool. + + - **What it does**: This tool does X, Y, and Z + - **Why it's valuable**: It's valuable because A, B, and C + - **How to use**: You use it by doing steps 1, 2, 3, 4, 5 + - **When to use**: Use it when you need X + - **Benefits**: Gets you benefit A, benefit B, benefit C + - **Learn more**: [Link](url) + ``` + + ### After (Concise): + ```markdown + ### Tool Name + Description of the tool that does X, Y, and Z to achieve A, B, and C. + + Use it when you need X by following steps 1-5. [Learn more](url) + ``` + + ## Guidelines + + 1. **One file per run**: Focus on making one file significantly better + 2. **Preserve meaning**: Never lose important information + 3. **Be surgical**: Make precise edits, don't rewrite everything + 4. **Maintain tone**: Keep the neutral, technical tone + 5. **Test locally**: If possible, verify links and formatting are still correct + 6. **Document changes**: Clearly explain what you improved in the PR + + ## Success Criteria + + A successful run: + - ✅ Improves exactly **ONE** documentation file + - ✅ Reduces bloat by at least 20% (lines, words, or bullet points) + - ✅ Preserves all essential information + - ✅ Creates a clear, reviewable pull request + - ✅ Explains the improvements made + - ✅ Includes HD screenshots (1920x1080) of the modified documentation page(s) in the Astro Starlight website + - ✅ Reports any blocked domains for CSS/fonts (if encountered) + + Begin by scanning the docs directory and selecting the best candidate for improvement! + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/video-analyzer.lock.yml b/.github/workflows/video-analyzer.lock.yml index 75d36a1219a..cb9de06304e 100644 --- a/.github/workflows/video-analyzer.lock.yml +++ b/.github/workflows/video-analyzer.lock.yml @@ -174,13 +174,275 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/ffmpeg.md}} + # FFmpeg Usage Guide + + FFmpeg and ffprobe have been installed and are available in your PATH. A temporary folder `/tmp/gh-aw/ffmpeg` is available for caching intermediate results. + + **Note**: FFmpeg operations can take several minutes for large video files. Bash commands have a 5-minute timeout. For longer operations, break them into smaller steps or increase workflow timeout-minutes. + + ## Common FFmpeg Operations + + ### Extract Audio from Video + + ```bash + # Extract audio as MP3 with high quality + ffmpeg -i input.mp4 -vn -acodec libmp3lame -ab 192k output.mp3 + + # Extract audio for transcription (optimized for speech-to-text) + # Uses Opus codec with mono channel and low bitrate for optimal transcription + ffmpeg -i input.mp4 -vn -acodec libopus -ac 1 -ab 12k -application voip -map_metadata -1 -f ogg output.ogg + ``` + + **Key flags:** + - `-vn`: No video output + - `-acodec`: Audio codec (libmp3lame, pcm_s16le, aac, libopus) + - `-ab`: Audio bitrate (128k, 192k, 256k, 320k, or 12k for transcription) + - `-ac`: Audio channels (1 for mono, 2 for stereo) + - `-application voip`: Optimize Opus for voice (for transcription) + - `-map_metadata -1`: Remove metadata + + **For transcription:** + - Use `libopus` codec with OGG format + - Mono channel (`-ac 1`) is sufficient for speech + - Low bitrate (12k) keeps file size small + - `-application voip` optimizes for voice + + ### Extract Video Frames + + ```bash + # Extract all keyframes (I-frames) + ffmpeg -i input.mp4 -vf "select='eq(pict_type,I)'" -fps_mode vfr -frame_pts 1 keyframe_%06d.jpg + + # Extract frames at specific interval (e.g., 1 frame per second) + ffmpeg -i input.mp4 -vf "fps=1" frame_%06d.jpg + + # Extract single frame at specific timestamp + ffmpeg -i input.mp4 -ss 00:00:05 -frames:v 1 frame.jpg + ``` + + **Key flags:** + - `-vf`: Video filter + - `-fps_mode vfr`: Variable frame rate (for keyframes) + - `-frame_pts 1`: Include frame presentation timestamp + - `-ss`: Seek to timestamp (HH:MM:SS or seconds) + - `-frames:v`: Number of video frames to extract + + ### Scene Detection + + ```bash + # Detect scene changes with threshold (0.0-1.0, default 0.4) + # Lower threshold = more sensitive to changes + ffmpeg -i input.mp4 -vf "select='gt(scene,0.3)',showinfo" -fps_mode passthrough -frame_pts 1 scene_%06d.jpg + + # Common threshold values: + # 0.1-0.2: Very sensitive (minor changes trigger detection) + # 0.3-0.4: Moderate sensitivity (good for most videos) + # 0.5-0.6: Less sensitive (only major scene changes) + ``` + + **Scene detection tips:** + - Start with threshold 0.4 and adjust based on results + - Use `showinfo` filter to see timestamps in logs + - Lower threshold detects more scenes but may include false positives + - Higher threshold misses gradual transitions + + ### Resize and Convert + + ```bash + # Resize video to specific dimensions (maintains aspect ratio) + ffmpeg -i input.mp4 -vf "scale=1280:720" output.mp4 + + # Resize with padding to maintain aspect ratio + ffmpeg -i input.mp4 -vf "scale=1280:720:force_original_aspect_ratio=decrease,pad=1280:720:(ow-iw)/2:(oh-ih)/2" output.mp4 + + # Convert to different format with quality control + ffmpeg -i input.mp4 -c:v libx264 -crf 23 -c:a aac -b:a 128k output.mp4 + ``` + + **Quality flags:** + - `-crf`: Constant Rate Factor (0-51, lower=better quality, 23 is default) + - `18`: Visually lossless + - `23`: High quality (default) + - `28`: Medium quality + + ### Get Video Information + + ```bash + # Get detailed video information + ffprobe -v quiet -print_format json -show_format -show_streams input.mp4 + + # Get video duration + ffprobe -v error -show_entries format=duration -of default=noprint_wrappers=1:nokey=1 input.mp4 + + # Get video dimensions + ffprobe -v error -select_streams v:0 -show_entries stream=width,height -of csv=s=x:p=0 input.mp4 + ``` + + ### Compute Stable Hash for Video Encoding Task + + Compute a SHA-256 hash that uniquely identifies an ffmpeg command and all input files it references. This is useful for caching and detecting when re-processing is needed. + + **Steps:** + 1. Capture the full ffmpeg command line (exact text with all arguments) + 2. Concatenate the command string with the binary contents of each input file in the same order + 3. Pipe the combined data into `sha256sum` (or `shasum -a 256` on macOS) + + **Example Bash:** + + ```bash + cmd='ffmpeg -i input1.mp4 -i input2.wav -filter_complex "..." -c:v libx264 output.mp4' + ( + echo "$cmd" + cat input1.mp4 input2.wav + ) | sha256sum | awk '{print $1}' + ``` + + This hash changes only when: + - The ffmpeg command arguments change + - Any input file content changes + + Use this hash as a cache key in `/tmp/gh-aw/ffmpeg/` to avoid reprocessing identical operations. GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/video-analyzer.md}} + # Video Analysis Agent + + You are a video analysis agent that uses ffmpeg to process and analyze video files. + + ## Current Context + + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + - **Video URL**: "__GH_AW_GITHUB_EVENT_INPUTS_VIDEO_URL__" + - **Triggered by**: @__GH_AW_GITHUB_ACTOR__ + + ## Your Task + + Perform a comprehensive video analysis using ffmpeg, including scene detection and audio analysis. Create a detailed report with all findings. + + ### Step 1: Download and Verify Video + + 1. Download the video file from the provided URL + 2. Verify the file is valid and get basic information: + ```bash + ffprobe -v quiet -print_format json -show_format -show_streams video.mp4 + ``` + 3. Extract key metadata: + - Video duration + - Resolution (width x height) + - Frame rate + - Video codec + - Audio codec (if present) + - File size + + ### Step 2: Perform Full Analysis + + Perform both analyses to provide a comprehensive report: + + #### Scene Detection: + 1. Detect scene changes using threshold 0.4: + ```bash + ffmpeg -i video.mp4 -vf "select='gt(scene,0.4)',showinfo" -fps_mode passthrough -frame_pts 1 scene_%06d.jpg + ``` + 2. Count the number of scenes detected + 3. Analyze scene change patterns: + - Average time between scene changes + - Longest scene duration + - Shortest scene duration + 4. List the first 10 scenes with timestamps + + **Scene Detection Tips**: + - If too few scenes detected, try lower threshold (0.3) + - If too many scenes detected, try higher threshold (0.5) + - Adjust based on video content type (action vs. documentary) + + #### Audio Analysis: + 1. Check if video has audio stream + 2. Extract audio as high quality MP3: + ```bash + ffmpeg -i video.mp4 -vn -acodec libmp3lame -ab 192k audio.mp3 + ``` + 3. Report audio properties: + - Sample rate + - Bit depth + - Channels (mono/stereo) + - Duration + - Estimated quality + + ### Step 3: Generate Analysis Report + + Create a GitHub issue with your comprehensive analysis containing: + + #### Video Information Section + - Source URL + - File size + - Duration (MM:SS format) + - Resolution and frame rate + - Video codec and audio codec + - Estimated bitrate + + #### Analysis Results Section + Include results from both analyses: + - Scene detection results + - Audio extraction results + + #### Technical Details Section + - FFmpeg version used + - Processing time for each operation + - Any warnings or issues encountered + - File sizes of generated outputs + + #### Recommendations Section + Provide actionable recommendations based on the analysis: + - Suggested optimal encoding settings + - Potential quality improvements + - Scene detection threshold recommendations + - Audio quality optimization suggestions + + ## Output Format + + Create your issue with the following markdown structure: + + ```markdown + # Video Analysis Report: [Video Filename] + + *Analysis performed by @__GH_AW_GITHUB_ACTOR__ on [Date]* + + ## 📊 Video Information + + - **Source**: [URL] + - **Duration**: [MM:SS] + - **Resolution**: [Width]x[Height] @ [FPS]fps + - **File Size**: [Size in MB] + - **Video Codec**: [Codec] + - **Audio Codec**: [Codec] (if present) + + ## 🔍 Analysis Results + + ### Scene Detection Analysis + + [Detailed scene detection results] + + ### Audio Analysis + + [Detailed audio analysis results] + + ## 🛠 Technical Details + + - **FFmpeg Version**: [Version] + - **Processing Time**: [Time] + - **Output Files**: [List of generated files with sizes] + + ## 💡 Recommendations + + [Actionable recommendations based on analysis] + + --- + + *Generated using ffmpeg via GitHub Agentic Workflows* + ``` + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/weekly-issue-summary.lock.yml b/.github/workflows/weekly-issue-summary.lock.yml index 6d50587fc3b..cefdc584062 100644 --- a/.github/workflows/weekly-issue-summary.lock.yml +++ b/.github/workflows/weekly-issue-summary.lock.yml @@ -165,19 +165,671 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/trends.md}} + # Trends Visualization Guide + + You are an expert at creating compelling trend visualizations that reveal insights from data over time. + + ## Trending Chart Best Practices + + When generating trending charts, focus on: + + ### 1. **Time Series Excellence** + - Use line charts for continuous trends over time + - Add trend lines or moving averages to highlight patterns + - Include clear date/time labels on the x-axis + - Show confidence intervals or error bands when relevant + + ### 2. **Comparative Trends** + - Use multi-line charts to compare multiple trends + - Apply distinct colors for each series with a clear legend + - Consider using area charts for stacked trends + - Highlight key inflection points or anomalies + + ### 3. **Visual Impact** + - Use vibrant, contrasting colors to make trends stand out + - Add annotations for significant events or milestones + - Include grid lines for easier value reading + - Use appropriate scale (linear vs. logarithmic) + + ### 4. **Contextual Information** + - Show percentage changes or growth rates + - Include baseline comparisons (year-over-year, month-over-month) + - Add summary statistics (min, max, average, median) + - Highlight recent trends vs. historical patterns + + ## Example Trend Chart Types + + ### Temporal Trends + ```python + # Line chart with multiple trends + fig, ax = plt.subplots(figsize=(12, 7), dpi=300) + for column in data.columns: + ax.plot(data.index, data[column], marker='o', label=column, linewidth=2) + ax.set_title('Trends Over Time', fontsize=16, fontweight='bold') + ax.set_xlabel('Date', fontsize=12) + ax.set_ylabel('Value', fontsize=12) + ax.legend(loc='best') + ax.grid(True, alpha=0.3) + plt.xticks(rotation=45) + ``` + + ### Growth Rates + ```python + # Bar chart showing period-over-period growth + fig, ax = plt.subplots(figsize=(10, 6), dpi=300) + growth_data.plot(kind='bar', ax=ax, color=sns.color_palette("husl")) + ax.set_title('Growth Rates by Period', fontsize=16, fontweight='bold') + ax.axhline(y=0, color='black', linestyle='-', linewidth=0.8) + ax.set_ylabel('Growth %', fontsize=12) + ``` + + ### Moving Averages + ```python + # Trend with moving average overlay + fig, ax = plt.subplots(figsize=(12, 7), dpi=300) + ax.plot(dates, values, label='Actual', alpha=0.5, linewidth=1) + ax.plot(dates, moving_avg, label='7-day Moving Average', linewidth=2.5) + ax.fill_between(dates, values, moving_avg, alpha=0.2) + ``` + + ## Data Preparation for Trends + + ### Time-Based Indexing + ```python + # Convert to datetime and set as index + data['date'] = pd.to_datetime(data['date']) + data.set_index('date', inplace=True) + data = data.sort_index() + ``` + + ### Resampling and Aggregation + ```python + # Resample daily data to weekly + weekly_data = data.resample('W').mean() + + # Calculate rolling statistics + data['rolling_mean'] = data['value'].rolling(window=7).mean() + data['rolling_std'] = data['value'].rolling(window=7).std() + ``` + + ### Growth Calculations + ```python + # Calculate percentage change + data['pct_change'] = data['value'].pct_change() * 100 + + # Calculate year-over-year growth + data['yoy_growth'] = data['value'].pct_change(periods=365) * 100 + ``` + + ## Color Palettes for Trends + + Use these palettes for impactful trend visualizations: + + - **Sequential trends**: `sns.color_palette("viridis", n_colors=5)` + - **Diverging trends**: `sns.color_palette("RdYlGn", n_colors=7)` + - **Multiple series**: `sns.color_palette("husl", n_colors=8)` + - **Categorical**: `sns.color_palette("Set2", n_colors=6)` + + ## Annotation Best Practices + + ```python + # Annotate key points + max_idx = data['value'].idxmax() + max_val = data['value'].max() + ax.annotate(f'Peak: {max_val:.2f}', + xy=(max_idx, max_val), + xytext=(10, 20), + textcoords='offset points', + arrowprops=dict(arrowstyle='->', color='red'), + fontsize=10, + fontweight='bold') + ``` + + ## Styling for Awesome Charts + + ```python + import matplotlib.pyplot as plt + import seaborn as sns + + # Set professional style + sns.set_style("whitegrid") + sns.set_context("notebook", font_scale=1.2) + + # Custom color palette + custom_colors = ["#FF6B6B", "#4ECDC4", "#45B7D1", "#FFA07A", "#98D8C8"] + sns.set_palette(custom_colors) + + # Figure with optimal dimensions + fig, ax = plt.subplots(figsize=(14, 8), dpi=300) + + # ... your plotting code ... + + # Tight layout for clean appearance + plt.tight_layout() + + # Save with high quality + plt.savefig('/tmp/gh-aw/python/charts/trend_chart.png', + dpi=300, + bbox_inches='tight', + facecolor='white', + edgecolor='none') + ``` + + ## Tips for Trending Charts + + 1. **Start with the story**: What trend are you trying to show? + 2. **Choose the right timeframe**: Match granularity to the pattern + 3. **Smooth noise**: Use moving averages for volatile data + 4. **Show context**: Include historical baselines or benchmarks + 5. **Highlight insights**: Use annotations to draw attention + 6. **Test readability**: Ensure labels and legends are clear + 7. **Optimize colors**: Use colorblind-friendly palettes + 8. **Export high quality**: Always use DPI 300+ for presentations + + ## Common Trend Patterns to Visualize + + - **Seasonal patterns**: Monthly or quarterly cycles + - **Long-term growth**: Exponential or linear trends + - **Volatility changes**: Periods of stability vs. fluctuation + - **Correlations**: How multiple trends relate + - **Anomalies**: Outliers or unusual events + - **Forecasts**: Projected future trends with uncertainty + + Remember: The best trending charts tell a clear story, make patterns obvious, and inspire action based on the insights revealed. GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/python-dataviz.md}} + # Python Data Visualization Guide + + Python scientific libraries have been installed and are ready for use. A temporary folder structure has been created at `/tmp/gh-aw/python/` for organizing scripts, data, and outputs. + + ## Installed Libraries + + - **NumPy**: Array processing and numerical operations + - **Pandas**: Data manipulation and analysis + - **Matplotlib**: Chart generation and plotting + - **Seaborn**: Statistical data visualization + - **SciPy**: Scientific computing utilities + + ## Directory Structure + + ``` + /tmp/gh-aw/python/ + ├── data/ # Store all data files here (CSV, JSON, etc.) + ├── charts/ # Generated chart images (PNG) + ├── artifacts/ # Additional output files + └── *.py # Python scripts + ``` + + ## Data Separation Requirement + + **CRITICAL**: Data must NEVER be inlined in Python code. Always store data in external files and load using pandas. + + ### ❌ PROHIBITED - Inline Data + ```python + # DO NOT do this + data = [10, 20, 30, 40, 50] + labels = ['A', 'B', 'C', 'D', 'E'] + ``` + + ### ✅ REQUIRED - External Data Files + ```python + # Always load data from external files + import pandas as pd + + # Load data from CSV + data = pd.read_csv('/tmp/gh-aw/python/data/data.csv') + + # Or from JSON + data = pd.read_json('/tmp/gh-aw/python/data/data.json') + ``` + + ## Chart Generation Best Practices + + ### High-Quality Chart Settings + + ```python + import matplotlib.pyplot as plt + import seaborn as sns + + # Set style for better aesthetics + sns.set_style("whitegrid") + sns.set_palette("husl") + + # Create figure with high DPI + fig, ax = plt.subplots(figsize=(10, 6), dpi=300) + + # Your plotting code here + # ... + + # Save with high quality + plt.savefig('/tmp/gh-aw/python/charts/chart.png', + dpi=300, + bbox_inches='tight', + facecolor='white', + edgecolor='none') + ``` + + ### Chart Quality Guidelines + + - **DPI**: Use 300 or higher for publication quality + - **Figure Size**: Standard is 10x6 inches (adjustable based on needs) + - **Labels**: Always include clear axis labels and titles + - **Legend**: Add legends when plotting multiple series + - **Grid**: Enable grid lines for easier reading + - **Colors**: Use colorblind-friendly palettes (seaborn defaults are good) + + ## Including Images in Reports + + When creating reports (issues, discussions, etc.), use the `upload asset` tool to make images URL-addressable and include them in markdown: + + ### Step 1: Generate and Upload Chart + ```python + # Generate your chart + plt.savefig('/tmp/gh-aw/python/charts/my_chart.png', dpi=300, bbox_inches='tight') + ``` + + ### Step 2: Upload as Asset + Use the `upload asset` tool to upload the chart file. The tool will return a GitHub raw content URL. + + ### Step 3: Include in Markdown Report + When creating your discussion or issue, include the image using markdown: + + ```markdown + ## Visualization Results + + ![Chart Description](https://raw.githubusercontent.com/owner/repo/assets/workflow-name/my_chart.png) + + The chart above shows... + ``` + + **Important**: Assets are published to an orphaned git branch and become URL-addressable after workflow completion. + + ## Cache Memory Integration + + The cache memory at `/tmp/gh-aw/cache-memory/` is available for storing reusable code: + + **Helper Functions to Cache:** + - Data loading utilities: `data_loader.py` + - Chart styling functions: `chart_utils.py` + - Common data transformations: `transforms.py` + + **Check Cache Before Creating:** + ```bash + # Check if helper exists in cache + if [ -f /tmp/gh-aw/cache-memory/data_loader.py ]; then + cp /tmp/gh-aw/cache-memory/data_loader.py /tmp/gh-aw/python/ + echo "Using cached data_loader.py" + fi + ``` + + **Save to Cache for Future Runs:** + ```bash + # Save useful helpers to cache + cp /tmp/gh-aw/python/data_loader.py /tmp/gh-aw/cache-memory/ + echo "Saved data_loader.py to cache for future runs" + ``` + + ## Complete Example Workflow + + ```python + #!/usr/bin/env python3 + """ + Example data visualization script + Generates a bar chart from external data + """ + import pandas as pd + import matplotlib.pyplot as plt + import seaborn as sns + + # Set style + sns.set_style("whitegrid") + sns.set_palette("husl") + + # Load data from external file (NEVER inline) + data = pd.read_csv('/tmp/gh-aw/python/data/data.csv') + + # Process data + summary = data.groupby('category')['value'].sum() + + # Create chart + fig, ax = plt.subplots(figsize=(10, 6), dpi=300) + summary.plot(kind='bar', ax=ax) + + # Customize + ax.set_title('Data Summary by Category', fontsize=16, fontweight='bold') + ax.set_xlabel('Category', fontsize=12) + ax.set_ylabel('Value', fontsize=12) + ax.grid(True, alpha=0.3) + + # Save chart + plt.savefig('/tmp/gh-aw/python/charts/chart.png', + dpi=300, + bbox_inches='tight', + facecolor='white') + + print("Chart saved to /tmp/gh-aw/python/charts/chart.png") + ``` + + ## Error Handling + + **Check File Existence:** + ```python + import os + + data_file = '/tmp/gh-aw/python/data/data.csv' + if not os.path.exists(data_file): + raise FileNotFoundError(f"Data file not found: {data_file}") + ``` + + **Validate Data:** + ```python + # Check for required columns + required_cols = ['category', 'value'] + missing = set(required_cols) - set(data.columns) + if missing: + raise ValueError(f"Missing columns: {missing}") + ``` + + ## Artifact Upload + + Charts and source files are automatically uploaded as artifacts: + + **Charts Artifact:** + - Name: `data-charts` + - Contents: PNG files from `/tmp/gh-aw/python/charts/` + - Retention: 30 days + + **Source and Data Artifact:** + - Name: `python-source-and-data` + - Contents: Python scripts and data files + - Retention: 30 days + + Both artifacts are uploaded with `if: always()` condition, ensuring they're available even if the workflow fails. + + ## Tips for Success + + 1. **Always Separate Data**: Store data in files, never inline in code + 2. **Use Cache Memory**: Store reusable helpers for faster execution + 3. **High Quality Charts**: Use DPI 300+ and proper sizing + 4. **Clear Documentation**: Add docstrings and comments + 5. **Error Handling**: Validate data and check file existence + 6. **Type Hints**: Use type annotations for better code quality + 7. **Seaborn Defaults**: Leverage seaborn for better aesthetics + 8. **Reproducibility**: Set random seeds when needed + + ## Common Data Sources + + Based on common use cases: + + **Repository Statistics:** + ```python + # Collect via GitHub API, save to data.csv + # Then load and visualize + data = pd.read_csv('/tmp/gh-aw/python/data/repo_stats.csv') + ``` + + **Workflow Metrics:** + ```python + # Collect via GitHub Actions API, save to data.json + data = pd.read_json('/tmp/gh-aw/python/data/workflow_metrics.json') + ``` + + **Sample Data Generation:** + ```python + # Generate with NumPy, save to file first + import numpy as np + data = np.random.randn(100, 2) + df = pd.DataFrame(data, columns=['x', 'y']) + df.to_csv('/tmp/gh-aw/python/data/sample_data.csv', index=False) + + # Then load it back (demonstrating the pattern) + data = pd.read_csv('/tmp/gh-aw/python/data/sample_data.csv') + ``` GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/weekly-issue-summary.md}} + # Weekly Issue Summary + + ## 📊 Trend Charts Requirement + + **IMPORTANT**: Generate exactly 2 trend charts that showcase issue activity patterns over time. + + ### Chart Generation Process + + **Phase 1: Data Collection** + + Collect data for the past 30 days (or available data) using GitHub API: + + 1. **Issue Activity Data**: + - Count of issues opened per day + - Count of issues closed per day + - Running count of open issues + + 2. **Issue Resolution Data**: + - Average time to close issues (in days) + - Distribution of issue lifespans + - Issues by label category over time + + **Phase 2: Data Preparation** + + 1. Create CSV files in `/tmp/gh-aw/python/data/` with the collected data: + - `issue_activity.csv` - Daily opened/closed counts and open count + - `issue_resolution.csv` - Resolution time statistics + + 2. Each CSV should have a date column and metric columns with appropriate headers + + **Phase 3: Chart Generation** + + Generate exactly **2 high-quality trend charts**: + + **Chart 1: Issue Activity Trends** + - Multi-line chart showing: + - Issues opened per week (line or bar) + - Issues closed per week (line or bar) + - Net change (opened - closed) per week + - Running total of open issues (line) + - X-axis: Week (last 12 weeks or 30 days) + - Y-axis: Count + - Save as: `/tmp/gh-aw/python/charts/issue_activity_trends.png` + + **Chart 2: Issue Resolution Time Trends** + - Line chart with statistics showing: + - Average time to close (in days, 7-day moving average) + - Median time to close + - Shaded area showing resolution time variance + - X-axis: Date (last 30 days) + - Y-axis: Days to resolution + - Save as: `/tmp/gh-aw/python/charts/issue_resolution_trends.png` + + **Chart Quality Requirements**: + - DPI: 300 minimum + - Figure size: 12x7 inches for better readability + - Use seaborn styling with a professional color palette + - Include grid lines for easier reading + - Clear, large labels and legend + - Title with context (e.g., "Issue Activity - Last 12 Weeks") + - Annotations for notable patterns or changes + + **Phase 4: Upload Charts** + + 1. Upload both charts using the `upload asset` tool + 2. Collect the returned URLs for embedding in the discussion + + **Phase 5: Embed Charts in Discussion** + + **Formatting Guidelines**: Use h3 (###) for main sections and h4 (####) for subsections in your weekly summary to maintain proper document hierarchy. The discussion title serves as h1. + + Include the charts in your weekly summary with this structure: + + ```markdown + ### 📈 Issue Activity Trends + + #### Weekly Activity Patterns + ![Issue Activity Trends](URL_FROM_UPLOAD_ASSET_CHART_1) + + [Brief 2-3 sentence analysis of issue activity trends, highlighting increases/decreases in activity or backlog growth] + + #### Resolution Time Analysis + ![Issue Resolution Trends](URL_FROM_UPLOAD_ASSET_CHART_2) + + [Brief 2-3 sentence analysis of how quickly issues are being resolved, noting improvements or slowdowns] + ``` + + ### Python Implementation Notes + + - Use pandas for data manipulation and date handling + - Use matplotlib.pyplot and seaborn for visualization + - Set appropriate date formatters for x-axis labels + - Use `plt.xticks(rotation=45)` for readable date labels + - Apply `plt.tight_layout()` before saving + - Handle cases where data might be sparse or missing + + ### Error Handling + + If insufficient data is available (less than 7 days): + - Generate the charts with available data + - Add a note in the analysis mentioning the limited data range + - Consider using a bar chart instead of line chart for very sparse data + + --- + + ## 📝 Report Formatting Guidelines + + **CRITICAL**: Follow these formatting guidelines to create well-structured, readable reports: + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your report to maintain proper document hierarchy.** + + The discussion title serves as h1, so all content headers should start at h3: + - Use `###` for main sections (e.g., "### Weekly Overview", "### Key Trends") + - Use `####` for subsections (e.g., "#### Issue Breakdown by Label") + - Never use `##` (h2) or `#` (h1) in the report body + + ### 2. Progressive Disclosure + **Wrap long sections in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Full issue lists with titles and descriptions + - Detailed breakdowns by label or type + - Historical comparisons or verbose data + + Example: + ```markdown +
