chore(manifest): bump YiAgent/OpenCI SHA to 425f7339

[YiWang24]

Automated SHA bump: 4e1ecadc to 425f7339

The YiAgent/OpenCI self-reference SHA in manifest.yml was stale. Updated to the latest main HEAD so all reusable workflow calls resolve correctly.

Generated by the on-main-bump-sha workflow.

---

^{Need help on this PR? Tag @codesmith with what you need.}

• Let Codesmith autofix CI failures and bot reviews

Summary by CodeRabbit

• Chores
  • Updated internal CI/CD workflow infrastructure to latest pinned versions across all automation pipelines, including deployment, testing, and observability workflows.

[qodo-code-review]

ⓘ You've reached your Qodo monthly free-tier limit. Reviews pause until next month — upgrade your plan to continue now, or link your paid account if you already have one.

[coderabbitai]

Caution

Review failed

Pull request was closed or merged during review

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro Plus

Run ID: ffb425a9-58b4-47e2-9331-2f9d3ad43c96

📥 Commits

Reviewing files that changed from the base of the PR and between 425f733 and 953031c.

📒 Files selected for processing (12)

• .github/workflows/agent.yml
• .github/workflows/ci-self-test.yml
• .github/workflows/ci.yml
• .github/workflows/dependencies.yml
• .github/workflows/deploy.yml
• .github/workflows/issue-ops.yml
• .github/workflows/observability.yml
• .github/workflows/on-maintenance.yml
• .github/workflows/pull-request.yml
• .github/workflows/release.yml
• .github/workflows/reusable-ci.yml
• manifest.yml

---

📝 Walkthrough

Walkthrough

This PR updates GitHub Actions workflow files to pin external YiAgent/OpenCI reusable workflows and actions to a new commit SHA (425f7339dc91abf536e5daa6a9ecead8a619cdcb), replacing an older commit reference (4e1ecadc2505761f104f3fd8d255eee4eb369d90) across multiple workflow files and the manifest dependency file.

Changes

Workflow Dependency Version Bump

Layer / File(s)	Summary
Manifest Dependency manifest.yml	YiAgent/OpenCI dependency SHA updated from 4e1ecadc... to 425f7339...
Primary Workflow References .github/workflows/agent.yml, .github/workflows/ci-self-test.yml, .github/workflows/ci.yml, .github/workflows/dependencies.yml, .github/workflows/deploy.yml, .github/workflows/on-maintenance.yml, .github/workflows/pull-request.yml, .github/workflows/release.yml	Each workflow job's uses: reference to its corresponding reusable workflow is pinned to the new SHA.
Multi-Job Workflow References .github/workflows/issue-ops.yml, .github/workflows/observability.yml	Multiple jobs (lifecycle, ingest, maintenance, manual in issue-ops; observe-canary, observe-drift, verify-fix in observability) update reusable workflow pins to the new SHA.
Inline Action References .github/workflows/reusable-ci.yml	Eight jobs (preflight, detect-language, build-docker, scan-image, sign-image, check-migration, eval-smoke, agent) update their Resolve OpenCI ref and checkout step reference to YiAgent/OpenCI/actions/_common/resolve-openci using the new SHA.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Possibly related PRs

• YiAgent/OpenCI#87: Performs the same SHA bump pattern for the same reusable workflow references.
• YiAgent/OpenCI#72: Updates identical pinned commit SHAs for the same reusable OpenCI workflows across the same files.
• YiAgent/OpenCI#80: Modifies the same GitHub Actions workflow uses: references to pin reusable YiAgent/OpenCI workflows to a new commit SHA.

Suggested labels

area:ci, needs-human

Poem

🐰 A version bump hops through the CI land,
Where reusable workflows stand hand in hand,
From old commits to new hashes bright,
Each workflow now points to the latest light!

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main change: bumping the YiAgent/OpenCI SHA version in the manifest and related workflow files.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/bump-self-sha-425f7339

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[YiWang24]

Superseded by chore/bump-self-sha-599fe5bc (bump to 599fe5b).