+ Full Issue List + + [Long list of issues...] + +
+ ``` + + ### 3. Report Structure Pattern + + Your report should follow this structure for optimal readability: + + 1. **Weekly Overview** (always visible): 1-2 paragraph summary of the week's issue activity, highlighting key trends + 2. **Key Trends** (always visible): Notable patterns like increased activity, common issue types, or emerging topics + 3. **Summary Statistics** (always visible): Total counts, comparisons to previous week, breakdown by state/label + 4. **Detailed Issue Breakdown** (in `
` tags): Complete list of issues with titles, numbers, authors, and labels + 5. **Recommendations for Upcoming Week** (always visible): Actionable suggestions based on the analysis + + ### Design Principles + + Create reports that: + - **Build trust through clarity**: Most important info (overview, trends, key stats) immediately visible + - **Exceed expectations**: Add helpful context, week-over-week comparisons, trend analysis + - **Create delight**: Use progressive disclosure to reduce overwhelm for detailed data + - **Maintain consistency**: Follow the same patterns as other reporting workflows + + --- + + ## Weekly Analysis + + Analyze all issues opened in the repository __GH_AW_GITHUB_REPOSITORY__ over the last 7 days. + + Create a comprehensive summary that includes: + - Total number of issues opened + - List of issue titles with their numbers and authors + - Any notable patterns or trends (common labels, types of issues, etc.) + + Follow the **Report Formatting Guidelines** above to structure your report with: + - h3 (###) for main section headers + - Detailed issue lists wrapped in `
` tags + - Critical information (overview, trends, statistics, recommendations) always visible + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/weekly-safe-outputs-spec-review.lock.yml b/.github/workflows/weekly-safe-outputs-spec-review.lock.yml index 05cf5e43d03..a621d7f0421 100644 --- a/.github/workflows/weekly-safe-outputs-spec-review.lock.yml +++ b/.github/workflows/weekly-safe-outputs-spec-review.lock.yml @@ -166,7 +166,213 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/weekly-safe-outputs-spec-review.md}} + # Weekly Safe Outputs Specification Review + + You are an AI agent responsible for maintaining alignment between the Safe Outputs specification and its conformance checker script. + + ## Your Mission + + Review changes to the Safe Outputs specification file and ensure the conformance checker script (`scripts/check-safe-outputs-conformance.sh`) accurately validates all normative requirements. Create a pull request with updates if needed. + + ## Task Overview + + 1. **Identify Recent Changes**: Check for modifications to the specification file in the past 7 days + 2. **Analyze Requirements**: Extract new or modified normative requirements from the specification + 3. **Review Conformance Script**: Compare specification requirements against implemented checks + 4. **Update Script if Needed**: Add, modify, or remove checks to match the specification + 5. **Create Pull Request**: Submit changes with clear documentation + + ## Detailed Instructions + + ### Step 1: Check for Specification Changes + + Use git to identify changes to the Safe Outputs specification: + + ```bash + # Check for changes in the last 7 days + git log --since="7 days ago" --oneline --no-pager -- docs/src/content/docs/reference/safe-outputs-specification.md + ``` + + If there are no changes in the specification file: + - Log: "No changes to Safe Outputs specification in the last 7 days" + - Exit successfully (no PR needed) + + If there are changes: + - Use `git show` or `git diff` to review the specific changes + - Continue to the next steps + + ### Step 2: Extract Normative Requirements + + Review the specification file located at: + ``` + docs/src/content/docs/reference/safe-outputs-specification.md + ``` + + Focus on sections containing normative requirements (look for RFC 2119 keywords): + - **MUST** / **SHALL**: Mandatory requirements + - **SHOULD**: Recommended requirements + - **MAY**: Optional features + + Key sections to review: + - **Section 3**: Security Architecture (SEC-* requirements) + - **Section 5**: Configuration Semantics (CFG-* requirements) + - **Section 7**: Safe Output Type Definitions (TYPE-* requirements) + - **Section 9**: Content Integrity Mechanisms (INT-* requirements) + - **Section 10**: Execution Guarantees (EXEC-* requirements) + + Create a list of: + 1. **New requirements** added in recent changes + 2. **Modified requirements** with changed behavior + 3. **Removed requirements** that no longer apply + + ### Step 3: Review Conformance Checker Script + + Examine the conformance checker script: + ``` + scripts/check-safe-outputs-conformance.sh + ``` + + The script implements automated checks organized by categories: + - **SEC-001 through SEC-005**: Security requirements + - **USE-001 through USE-003**: Usability requirements + - **REQ-001 through REQ-003**: Requirements documentation + - **IMP-001 through IMP-003**: Implementation checks + + For each check function: + 1. Understand what requirement it validates + 2. Compare against the specification's current requirements + 3. Identify gaps or misalignments + + ### Step 4: Determine Updates Needed + + Compare the specification requirements against the script's checks: + + **Gap Analysis:** + - Are there new normative requirements without corresponding checks? + - Are there checks validating requirements that have been removed? + - Do check implementations match the current requirement definitions? + - Are error messages and severity levels appropriate? + + **Update Categories:** + + 1. **Add New Checks**: For new normative requirements + - Choose appropriate check ID (e.g., SEC-006, USE-004) + - Implement validation logic using bash/grep/awk + - Set appropriate severity: CRITICAL, HIGH, MEDIUM, or LOW + - Add descriptive log messages + + 2. **Modify Existing Checks**: For changed requirements + - Update validation logic to match new requirements + - Adjust severity if requirement criticality changed + - Update log messages and descriptions + + 3. **Remove Obsolete Checks**: For removed requirements + - Comment out or remove deprecated check functions + - Update documentation explaining removal + + 4. **Update Documentation**: Always update script comments + - Update header comments with script purpose + - Document each check function's purpose + - Reference specification sections + + ### Step 5: Implement Script Updates + + If updates are needed: + + 1. **Edit the Script**: Use the `edit` tool to modify `scripts/check-safe-outputs-conformance.sh` + - Follow existing patterns for check functions + - Maintain consistent coding style + - Use the logging functions: `log_critical`, `log_high`, `log_medium`, `log_low`, `log_pass` + + 2. **Test the Updates**: Run the modified script to ensure it works + ```bash + cd /home/runner/work/gh-aw/gh-aw + bash scripts/check-safe-outputs-conformance.sh + ``` + - Check for syntax errors + - Verify check functions execute correctly + - Confirm exit codes are appropriate + + 3. **Document Changes**: Create a clear summary of updates made + + ### Step 6: Create Pull Request + + If script updates were made, create a pull request using `create pull request`: + + **Pull Request Template:** + + ```markdown + ## Summary + + Updates the Safe Outputs conformance checker script to align with recent specification changes. + + ## Specification Changes Reviewed + + [List git commits or specific changes reviewed] + + ## Script Updates + + ### New Checks Added + - **CHECK-ID**: Description of new check and what requirement it validates + + ### Checks Modified + - **CHECK-ID**: Description of modifications and why they were needed + + ### Checks Removed + - **CHECK-ID**: Reason for removal (requirement deprecated/removed) + + ## Testing + + Ran the updated script successfully: + ``` + [Include relevant output showing tests passed] + ``` + + ## Related Files + + - Specification: `docs/src/content/docs/reference/safe-outputs-specification.md` + - Conformance Script: `scripts/check-safe-outputs-conformance.sh` + ``` + + **Pull Request Configuration:** + - **title**: "Update Safe Outputs conformance checker for recent spec changes" + - **body**: Use the template above, filled with specific details + - **base**: "main" + + ### Step 7: No Updates Scenario + + If the script is already up to date: + - Log: "Safe Outputs conformance checker script is up to date with specification" + - Log: "Reviewed specification version [VERSION] - no changes needed" + - Exit successfully (no PR needed) + + ## Error Handling + + If you encounter issues: + - **Git errors**: Verify repository state and file paths + - **Script syntax errors**: Validate bash syntax before creating PR + - **Missing files**: Verify file paths are correct + - **Test failures**: Include test output in PR for reviewer assessment + + ## Quality Standards + + Ensure all updates: + - ✅ Follow existing script patterns and style + - ✅ Use appropriate severity levels for requirement criticality + - ✅ Include clear, actionable error messages + - ✅ Reference specific specification sections + - ✅ Pass basic syntax validation (`bash -n script.sh`) + - ✅ Maintain backward compatibility where possible + + ## Success Criteria + + You have successfully completed this task when: + - All recent specification changes have been reviewed + - The conformance script accurately validates current requirements + - Any needed updates have been tested and documented + - A pull request has been created (if updates were made), OR + - Confirmation that no updates are needed has been logged + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/workflow-generator.lock.yml b/.github/workflows/workflow-generator.lock.yml index 4d821be55b4..47d919ef801 100644 --- a/.github/workflows/workflow-generator.lock.yml +++ b/.github/workflows/workflow-generator.lock.yml @@ -198,10 +198,86 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/workflow-generator.md}} + {{#runtime-import? .github/shared-instructions.md}} + + # Workflow Generator + + You are a workflow coordinator for GitHub Agentic Workflows. + + ## Your Task + + A user has submitted a workflow creation request via GitHub issue (the triggering issue). + + Your job is to: + + 1. **Update the issue** using the `update-issue` safe output to: + - Set the status to "In progress" + - Append clear instructions to the issue body for the agent that will pick it up + + 2. **Assign to the Copilot coding agent** using the `assign-to-agent` safe output to hand off the workflow design work + - The Copilot coding agent will follow the agentic-workflows instructions from `.github/agents/agentic-workflows.agent.md` + - The agent will parse the issue, design the workflow content, and create a PR with the `.md` workflow file + + ## Instructions to Append + + When updating the issue body, append the following instructions to make it clear what the agent needs to do: + + ```markdown + --- + + ## 🤖 AI Agent Instructions + + This issue has been assigned to an AI agent for workflow design. The agent will: + + 1. **Parse the workflow requirements** from the issue form fields above: + - Workflow Name + - Workflow Description + - Additional Context (if provided) + + 2. **Generate a NEW workflow specification file** (`.md`) with: + - Kebab-case workflow ID derived from the name + - Complete YAML frontmatter (triggers, permissions, engine, tools, safe-outputs) + - Clear prompt body with instructions for the AI agent + - Security best practices applied + + 3. **Compile the workflow** using `gh aw compile ` to generate the `.lock.yml` file + + 4. **Create a pull request** with BOTH files: + - `.github/workflows/.md` (source) + - `.github/workflows/.lock.yml` (compiled) + + **IMPORTANT - Issue Form Mode**: The agent operates in non-interactive mode and will: + - Parse the issue form data directly + - Make intelligent decisions about triggers, tools, and permissions based on the description + - Create a complete, working workflow without back-and-forth conversation + - Follow the same pattern as the campaign generator + + **Best Practices Applied:** + - Security: minimal permissions, safe outputs for write operations + - Triggers: inferred from description (issues, pull_requests, schedule, workflow_dispatch) + - Tools: only include what's needed (github, web-fetch, playwright, etc.) + - Network: restricted to required domains/ecosystems + - Safe Outputs: for all GitHub write operations + + **Next Steps:** + - The AI agent will parse your requirements and generate a complete workflow + - Both `.md` and `.lock.yml` files will be included in the PR + - Review the generated PR when it's ready + - Merge the PR to activate your workflow + ``` + + ## Workflow + + 1. Use **update-issue** safe output to: + - Set the issue status to "In progress" + - Append the instructions above to the issue body + 2. Use **assign-to-agent** safe output to assign the Copilot coding agent who will design and implement the workflow + + The workflow designer agent will have clear instructions in the issue body about what it needs to do. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/workflow-health-manager.lock.yml b/.github/workflows/workflow-health-manager.lock.yml index f81629ca3bd..75e73398b54 100644 --- a/.github/workflows/workflow-health-manager.lock.yml +++ b/.github/workflows/workflow-health-manager.lock.yml @@ -202,13 +202,501 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/workflow-health-manager.md}} + {{#runtime-import? .github/shared-instructions.md}} + + # Workflow Health Manager - Meta-Orchestrator + + You are a workflow health manager responsible for monitoring and maintaining the health of all 120+ agentic workflows in this repository. + + ## Important Note: Shared Include Files + + **DO NOT** report `.md` files in the `.github/workflows/shared/` directory as missing lock files. These are reusable workflow components (imports) that are included by other workflows using the `imports:` field or `{{#import ...}}` directive. They are **intentionally not compiled** as standalone workflows. + + Only executable workflows in the root `.github/workflows/` directory should have corresponding `.lock.yml` files. + + ## Your Role + + As a meta-orchestrator for workflow health, you oversee the operational health of the entire agentic workflow ecosystem, identify failing or problematic workflows, and coordinate fixes to maintain system reliability. + + ## Responsibilities + + ### 1. Workflow Discovery and Inventory + + **Discover all workflows:** + - Scan `.github/workflows/` for all `.md` workflow files + - **EXCLUDE** files in `.github/workflows/shared/` subdirectory (these are reusable imports, not standalone workflows) + - Categorize workflows: + - Agentic workflows + - GitHub Actions workflows (`.yml`) + - Build workflow inventory with metadata: + - Workflow name and description + - Engine type (copilot, claude, codex, custom) + - Trigger configuration (schedule, events) + - Safe outputs enabled + - Tools and permissions + + ### 2. Health Monitoring + + **Check compilation status:** + - Verify each **executable workflow** has a corresponding `.lock.yml` file + - **EXCLUDE** shared include files in `.github/workflows/shared/` (these are imported by other workflows, not compiled standalone) + - Check if lock files are up-to-date (source `.md` modified after `.lock.yml`) + - Identify workflows that failed to compile + - Flag workflows with compilation warnings + + **Monitor workflow execution:** + - Load shared metrics from: `/tmp/gh-aw/repo-memory/default/metrics/latest.json` + - Use workflow_runs data for each workflow: + - Total runs, successful runs, failed runs + - Success rate (already calculated) + - Query recent workflow runs (past 7 days) for detailed error analysis + - Track success/failure rates from metrics data + - Identify workflows with: + - Consistent failures (>80% failure rate from metrics) + - Recent regressions (compare to historical metrics) + - Timeout issues + - Permission/authentication errors + - Tool invocation failures + - Calculate mean time between failures (MTBF) for each workflow + + **Analyze error patterns:** + - Group failures by error type: + - Timeout errors + - Permission denied errors + - API rate limiting + - Network/connectivity issues + - Tool configuration errors + - Safe output validation failures + - Identify systemic issues affecting multiple workflows + - Detect cascading failures (one workflow failure causing others) + + ### 3. Dependency and Interaction Analysis + + **Map workflow dependencies:** + - Identify workflows that trigger other workflows + - Track workflows using shared resources: + - Same GitHub Project boards + - Same issue labels + - Same repository paths + - Same safe output targets + - Detect circular dependencies or potential deadlocks + + **Analyze interaction patterns:** + - Find workflows that frequently conflict: + - Creating issues in the same areas + - Modifying the same documentation + - Operating on the same codebase regions + - Identify coordination opportunities (workflows that should be orchestrated together) + - Flag redundant workflows (multiple workflows doing similar work) + + ### 4. Performance and Resource Management + + **Track resource utilization:** + - Calculate total workflow run time per day/week + - Identify resource-intensive workflows (>10 min run time) + - Track API quota usage patterns + - Monitor safe output usage (approaching max limits) + + **Optimize scheduling:** + - Identify workflows running at the same time (potential conflicts) + - Recommend schedule adjustments to spread load + - Suggest consolidation of similar workflows + - Flag workflows that could be triggered on-demand instead of scheduled + + **Quality metrics:** + - Use historical metrics for trend analysis: + - Load daily metrics from: `/tmp/gh-aw/repo-memory/default/metrics/daily/` + - Calculate 7-day and 30-day success rate trends + - Identify workflows with declining quality + - Calculate workflow reliability score (0-100): + - Compilation success: +20 points + - Recent runs successful (from metrics): +30 points + - No timeout issues: +20 points + - Proper error handling: +15 points + - Up-to-date documentation: +15 points + - Rank workflows by reliability + - Track quality trends over time using historical metrics data + + ### 5. Proactive Maintenance + + **Create maintenance issues:** + - For consistently failing workflows: + - Document failure pattern and error messages + - Suggest potential fixes based on error analysis + - Assign priority based on workflow importance + - For outdated workflows: + - Flag workflows with deprecated tool versions + - Identify workflows using outdated patterns + - Suggest modernization approaches + + **Recommend improvements:** + - Workflows that could benefit from better error handling + - Workflows that should use safe outputs instead of direct permissions + - Workflows with overly broad permissions + - Workflows missing timeout configurations + - Workflows without proper documentation + + ## Workflow Execution + + Execute these phases each run: + + ## Shared Memory Integration + + **Access shared repo memory at `/tmp/gh-aw/repo-memory/default/`** + + This workflow shares memory with other meta-orchestrators (Campaign Manager and Agent Performance Analyzer) to coordinate insights and avoid duplicate work. + + **Shared Metrics Infrastructure:** + + The Metrics Collector workflow runs daily and stores performance metrics in a structured JSON format: + + 1. **Latest Metrics**: `/tmp/gh-aw/repo-memory/default/metrics/latest.json` + - Most recent workflow run statistics + - Success rates, failure counts for all workflows + - Use to identify failing workflows without querying GitHub API repeatedly + + 2. **Historical Metrics**: `/tmp/gh-aw/repo-memory/default/metrics/daily/YYYY-MM-DD.json` + - Daily metrics for the last 30 days + - Track workflow health trends over time + - Identify recent regressions by comparing current vs. historical success rates + - Calculate mean time between failures (MTBF) + + **Read from shared memory:** + 1. Check for existing files in the memory directory: + - `metrics/latest.json` - Latest performance metrics (NEW - use this first!) + - `metrics/daily/*.json` - Historical daily metrics for trend analysis (NEW) + - `workflow-health-latest.md` - Your last run's summary + - `campaign-manager-latest.md` - Latest campaign health insights + - `agent-performance-latest.md` - Latest agent quality insights + - `shared-alerts.md` - Cross-orchestrator alerts and coordination notes + + 2. Use insights from other orchestrators: + - Campaign Manager may identify campaigns that need workflow attention + - Agent Performance Analyzer may flag agents with quality issues that need health checks + - Coordinate actions to avoid duplicate issues or conflicting recommendations + + **Write to shared memory:** + 1. Save your current run's summary as `workflow-health-latest.md`: + - Workflow health scores and categories + - Critical issues (P0/P1) identified + - Systemic problems detected + - Issues created + - Run timestamp + + 2. Add coordination notes to `shared-alerts.md`: + - Workflows affecting multiple campaigns + - Systemic issues requiring campaign-level attention + - Health patterns that affect agent performance + + **Format for memory files:** + - Use markdown format only + - Include timestamp and workflow name at the top + - Keep files concise (< 10KB recommended) + - Use clear headers and bullet points + - Include issue/PR/workflow numbers for reference + + ### Phase 1: Discovery (5 minutes) + + 1. **Scan workflow directory:** + - List all `.md` files in `.github/workflows/` (excluding `shared/` subdirectory) + - Parse frontmatter for each workflow + - Extract key metadata (engine, triggers, tools, permissions) + + 2. **Check compilation status:** + - For each **executable** `.md` file, verify `.lock.yml` exists + - **SKIP** files in `.github/workflows/shared/` directory (reusable imports, not standalone workflows) + - Compare modification timestamps + - Run `gh aw compile --validate` to check for compilation errors + + 3. **Build workflow inventory:** + - Create structured data for each workflow + - Categorize by type, engine, and purpose + - Map relationships and dependencies + + ### Phase 2: Health Assessment (7 minutes) + + 4. **Query workflow runs:** + - For each workflow, get last 10 runs (or 7 days) + - Extract run status, duration, errors + - Calculate success rate + + 5. **Analyze errors:** + - Group errors by type and pattern + - Identify workflows with recurring issues + - Detect systemic problems affecting multiple workflows + + 6. **Calculate health scores:** + - For each workflow, compute reliability score + - Identify workflows in each category: + - Healthy (score ≥ 80) + - Warning (score 60-79) + - Critical (score < 60) + - Inactive (no recent runs) + + ### Phase 3: Dependency Analysis (3 minutes) + + 7. **Map dependencies:** + - Identify workflows that call other workflows + - Find shared resource usage + - Detect potential conflicts + + 8. **Analyze interactions:** + - Find workflows operating on same areas + - Identify coordination opportunities + - Flag redundant or conflicting workflows + + ### Phase 4: Decision Making (3 minutes) + + 9. **Generate recommendations:** + - **Immediate fixes:** Workflows that need urgent attention + - **Maintenance tasks:** Workflows that need updates + - **Optimizations:** Workflows that could be improved + - **Deprecations:** Workflows that should be removed + + 10. **Prioritize actions:** + - P0 (Critical): Workflows completely broken or causing cascading failures + - P1 (High): Workflows with high failure rates or affecting important operations + - P2 (Medium): Workflows with occasional issues or optimization opportunities + - P3 (Low): Minor improvements or documentation updates + + ### Phase 5: Execution (2 minutes) + + 11. **Create maintenance issues:** + - For P0/P1 workflows: Create detailed issue with: + - Workflow name and description + - Failure pattern and frequency + - Error messages and logs + - Suggested fixes + - Impact assessment + - Label with: `workflow-health`, `priority-{p0|p1|p2}`, `type-{failure|optimization|maintenance}` + + 12. **Update existing issues:** + - If issue already exists for a workflow: + - Add comment with latest status + - Update priority if situation changed + - Close if issue is resolved + + 13. **Generate health report:** + - Create/update pinned issue with workflow health dashboard + - Include summary metrics and trends + - List top issues and recommendations + + ## Output Format + + ### Workflow Health Dashboard Issue + + Create or update a pinned issue with this structure: + + ```markdown + # Workflow Health Dashboard - [DATE] + + ## Overview + - Total workflows: XXX + - Healthy: XXX (XX%) + - Warning: XXX (XX%) + - Critical: XXX (XX%) + - Inactive: XXX (XX%) + + ## Critical Issues 🚨 + + ### Workflow Name 1 (Score: XX/100) + - **Status:** Failing consistently (X/10 recent runs failed) + - **Error:** Permission denied when accessing GitHub API + - **Impact:** Unable to create issues for campaign tracking + - **Action:** Issue #XXX created for investigation + - **Priority:** P0 + + ### Workflow Name 2 (Score: XX/100) + - **Status:** Timeout on every run + - **Error:** Operation exceeds 10 minute timeout + - **Impact:** Campaign metrics not being updated + - **Action:** Issue #XXX created with optimization suggestions + - **Priority:** P1 + + ## Warnings ⚠️ + + ### Workflow Name 3 (Score: XX/100) + - **Issue:** Compilation warnings about deprecated syntax + - **Recommendation:** Update to use new safe-outputs format + - **Action:** Issue #XXX created with migration guide + + ### Workflow Name 4 (Score: XX/100) + - **Issue:** High resource usage (15 min average run time) + - **Recommendation:** Consider splitting into smaller workflows + - **Action:** Tracked for future optimization + + ## Healthy Workflows ✅ + + XXX workflows operating normally with no issues detected. + + ## Systemic Issues + + ### Issue: API Rate Limiting + - **Affected workflows:** XX workflows + - **Pattern:** Workflows running simultaneously hitting rate limits + - **Recommendation:** Stagger schedule times across workflows + - **Action:** Issue #XXX created with scheduling optimization plan + + ### Issue: Deprecated Tool Versions + - **Affected workflows:** XX workflows + - **Pattern:** Using MCP tools with outdated versions + - **Recommendation:** Update to latest MCP server versions + - **Action:** Issue #XXX created with upgrade plan + + ## Recommendations + + ### High Priority + 1. Fix workflow X (P0 - completely broken) + 2. Optimize workflow Y scheduling (P1 - causing rate limits) + 3. Update workflow Z to use safe outputs (P1 - security concern) + + ### Medium Priority + 1. Consolidate workflows A and B (similar functionality) + 2. Add timeout configs to XX workflows + 3. Update documentation for YY workflows + + ### Low Priority + 1. Modernize workflow syntax in legacy workflows + 2. Add better error handling to XX workflows + + ## Trends + + - Overall health score: XX/100 (↑/↓/→ from last week) + - New failures this week: X + - Fixed issues this week: X + - Average workflow success rate: XX% + - Workflows needing recompilation: X + + ## Actions Taken This Run + + - Created X new issues for critical workflows + - Updated X existing issues with status + - Closed X resolved issues + - Recommended X optimizations + + --- + > Last updated: [TIMESTAMP] + > Next check: [TIMESTAMP] + ``` + + ## Important Guidelines + + **Systematic monitoring:** + - Check ALL workflows, not just obviously failing ones + - Track trends over time to catch degradation early + - Be proactive about maintenance before workflows break + - Consider workflow interdependencies when assessing health + + **Evidence-based assessment:** + - Base health scores on concrete metrics (run success rate, error patterns) + - Cite specific workflow runs when reporting issues + - Include error messages and logs in issue reports + - Compare current state with historical data + + **Actionable recommendations:** + - Provide specific, implementable fixes for each issue + - Include code examples or configuration changes when possible + - Link to relevant documentation or migration guides + - Estimate effort/complexity for recommended fixes + + **Prioritization:** + - Focus on workflows critical to campaign operations + - Consider blast radius when prioritizing fixes + - Address systemic issues affecting multiple workflows first + - Balance urgent fixes with long-term improvements + + **Issue hygiene:** + - Don't create duplicate issues for the same workflow + - Update existing issues rather than creating new ones + - Close issues when workflows are fixed + - Use consistent labels for tracking and filtering + + ## Success Metrics + + Your effectiveness is measured by: + - Overall workflow health score improving over time + - Reduction in workflow failure rates + - Faster detection and resolution of issues + - Fewer cascading failures + - Improved resource utilization + - Higher workflow reliability scores + + Execute all phases systematically and maintain a proactive approach to workflow health management. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/workflow-normalizer.lock.yml b/.github/workflows/workflow-normalizer.lock.yml index 7874e521267..79be43a95b8 100644 --- a/.github/workflows/workflow-normalizer.lock.yml +++ b/.github/workflows/workflow-normalizer.lock.yml @@ -171,13 +171,282 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/workflow-normalizer.md}} + # Workflow Normalizer + + You are the Workflow Style Normalizer - an expert agent that ensures all agentic workflows follow consistent markdown formatting guidelines for their reports and outputs. + + ## Mission + + Daily review agentic workflow prompts (markdown files) that have been active in the last 24 hours to ensure they follow the project's markdown style guidelines, particularly for workflows that generate reports. + + ## Current Context + + - **Repository**: __GH_AW_GITHUB_REPOSITORY__ + - **Review Period**: Last 24 hours of workflow activity + + ## Style Guidelines to Enforce + + Based on the agentic workflows guidelines and Airbnb's design principles of creating delightful, user-focused experiences: + + ### Markdown Formatting Standards + + 1. **Headers**: Always start at h3 (###) or lower to maintain proper document hierarchy + - ❌ Bad: `# Main Section` or `## Subsection` + - ✅ Good: `### Main Section` and `#### Subsection` + + 2. **Progressive Disclosure**: Use HTML `
` and `` tags to collapse long content + - ❌ Bad: Long lists of items that force scrolling + - ✅ Good: `
View Full Details` wrapping content + - Make summaries bold: `Text` + + 3. **Checkboxes**: Use proper markdown checkbox syntax + - ✅ Good: `- [ ]` for unchecked, `- [x]` for checked + + 4. **Workflow Run Links**: Format as `[§12345](https://github.com/owner/repo/actions/runs/12345)` + + ### Report Structure Best Practices + + Inspired by Airbnb's design principles (trust, clarity, delight): + + 1. **User-Focused**: Present information that helps users make decisions quickly + 2. **Trust Through Clarity**: Important information visible, details collapsible + 3. **Exceeding Expectations**: Add helpful context, trends, and recommendations + 4. **Consistent Experience**: Use the same formatting patterns across all reports + + ### Target Workflows + + Focus on workflows that create reports or generate documentation, especially: + - Daily/weekly reporting workflows (names starting with `daily-` or `weekly-`) + - Workflows that create issues or discussions with structured content + - Analysis and summary workflows + - Chronicle, status, and metrics workflows + + ## Process + + ### Step 1: Identify Active Workflows + + Use the gh-aw MCP server to: + 1. Get workflow runs from the last 24 hours + 2. Identify which workflow markdown files were executed + 3. Focus on workflows that create reports (look for `create-issue`, `create-discussion`, `add-comment` in safe-outputs) + + ### Step 2: Analyze Workflow Prompts + + For each active reporting workflow: + 1. Read the workflow markdown file from `.github/workflows/` + 2. Analyze the prompt instructions for style compliance + 3. Check if the workflow mentions: + - Header level guidelines (should specify h3+) + - Progressive disclosure with `
` tags + - Report structure recommendations + + ### Step 3: Identify Non-Compliant Workflows + + Document workflows that: + - Don't specify proper header levels in their instructions + - Don't mention using `
` tags for long content + - Have unclear or inconsistent report formatting instructions + - Could benefit from progressive disclosure patterns + + ### Step 4: Create Improvement Issues + + For each non-compliant workflow, create an issue with: + + **Title**: `[workflow-style] Normalize report formatting for ` + + **Body Template**: + ```markdown + ### Workflow to Update + + **Workflow File**: `.github/workflows/.md` + **Issue**: This workflow generates reports but doesn't include markdown style guidelines + + ### Required Changes + + Update the workflow prompt to include these formatting guidelines: + + #### 1. Header Levels + Add instruction: "Use h3 (###) or lower for all headers in your report to maintain proper document hierarchy." + + #### 2. Progressive Disclosure + Add instruction: "Wrap long sections in `
Section Name` tags to improve readability and reduce scrolling." + + Example: + \`\`\`markdown +
+ Full Analysis Details + + [Long detailed content here...] + +
+ \`\`\` + + #### 3. Report Structure + Suggest a structure like: + - Brief summary (always visible) + - Key metrics or highlights (always visible) + - Detailed analysis (in `
` tags) + - Recommendations (always visible) + + ### Design Principles (Airbnb-Inspired) + + The updated workflow should create reports that: + 1. **Build trust through clarity**: Most important info immediately visible + 2. **Exceed expectations**: Add helpful context, trends, comparisons + 3. **Create delight**: Use progressive disclosure to reduce overwhelm + 4. **Maintain consistency**: Follow the same patterns as other reporting workflows + + ### Example Reference + + See workflows like `daily-repo-chronicle` or `audit-workflows` for good examples of structured reporting. + + ### Agent Task + + Update the workflow file `.github/workflows/.md` to include the formatting guidelines above in the prompt instructions. Test the updated workflow to ensure it produces well-formatted reports. + ``` + + ### Step 5: Summary Report + + Create a summary showing: + - Total workflows reviewed + - Number of non-compliant workflows found + - Issues created + - Overall compliance status + + Use `
` tags to collapse the detailed workflow list. + + ## Guidelines + + - **Be Constructive**: Focus on improving readability and user experience + - **Provide Examples**: Always show before/after or reference good examples + - **Prioritize Impact**: Focus on workflows that run frequently and generate public reports + - **Avoid Over-Engineering**: Only flag workflows that genuinely need improvement + - **Be Specific**: Provide exact file paths and clear instructions + + ## Output Format + + Create a summary comment or discussion showing: + + ```markdown + ### Workflow Style Normalization Report - [DATE] + + **Period**: Last 24 hours + **Workflows Reviewed**: [NUMBER] + **Issues Found**: [NUMBER] + **Issues Created**: [NUMBER] + + ### Compliance Status + + - ✅ **Compliant**: [NUMBER] workflows follow style guidelines + - ⚠️ **Needs Improvement**: [NUMBER] workflows need updates + +
+ View Detailed Findings + + ### Non-Compliant Workflows + + 1. **workflow-name-1**: Missing header level guidelines + 2. **workflow-name-2**: No progressive disclosure instructions + 3. ... + + ### Issues Created + + - [#123](link) - Normalize report formatting for workflow-name-1 + - [#124](link) - Normalize report formatting for workflow-name-2 + +
+ + ### Next Steps + + - [ ] Review created issues + - [ ] Update identified workflows + - [ ] Monitor next run for improvements + ``` + + ## Technical Requirements + + 1. Use the gh-aw MCP server to access workflow runs and logs + 2. Read workflow markdown files from `.github/workflows/` + 3. Create issues using the `create-issue` safe output + 4. Keep track of workflows already reported to avoid duplicates (check for existing open issues with same title) + 5. Focus on actionable improvements, not nitpicking + + Remember: The goal is to create a consistent, delightful user experience across all workflow reports by applying sound design principles and clear communication patterns. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/.github/workflows/workflow-skill-extractor.lock.yml b/.github/workflows/workflow-skill-extractor.lock.yml index 072f411c623..67f5ca17e83 100644 --- a/.github/workflows/workflow-skill-extractor.lock.yml +++ b/.github/workflows/workflow-skill-extractor.lock.yml @@ -171,13 +171,478 @@ jobs: GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/mood.md}} + . GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/shared/reporting.md}} + ## Report Structure Guidelines + + ### 1. Header Levels + **Use h3 (###) or lower for all headers in your issue report to maintain proper document hierarchy.** + + When creating GitHub issues or discussions: + - Use `###` (h3) for main sections (e.g., "### Test Summary") + - Use `####` (h4) for subsections (e.g., "#### Device-Specific Results") + - Never use `##` (h2) or `#` (h1) in reports - these are reserved for titles + + ### 2. Progressive Disclosure + **Wrap detailed test results in `
Section Name` tags to improve readability and reduce scrolling.** + + Use collapsible sections for: + - Verbose details (full test logs, raw data) + - Secondary information (minor warnings, extra context) + - Per-item breakdowns when there are many items + + Always keep critical information visible (summary, critical issues, key metrics). + + ### 3. Report Structure Pattern + + 1. **Overview**: 1-2 paragraphs summarizing key findings + 2. **Critical Information**: Show immediately (summary stats, critical issues) + 3. **Details**: Use `
Section Name` for expanded content + 4. **Context**: Add helpful metadata (workflow run, date, trigger) + + ### Design Principles (Airbnb-Inspired) + + Reports should: + - **Build trust through clarity**: Most important info immediately visible + - **Exceed expectations**: Add helpful context like trends, comparisons + - **Create delight**: Use progressive disclosure to reduce overwhelm + - **Maintain consistency**: Follow patterns across all reports + + ### Example Report Structure + + ```markdown + ### Summary + - Key metric 1: value + - Key metric 2: value + - Status: ✅/⚠️/❌ + + ### Critical Issues + [Always visible - these are important] + +
+ View Detailed Results + + [Comprehensive details, logs, traces] + +
+ +
+ View All Warnings + + [Minor issues and potential problems] + +
+ + ### Recommendations + [Actionable next steps - keep visible] + ``` + + ## Workflow Run References + + - Format run IDs as links: `[§12345](https://github.com/owner/repo/actions/runs/12345)` + - Include up to 3 most relevant run URLs at end under `**References:**` + - Do NOT add footer attribution (system adds automatically) GH_AW_PROMPT_EOF cat << 'GH_AW_PROMPT_EOF' >> "$GH_AW_PROMPT" - {{#runtime-import .github/workflows/workflow-skill-extractor.md}} + # Workflow Skill Extractor + + You are an AI workflow analyst specialized in identifying reusable skills in GitHub Agentic Workflows. Your mission is to analyze existing workflows and discover opportunities to extract shared components. + + ## Mission + + Review all agentic workflows in `.github/workflows/` and identify: + + 1. **Common prompt skills** - Similar instructions or task descriptions appearing in multiple workflows + 2. **Shared tool configurations** - Identical or similar MCP server setups across workflows + 3. **Repeated code snippets** - Common bash scripts, jq queries, or data processing steps + 4. **Configuration skills** - Similar frontmatter structures or settings + 5. **Shared data operations** - Common data fetching, processing, or transformation skills + + ## Analysis Process + + ### Step 1: Discover All Workflows + + Find all workflow files to analyze: + + ```bash + # List all markdown workflow files + find .github/workflows -name '*.md' -type f | grep -v 'shared/' | sort + + # Count total workflows + find .github/workflows -name '*.md' -type f | grep -v 'shared/' | wc -l + ``` + + ### Step 2: Analyze Existing Shared Components + + Before identifying skills, understand what shared components already exist: + + ```bash + # List existing shared components + find .github/workflows/shared -name '*.md' -type f | sort + + # Count existing shared components + find .github/workflows/shared -name '*.md' -type f | wc -l + ``` + + Review several existing shared components to understand the skills they solve. + + ### Step 3: Extract Workflow Structure + + For a representative sample of workflows (15-20 workflows), analyze: + + **Frontmatter Analysis:** + - Extract the `tools:` section to identify MCP servers and tools + - Extract `imports:` to see which shared components are most used + - Extract `safe-outputs:` to identify write operation patterns + - Extract `permissions:` to identify permission patterns + - Extract `network:` to identify network access patterns + - Extract `steps:` to identify custom setup steps + + **Prompt Analysis:** + - Read the markdown body (the actual prompt) for each workflow + - Identify common instruction patterns + - Look for similar task structures + - Find repeated guidelines or best practices + - Identify common data processing instructions + + **Use bash commands like:** + + ```bash + # View a workflow file + cat .github/workflows/issue-classifier.md + + # Extract frontmatter using grep + grep -A 50 "^---$" .github/workflows/issue-classifier.md | head -n 51 + + # Search for common skills across workflows + grep -l "tools:" .github/workflows/*.md | wc -l + grep -l "mcp-servers:" .github/workflows/*.md | wc -l + grep -l "safe-outputs:" .github/workflows/*.md | wc -l + ``` + + ### Step 4: Identify Skill Categories + + Group your findings into these categories: + + #### A. Tool Configuration Skills + + Look for MCP servers or tool configurations that appear in multiple workflows with identical or very similar settings. + + **Examples to look for:** + - Multiple workflows using the same MCP server (e.g., github, serena, playwright) + - Similar bash command allowlists + - Repeated tool permission configurations + - Common environment variable patterns + + **What makes a good candidate:** + - Appears in 3+ workflows + - Configuration is identical or nearly identical + - Reduces duplication by 50+ lines across workflows + + #### B. Prompt Skills + + Identify instruction blocks or prompt sections that are repeated across workflows. + + **Examples to look for:** + - Common analysis guidelines (e.g., "Read and analyze...", "Follow these steps...") + - Repeated task structures (e.g., data fetch → analyze → report) + - Similar formatting instructions + - Common best practice guidelines + - Shared data processing instructions + + **What makes a good candidate:** + - Appears in 3+ workflows + - Content is semantically similar (not necessarily word-for-word) + - Provides reusable instructions or guidelines + - Would improve consistency if shared + + #### C. Data Processing Skills + + Look for repeated bash scripts, jq queries, or data transformation logic. + + **Examples to look for:** + - Common jq queries for filtering GitHub data + - Similar bash scripts for data fetching + - Repeated data validation or formatting steps + - Common file processing operations + + **What makes a good candidate:** + - Appears in 2+ workflows + - Performs a discrete, reusable function + - Has clear inputs and outputs + - Would reduce code duplication + + #### D. Setup Steps Skills + + Identify common setup steps that could be shared. + + **Examples to look for:** + - Installing common tools (jq, yq, ffmpeg, etc.) + - Setting up language runtimes + - Configuring cache directories + - Environment preparation steps + + **What makes a good candidate:** + - Appears in 2+ workflows + - Performs environment setup + - Is copy-paste identical or very similar + - Would simplify workflow maintenance + + ### Step 5: Quantify Impact + + For each skill identified, calculate: + + 1. **Frequency**: How many workflows use this pattern? + 2. **Size**: How many lines of code would be saved? + 3. **Maintenance**: How often does this pattern change? + 4. **Complexity**: How difficult would extraction be? + + **Priority scoring:** + - **High Priority**: Used in 5+ workflows, saves 100+ lines, low complexity + - **Medium Priority**: Used in 3-4 workflows, saves 50+ lines, medium complexity + - **Low Priority**: Used in 2 workflows, saves 20+ lines, high complexity + + ### Step 6: Generate Recommendations + + For your top 3 most impactful skills, provide detailed recommendations: + + **For each recommendation:** + + 1. **Skill Name**: Short, descriptive name (e.g., "GitHub Issues Data Fetch with JQ") + 2. **Description**: What the skill does + 3. **Current Usage**: List workflows currently using this skill + 4. **Proposed Shared Component**: + - Filename (e.g., `shared/github-issues-analysis.md`) + - Key configuration elements + - Inputs/outputs + 5. **Impact Assessment**: + - Lines of code saved + - Number of workflows affected + - Maintenance benefits + 6. **Implementation Approach**: + - Step-by-step extraction plan + - Required changes to existing workflows + - Testing strategy + 7. **Example Usage**: Show how a workflow would import and use the shared component + + ### Step 7: Create Actionable Issues + + For the top 3 recommendations, **CREATE GITHUB ISSUES** using safe-outputs: + + **Issue Template:** + + **Title**: `[refactoring] Extract [Skill Name] into shared component` + + **Body**: + ```markdown + ## Skill Overview + + [Description of the skill and why it should be shared] + + ## Current Usage + + This skill appears in the following workflows: + - [ ] `workflow-1.md` (lines X-Y) + - [ ] `workflow-2.md` (lines X-Y) + - [ ] `workflow-3.md` (lines X-Y) + + ## Proposed Shared Component + + **File**: `.github/workflows/shared/[component-name].md` + + **Configuration**: + \`\`\`yaml + # Example frontmatter + --- + tools: + # Configuration + --- + \`\`\` + + **Usage Example**: + \`\`\`yaml + # In a workflow + imports: + - shared/[component-name].md + \`\`\` + + ## Impact + + - **Workflows affected**: [N] workflows + - **Lines saved**: ~[X] lines + - **Maintenance benefit**: [Description] + + ## Implementation Plan + + 1. [ ] Create shared component at `.github/workflows/shared/[component-name].md` + 2. [ ] Update workflow 1 to use shared component + 3. [ ] Update workflow 2 to use shared component + 4. [ ] Update workflow 3 to use shared component + 5. [ ] Test all affected workflows + 6. [ ] Update documentation + + ## Related Analysis + + This recommendation comes from the Workflow Skill Extractor analysis run on [date]. + + See the full analysis report in discussions: [link] + ``` + + ### Step 8: Generate Report + + Create a comprehensive report as a GitHub Discussion with the following structure: + + ```markdown + # Workflow Skill Extractor Report + + ## 🎯 Executive Summary + + [2-3 paragraph overview of findings] + + **Key Statistics:** + - Total workflows analyzed: [N] + - Skills identified: [N] + - High-priority recommendations: [N] + - Estimated total lines saved: [N] + + ## 📊 Analysis Overview + + ### Workflows Analyzed + + [List of all workflows analyzed with brief description] + + ### Existing Shared Components + + [List of shared components already in use] + + ## 🔍 Identified Skills + + ### High Priority Skills + + #### 1. [Skill Name] + - **Frequency**: Used in [N] workflows + - **Size**: ~[N] lines + - **Priority**: High + - **Description**: [What it does] + - **Workflows**: [List] + - **Recommendation**: [Extract to shared/X.md] + + #### 2. [Skill Name] + [Same structure] + + #### 3. [Skill Name] + [Same structure] + + ### Medium Priority Skills + + [Similar structure for 2-3 medium priority skills] + + ### Low Priority Skills + + [Brief list of other skills found] + + ## 💡 Detailed Recommendations + + ### Recommendation 1: [Skill Name] + +
+ Full Details + + **Current State:** + [Code snippets showing current usage] + + **Proposed Shared Component:** + \`\`\`yaml + --- + # Proposed configuration + --- + \`\`\` + + **Migration Path:** + 1. [Step 1] + 2. [Step 2] + ... + + **Impact:** + - Lines saved: ~[N] + - Maintenance: [Benefits] + - Testing: [Approach] + +
+ + ### Recommendation 2: [Skill Name] + [Same structure] + + ### Recommendation 3: [Skill Name] + [Same structure] + + ## 📈 Impact Analysis + + ### By Category + + - **Tool Configurations**: [N] skills, [X] lines saved + - **Prompt Skills**: [N] skills, [Y] lines saved + - **Data Processing**: [N] skills, [Z] lines saved + + ### By Priority + + | Priority | Skills | Lines Saved | Workflows Affected | + |----------|--------|-------------|-------------------| + | High | [N] | [X] | [Y] | + | Medium | [N] | [X] | [Y] | + | Low | [N] | [X] | [Y] | + + ## ✅ Created Issues + + This analysis has created the following actionable issues: + + 1. Issue #[N]: [Extract Skill 1] + 2. Issue #[N]: [Extract Skill 2] + 3. Issue #[N]: [Extract Skill 3] + + ## 🎯 Next Steps + + 1. Review the created issues and prioritize + 2. Implement high-priority shared components + 3. Gradually migrate workflows to use shared components + 4. Monitor for new skills in future workflow additions + 5. Schedule next extractor run in 1 month + + ## 📚 Methodology + + This analysis used the following approach: + - Analyzed [N] workflow files + - Reviewed [N] existing shared components + - Applied skill recognition across [N] categories + - Prioritized based on frequency, size, and complexity + - Generated top 3 actionable recommendations + + **Analysis Date**: [Date] + **Analyzer**: Workflow Skill Extractor v1.0 + ``` + + ## Guidelines + + - **Be thorough but selective**: Don't try to extract every small similarity + - **Focus on high-impact skills**: Prioritize skills that appear in many workflows + - **Consider maintenance**: Shared components should be stable and well-defined + - **Think about reusability**: Skills should be generic enough for multiple uses + - **Preserve specificity**: Don't over-abstract; some workflow-specific code should stay + - **Document clearly**: Provide detailed migration paths and usage examples + - **Create actionable issues**: Make it easy for engineers to implement recommendations + + ## Important Notes + + - **Analyze, don't modify**: This workflow only creates recommendations; it doesn't change existing workflows + - **Sample intelligently**: You don't need to read every single workflow in detail; sample 15-20 representative workflows + - **Cross-reference**: Check existing shared components to avoid recommending what already exists + - **Be specific**: Provide exact filenames, line numbers, and code snippets + - **Consider compatibility**: Ensure recommended shared components work with the existing import system + - **Focus on quick wins**: Prioritize skills that are easy to extract with high impact + + Good luck! Your analysis will help improve the maintainability and consistency of all agentic workflows in this repository. + GH_AW_PROMPT_EOF - name: Interpolate variables and render templates uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8 diff --git a/pkg/parser/frontmatter_hash.go b/pkg/parser/frontmatter_hash.go index 111d5c16fcc..d9f8fc9e2be 100644 --- a/pkg/parser/frontmatter_hash.go +++ b/pkg/parser/frontmatter_hash.go @@ -558,6 +558,22 @@ func computeFrontmatterHashTextBasedWithReader(frontmatterText, markdown, baseDi canonical["template-expressions"] = expressions } + // Check if inline-imports is enabled by parsing the frontmatter text + // When inline-imports is true, include the markdown body in the hash + // since the body is embedded in the compiled workflow and changes should trigger recompilation + inlineImportsEnabled := false + if strings.Contains(frontmatterText, "inline-imports:") && strings.Contains(frontmatterText, "true") { + // Simple heuristic check - not perfect but sufficient for hash purposes + inlineImportsEnabled = true + frontmatterHashLog.Print("Detected inline-imports: true, including markdown body in hash") + } + + // Add markdown body when inline-imports is enabled + if inlineImportsEnabled && markdown != "" { + canonical["markdown-body"] = strings.TrimSpace(markdown) + frontmatterHashLog.Printf("Added markdown body to hash (%d bytes)", len(markdown)) + } + // Serialize to canonical JSON canonicalJSON, err := marshalCanonicalJSON(canonical) if err != nil { diff --git a/pkg/parser/schemas/main_workflow_schema.json b/pkg/parser/schemas/main_workflow_schema.json index ffc1f010928..e3ef4d5db32 100644 --- a/pkg/parser/schemas/main_workflow_schema.json +++ b/pkg/parser/schemas/main_workflow_schema.json @@ -6477,6 +6477,12 @@ "description": "Enable strict mode validation for enhanced security and compliance. Strict mode enforces: (1) Write Permissions - refuses contents:write, issues:write, pull-requests:write; requires safe-outputs instead, (2) Network Configuration - requires explicit network configuration with no standalone wildcard '*' in allowed domains (patterns like '*.example.com' are allowed), (3) Action Pinning - enforces actions pinned to commit SHAs instead of tags/branches, (4) MCP Network - requires network configuration for custom MCP servers with containers, (5) Deprecated Fields - refuses deprecated frontmatter fields. Can be enabled per-workflow via 'strict: true' in frontmatter, or disabled via 'strict: false'. CLI flag takes precedence over frontmatter (gh aw compile --strict enforces strict mode). Defaults to true. See: https://github.github.com/gh-aw/reference/frontmatter/#strict-mode-strict", "examples": [true, false] }, + "inline-imports": { + "type": "boolean", + "default": false, + "description": "When set to true, all imports (both imported fragments and the main workflow body) are embedded directly into the compiled .lock.yml file at compilation time instead of using runtime-import macros. This is required for workflow_call usage where the consumer repository's workspace doesn't contain the fragment files. When false (default), the compiler uses runtime-import macros that resolve files from the checked-out workspace at runtime, allowing editing without recompilation.", + "examples": [true, false] + }, "safe-inputs": { "type": "object", "description": "Safe inputs configuration for defining custom lightweight MCP tools as JavaScript, shell scripts, or Python scripts. Tools are mounted in an MCP server and have access to secrets specified by the user. Only one of 'script' (JavaScript), 'run' (shell), or 'py' (Python) must be specified per tool.", diff --git a/pkg/workflow/compiler_activation_jobs.go b/pkg/workflow/compiler_activation_jobs.go index dbf41b025a8..63374d982b2 100644 --- a/pkg/workflow/compiler_activation_jobs.go +++ b/pkg/workflow/compiler_activation_jobs.go @@ -663,18 +663,23 @@ func (c *Compiler) buildActivationJob(data *WorkflowData, preActivationJobCreate } // Generate prompt in the activation job (before agent job runs) - compilerActivationJobsLog.Print("Generating prompt in activation job") - c.generatePromptInActivationJob(&steps, data) - - // Upload prompt.txt as an artifact for the agent job to download - compilerActivationJobsLog.Print("Adding prompt artifact upload step") - steps = append(steps, " - name: Upload prompt artifact\n") - steps = append(steps, " if: success()\n") - steps = append(steps, fmt.Sprintf(" uses: %s\n", GetActionPin("actions/upload-artifact"))) - steps = append(steps, " with:\n") - steps = append(steps, " name: prompt\n") - steps = append(steps, " path: /tmp/gh-aw/aw-prompts/prompt.txt\n") - steps = append(steps, " retention-days: 1\n") + // Skip when inline-imports is enabled since prompts are embedded directly in the agent job + if !c.inlinePrompt { + compilerActivationJobsLog.Print("Generating prompt in activation job") + c.generatePromptInActivationJob(&steps, data) + + // Upload prompt.txt as an artifact for the agent job to download + compilerActivationJobsLog.Print("Adding prompt artifact upload step") + steps = append(steps, " - name: Upload prompt artifact\n") + steps = append(steps, " if: success()\n") + steps = append(steps, fmt.Sprintf(" uses: %s\n", GetActionPin("actions/upload-artifact"))) + steps = append(steps, " with:\n") + steps = append(steps, " name: prompt\n") + steps = append(steps, " path: /tmp/gh-aw/aw-prompts/prompt.txt\n") + steps = append(steps, " retention-days: 1\n") + } else { + compilerActivationJobsLog.Print("Skipping prompt generation in activation job (inline-imports mode)") + } // Set permissions - activation job always needs contents:read for GitHub API access // Also add reaction permissions if reaction is configured and not "none" diff --git a/pkg/workflow/compiler_inline_imports_test.go b/pkg/workflow/compiler_inline_imports_test.go new file mode 100644 index 00000000000..cf3109e42cd --- /dev/null +++ b/pkg/workflow/compiler_inline_imports_test.go @@ -0,0 +1,326 @@ +//go:build !integration + +package workflow + +import ( + "os" + "path/filepath" + "strings" + "testing" + + "github.com/stretchr/testify/assert" + "github.com/stretchr/testify/require" +) + +func TestInlineImports_Enabled(t *testing.T) { + // Create temporary directory for test files + tempDir := t.TempDir() + + // Create a shared fragment file + fragmentContent := `--- +tools: + bash: [echo] +--- + +# Shared Fragment + +This is shared content that should be inlined. +` + sharedDir := filepath.Join(tempDir, "shared") + err := os.MkdirAll(sharedDir, 0755) + require.NoError(t, err, "Failed to create shared directory") + + fragmentPath := filepath.Join(sharedDir, "test-fragment.md") + err = os.WriteFile(fragmentPath, []byte(fragmentContent), 0644) + require.NoError(t, err, "Failed to write fragment file") + + // Create a workflow file with inline-imports: true + workflowContent := `--- +name: Test Inline Imports +on: issues +engine: copilot +inline-imports: true +imports: + - shared/test-fragment.md +--- + +# Main Workflow + +This is the main workflow content. +` + workflowPath := filepath.Join(tempDir, "test-workflow.md") + err = os.WriteFile(workflowPath, []byte(workflowContent), 0644) + require.NoError(t, err, "Failed to write workflow file") + + // Compile the workflow + compiler := NewCompiler( + + WithSkipValidation(true), + ) + + err = compiler.CompileWorkflow(workflowPath) + require.NoError(t, err, "Compilation should succeed") + + // Read the generated lock file + lockFilePath := strings.TrimSuffix(workflowPath, ".md") + ".lock.yml" + lockContent, err := os.ReadFile(lockFilePath) + require.NoError(t, err, "Failed to read lock file") + lockString := string(lockContent) + + // Verify that runtime-import macros are NOT present + assert.NotContains(t, lockString, "{{#runtime-import", "Should not contain runtime-import macros when inline-imports is true") + + // Verify that both the fragment and main workflow content are inlined + assert.Contains(t, lockString, "# Shared Fragment", "Should contain inlined fragment heading") + assert.Contains(t, lockString, "This is shared content that should be inlined", "Should contain inlined fragment content") + assert.Contains(t, lockString, "# Main Workflow", "Should contain inlined main workflow heading") + assert.Contains(t, lockString, "This is the main workflow content", "Should contain inlined main workflow content") +} + +func TestInlineImports_Disabled(t *testing.T) { + // Create temporary directory for test files + tempDir := t.TempDir() + + // Create a shared fragment file + fragmentContent := `--- +tools: + bash: [echo] +--- + +# Shared Fragment + +This is shared content loaded at runtime. +` + sharedDir := filepath.Join(tempDir, "shared") + err := os.MkdirAll(sharedDir, 0755) + require.NoError(t, err, "Failed to create shared directory") + + fragmentPath := filepath.Join(sharedDir, "test-fragment.md") + err = os.WriteFile(fragmentPath, []byte(fragmentContent), 0644) + require.NoError(t, err, "Failed to write fragment file") + + // Create a workflow file with inline-imports: false + workflowContent := `--- +name: Test Runtime Import +on: issues +engine: copilot +inline-imports: false +imports: + - shared/test-fragment.md +--- + +# Main Workflow + +This is the main workflow content with runtime imports. +` + workflowPath := filepath.Join(tempDir, "test-workflow.md") + err = os.WriteFile(workflowPath, []byte(workflowContent), 0644) + require.NoError(t, err, "Failed to write workflow file") + + // Compile the workflow + compiler := NewCompiler( + + WithSkipValidation(true), + ) + + err = compiler.CompileWorkflow(workflowPath) + require.NoError(t, err, "Compilation should succeed") + + // Read the generated lock file + lockFilePath := strings.TrimSuffix(workflowPath, ".md") + ".lock.yml" + lockContent, err := os.ReadFile(lockFilePath) + require.NoError(t, err, "Failed to read lock file") + lockString := string(lockContent) + + // Verify that runtime-import macros ARE present + assert.Contains(t, lockString, "{{#runtime-import shared/test-fragment.md}}", "Should contain runtime-import macro for fragment when inline-imports is false") + assert.Contains(t, lockString, "{{#runtime-import test-workflow.md}}", "Should contain runtime-import macro for main workflow when inline-imports is false") + + // Verify that the fragment content is NOT inlined + assert.NotContains(t, lockString, "This is shared content loaded at runtime", "Should not inline fragment content when inline-imports is false") +} + +func TestInlineImports_Default(t *testing.T) { + // Create temporary directory for test files + tempDir := t.TempDir() + + // Create a shared fragment file + fragmentContent := `--- +tools: + bash: [echo] +--- + +# Shared Fragment + +This is shared content loaded at runtime by default. +` + sharedDir := filepath.Join(tempDir, "shared") + err := os.MkdirAll(sharedDir, 0755) + require.NoError(t, err, "Failed to create shared directory") + + fragmentPath := filepath.Join(sharedDir, "test-fragment.md") + err = os.WriteFile(fragmentPath, []byte(fragmentContent), 0644) + require.NoError(t, err, "Failed to write fragment file") + + // Create a workflow file WITHOUT inline-imports field (should default to false) + workflowContent := `--- +name: Test Default Behavior +on: issues +engine: copilot +imports: + - shared/test-fragment.md +--- + +# Main Workflow + +This is the main workflow content with default behavior. +` + workflowPath := filepath.Join(tempDir, "test-workflow.md") + err = os.WriteFile(workflowPath, []byte(workflowContent), 0644) + require.NoError(t, err, "Failed to write workflow file") + + // Compile the workflow + compiler := NewCompiler( + + WithSkipValidation(true), + ) + + err = compiler.CompileWorkflow(workflowPath) + require.NoError(t, err, "Compilation should succeed") + + // Read the generated lock file + lockFilePath := strings.TrimSuffix(workflowPath, ".md") + ".lock.yml" + lockContent, err := os.ReadFile(lockFilePath) + require.NoError(t, err, "Failed to read lock file") + lockString := string(lockContent) + + // Verify that runtime-import macros ARE present (default behavior) + assert.Contains(t, lockString, "{{#runtime-import shared/test-fragment.md}}", "Should contain runtime-import macro for fragment by default") + assert.Contains(t, lockString, "{{#runtime-import test-workflow.md}}", "Should contain runtime-import macro for main workflow by default") + + // Verify that the fragment content is NOT inlined + assert.NotContains(t, lockString, "This is shared content loaded at runtime by default", "Should not inline fragment content by default") +} + +func TestInlineImports_WithImportInputs(t *testing.T) { + // Create temporary directory for test files + tempDir := t.TempDir() + + // Create a shared fragment file with inputs + fragmentContent := `--- +inputs: + message: + description: A message to display + required: true + default: "Hello" +tools: + bash: [echo] +--- + +# Shared Fragment + +Message: {{ inputs.message }} +` + sharedDir := filepath.Join(tempDir, "shared") + err := os.MkdirAll(sharedDir, 0755) + require.NoError(t, err, "Failed to create shared directory") + + fragmentPath := filepath.Join(sharedDir, "test-fragment-inputs.md") + err = os.WriteFile(fragmentPath, []byte(fragmentContent), 0644) + require.NoError(t, err, "Failed to write fragment file") + + // Create a workflow file with inline-imports: true and import with inputs + workflowContent := `--- +name: Test Inline Imports With Inputs +on: issues +engine: copilot +inline-imports: true +imports: + - path: shared/test-fragment-inputs.md + inputs: + message: "Custom message" +--- + +# Main Workflow + +This is the main workflow content. +` + workflowPath := filepath.Join(tempDir, "test-workflow.md") + err = os.WriteFile(workflowPath, []byte(workflowContent), 0644) + require.NoError(t, err, "Failed to write workflow file") + + // Compile the workflow + compiler := NewCompiler( + + WithSkipValidation(true), + ) + + err = compiler.CompileWorkflow(workflowPath) + require.NoError(t, err, "Compilation should succeed") + + // Read the generated lock file + lockFilePath := strings.TrimSuffix(workflowPath, ".md") + ".lock.yml" + lockContent, err := os.ReadFile(lockFilePath) + require.NoError(t, err, "Failed to read lock file") + lockString := string(lockContent) + + // Verify that runtime-import macros are NOT present + assert.NotContains(t, lockString, "{{#runtime-import", "Should not contain runtime-import macros when inline-imports is true") + + // Verify that the fragment content is inlined (input template is preserved) + assert.Contains(t, lockString, "# Shared Fragment", "Should contain inlined fragment heading") + assert.Contains(t, lockString, "Message: {{ inputs.message }}", "Should contain inlined fragment with input template") +} + +func TestExtractInlineImports(t *testing.T) { + compiler := NewCompiler() + + tests := []struct { + name string + frontmatter map[string]any + expected bool + }{ + { + name: "inline-imports true", + frontmatter: map[string]any{ + "name": "Test", + "on": "issues", + "inline-imports": true, + }, + expected: true, + }, + { + name: "inline-imports false", + frontmatter: map[string]any{ + "name": "Test", + "on": "issues", + "inline-imports": false, + }, + expected: false, + }, + { + name: "inline-imports not present", + frontmatter: map[string]any{ + "name": "Test", + "on": "issues", + }, + expected: false, + }, + { + name: "inline-imports wrong type", + frontmatter: map[string]any{ + "name": "Test", + "on": "issues", + "inline-imports": "true", // string instead of bool + }, + expected: false, + }, + } + + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + result := compiler.extractInlineImports(tt.frontmatter) + assert.Equal(t, tt.expected, result, "extractInlineImports should return %v for %s", tt.expected, tt.name) + }) + } +} diff --git a/pkg/workflow/compiler_orchestrator_workflow.go b/pkg/workflow/compiler_orchestrator_workflow.go index c8161583320..763903c4d6d 100644 --- a/pkg/workflow/compiler_orchestrator_workflow.go +++ b/pkg/workflow/compiler_orchestrator_workflow.go @@ -168,6 +168,7 @@ func (c *Compiler) extractYAMLSections(frontmatter map[string]any, workflowData workflowData.Env = c.extractTopLevelYAMLSection(frontmatter, "env") workflowData.Features = c.extractFeatures(frontmatter) workflowData.If = c.extractIfCondition(frontmatter) + workflowData.InlineImports = c.extractInlineImports(frontmatter) // Extract timeout-minutes (canonical form) workflowData.TimeoutMinutes = c.extractTopLevelYAMLSection(frontmatter, "timeout-minutes") diff --git a/pkg/workflow/compiler_types.go b/pkg/workflow/compiler_types.go index a771ca446eb..abe598c4db5 100644 --- a/pkg/workflow/compiler_types.go +++ b/pkg/workflow/compiler_types.go @@ -455,6 +455,7 @@ type WorkflowData struct { ActionCache *ActionCache // cache for action pin resolutions ActionResolver *ActionResolver // resolver for action pins StrictMode bool // strict mode for action pinning + InlineImports bool // if true, inline all imports at compile time instead of using runtime-import macros SecretMasking *SecretMaskingConfig // secret masking configuration ParsedFrontmatter *FrontmatterConfig // cached parsed frontmatter configuration (for performance optimization) ActionPinWarnings map[string]bool // cache of already-warned action pin failures (key: "repo@version") diff --git a/pkg/workflow/compiler_yaml.go b/pkg/workflow/compiler_yaml.go index 80b8212f90f..bae56c13c41 100644 --- a/pkg/workflow/compiler_yaml.go +++ b/pkg/workflow/compiler_yaml.go @@ -3,6 +3,7 @@ package workflow import ( "encoding/json" "fmt" + "os" "path/filepath" "sort" "strings" @@ -172,6 +173,13 @@ func (c *Compiler) generateWorkflowBody(yaml *strings.Builder, data *WorkflowDat func (c *Compiler) generateYAML(data *WorkflowData, markdownPath string) (string, error) { compilerYamlLog.Printf("Generating YAML for workflow: %s", data.Name) + // Check if inline-imports is set in frontmatter + // If set to true, enable inlinePrompt to embed all imports at compile time + if data.InlineImports { + compilerYamlLog.Print("inline-imports: true detected, enabling inline prompt mode") + c.inlinePrompt = true + } + // Build all jobs and validate dependencies if err := c.buildJobsAndValidate(data, markdownPath); err != nil { return "", fmt.Errorf("failed to build and validate jobs: %w", err) @@ -294,16 +302,83 @@ func (c *Compiler) generatePrompt(yaml *strings.Builder, data *WorkflowData) { compilerYamlLog.Printf("Inlined imported markdown with inputs in %d chunks", len(importedChunks)) } - // Step 1b: Generate runtime-import macros for imported markdown without inputs - // These imports don't need compile-time substitution, so they can be loaded at runtime + // Step 1b: Handle imported markdown without inputs + // - When inline-imports is true (or inlinePrompt for Wasm): inline the content at compile time + // - Otherwise: generate runtime-import macros (loaded at runtime) if len(data.ImportPaths) > 0 { - compilerYamlLog.Printf("Generating runtime-import macros for %d imports without inputs", len(data.ImportPaths)) - for _, importPath := range data.ImportPaths { - // Normalize to Unix paths (forward slashes) for cross-platform compatibility - importPath = filepath.ToSlash(importPath) - runtimeImportMacro := fmt.Sprintf("{{#runtime-import %s}}", importPath) - userPromptChunks = append(userPromptChunks, runtimeImportMacro) - compilerYamlLog.Printf("Added runtime-import macro for: %s", importPath) + if c.inlinePrompt { + // Inline mode: read and embed import files at compile time + compilerYamlLog.Printf("Inlining %d imports without inputs (inline-imports mode)", len(data.ImportPaths)) + + for _, importPath := range data.ImportPaths { + // Import paths can be: + // 1. Repository-relative starting with ".github/" (production workflows) + // 2. File-relative like "shared/file.md" (tests or local imports) + + var fullPath string + if strings.HasPrefix(importPath, ".github/") && c.gitRoot != "" { + // Production workflow with repository-relative import - use git root + fullPath = filepath.Join(c.gitRoot, importPath) + compilerYamlLog.Printf("Resolving repository-relative import from git root: %s", fullPath) + } else if c.markdownPath != "" { + // Test or file-relative import - use markdown file's directory + baseDir := filepath.Dir(c.markdownPath) + fullPath = filepath.Join(baseDir, importPath) + compilerYamlLog.Printf("Resolving file-relative import from markdown directory: %s", fullPath) + } else { + // Fallback - try current directory + fullPath = importPath + compilerYamlLog.Printf("Using import path as-is: %s", fullPath) + } + + compilerYamlLog.Printf("Reading import file for inlining: %s", fullPath) + + // Read the import file + content, err := os.ReadFile(fullPath) + if err != nil { + compilerYamlLog.Printf("Warning: failed to read import file %s: %v", fullPath, err) + // Fall back to runtime-import macro on error + importPath = filepath.ToSlash(importPath) + runtimeImportMacro := fmt.Sprintf("{{#runtime-import %s}}", importPath) + userPromptChunks = append(userPromptChunks, runtimeImportMacro) + continue + } + + // Extract markdown body from the import file (skip frontmatter) + result, err := parser.ExtractFrontmatterFromContent(string(content)) + if err != nil { + compilerYamlLog.Printf("Warning: failed to extract markdown from import %s: %v", importPath, err) + // Use full content if frontmatter extraction fails + result = &parser.FrontmatterResult{Markdown: string(content)} + } + + // Clean and process the imported markdown + cleanedImport := removeXMLComments(result.Markdown) + cleanedImport = wrapExpressionsInTemplateConditionals(cleanedImport) + + // Extract expressions and replace with env var references + importExtractor := NewExpressionExtractor() + importExprMappings, err := importExtractor.ExtractExpressions(cleanedImport) + if err == nil && len(importExprMappings) > 0 { + cleanedImport = importExtractor.ReplaceExpressionsWithEnvVars(cleanedImport) + expressionMappings = append(expressionMappings, importExprMappings...) + } + + // Split into chunks and add to user prompt + importChunks := splitContentIntoChunks(cleanedImport) + userPromptChunks = append(userPromptChunks, importChunks...) + compilerYamlLog.Printf("Inlined import %s in %d chunks", importPath, len(importChunks)) + } + } else { + // Runtime mode: generate runtime-import macros (loaded at runtime) + compilerYamlLog.Printf("Generating runtime-import macros for %d imports without inputs", len(data.ImportPaths)) + for _, importPath := range data.ImportPaths { + // Normalize to Unix paths (forward slashes) for cross-platform compatibility + importPath = filepath.ToSlash(importPath) + runtimeImportMacro := fmt.Sprintf("{{#runtime-import %s}}", importPath) + userPromptChunks = append(userPromptChunks, runtimeImportMacro) + compilerYamlLog.Printf("Added runtime-import macro for: %s", importPath) + } } } diff --git a/pkg/workflow/compiler_yaml_main_job.go b/pkg/workflow/compiler_yaml_main_job.go index 3c3aa823407..65579b418ed 100644 --- a/pkg/workflow/compiler_yaml_main_job.go +++ b/pkg/workflow/compiler_yaml_main_job.go @@ -233,13 +233,22 @@ func (c *Compiler) generateMainJobSteps(yaml *strings.Builder, data *WorkflowDat // This reads from aw_info.json for consistent data c.generateWorkflowOverviewStep(yaml, data, engine) - // Download prompt artifact from activation job - compilerYamlLog.Print("Adding prompt artifact download step") - yaml.WriteString(" - name: Download prompt artifact\n") - fmt.Fprintf(yaml, " uses: %s\n", GetActionPin("actions/download-artifact")) - yaml.WriteString(" with:\n") - yaml.WriteString(" name: prompt\n") - yaml.WriteString(" path: /tmp/gh-aw/aw-prompts\n") + // Handle prompt generation based on inline mode + if !c.inlinePrompt { + // Standard mode: Download prompt artifact from activation job + compilerYamlLog.Print("Adding prompt artifact download step") + yaml.WriteString(" - name: Download prompt artifact\n") + fmt.Fprintf(yaml, " uses: %s\n", GetActionPin("actions/download-artifact")) + yaml.WriteString(" with:\n") + yaml.WriteString(" name: prompt\n") + yaml.WriteString(" path: /tmp/gh-aw/aw-prompts\n") + } else { + // Inline mode: Generate prompt directly in agent job + compilerYamlLog.Print("Generating prompt inline in agent job (inline-imports mode)") + var promptYaml strings.Builder + c.generatePrompt(&promptYaml, data) + yaml.WriteString(promptYaml.String()) + } // Collect artifact paths for unified upload at the end var artifactPaths []string diff --git a/pkg/workflow/frontmatter_extraction_metadata.go b/pkg/workflow/frontmatter_extraction_metadata.go index b621c8c9d6e..d215ae6e43f 100644 --- a/pkg/workflow/frontmatter_extraction_metadata.go +++ b/pkg/workflow/frontmatter_extraction_metadata.go @@ -365,3 +365,23 @@ func extractPluginsFromFrontmatter(frontmatter map[string]any) *PluginInfo { return nil } + +// extractInlineImports extracts the inline-imports boolean field from frontmatter +// Returns true if inline-imports is explicitly set to true, false otherwise +func (c *Compiler) extractInlineImports(frontmatter map[string]any) bool { + frontmatterMetadataLog.Print("Extracting inline-imports from frontmatter") + value, exists := frontmatter["inline-imports"] + if !exists { + frontmatterMetadataLog.Print("No inline-imports field found in frontmatter") + return false + } + + // inline-imports should be a boolean + if boolValue, ok := value.(bool); ok { + frontmatterMetadataLog.Printf("Extracted inline-imports: %v", boolValue) + return boolValue + } + + frontmatterMetadataLog.Printf("inline-imports field is not a boolean, got %T", value) + return false +} diff --git a/pkg/workflow/frontmatter_types.go b/pkg/workflow/frontmatter_types.go index d488b373994..16845193b5c 100644 --- a/pkg/workflow/frontmatter_types.go +++ b/pkg/workflow/frontmatter_types.go @@ -96,7 +96,8 @@ type FrontmatterConfig struct { TrackerID string `json:"tracker-id,omitempty"` Version string `json:"version,omitempty"` TimeoutMinutes int `json:"timeout-minutes,omitempty"` - Strict *bool `json:"strict,omitempty"` // Pointer to distinguish unset from false + Strict *bool `json:"strict,omitempty"` // Pointer to distinguish unset from false + InlineImports *bool `json:"inline-imports,omitempty"` // If true, inline all imports at compile time instead of using runtime-import macros Labels []string `json:"labels,omitempty"` // Configuration sections - using strongly-typed structs diff --git a/smoke-test-22160562143.md b/smoke-test-22160562143.md new file mode 100644 index 00000000000..f646f96433c --- /dev/null +++ b/smoke-test-22160562143.md @@ -0,0 +1 @@ +Test file for PR push - smoke test 22160562143