chore(manifest): bump YiAgent/OpenCI SHA to 99f2f5dd

[YiWang24]

Automated SHA bump: 9b40a02a to 99f2f5dd

The YiAgent/OpenCI self-reference SHA in manifest.yml was stale. Updated to the latest main HEAD so all reusable workflow calls resolve correctly.

Generated by the on-main-bump-sha workflow.

---

^{Need help on this PR? Tag @codesmith with what you need.}

• Let Codesmith autofix CI failures and bot reviews

Summary by CodeRabbit

• Chores
  • Updated GitHub Actions workflow configurations across continuous integration, deployment, and maintenance pipelines to use newer versions of internal tooling.
  • Updated manifest files to reference the latest internal tool versions for consistency.

[qodo-code-review]

ⓘ You've reached your Qodo monthly free-tier limit. Reviews pause until next month — upgrade your plan to continue now, or link your paid account if you already have one.

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR updates pinned commit SHAs for YiAgent/OpenCI reusable workflows and the resolve-openci action across all GitHub Actions workflow files and the manifest, transitioning from commit 9b40a02... to 99f2f5dd.... The changes are consistent, affecting only version references with no logic modifications.

Changes

CI Dependency Pinning Update

Layer / File(s)	Summary
Dependency Manifest manifest.yml	YiAgent/OpenCI dependency SHA is pinned from 9b40a02acafd... to 99f2f5dd3ec4ca8...
Reusable Workflow References .github/workflows/agent.yml, ci-self-test.yml, ci.yml, dependencies.yml, docs.yml, issue-ops.yml, on-maintenance.yml, pull-request.yml, release.yml	Workflow job uses: references for YiAgent/OpenCI reusable workflows are updated to the new SHA across nine trigger and deployment workflows.
Reusable Action References .github/workflows/reusable-ci.yml, reusable-pr.yml	The pinned YiAgent/OpenCI/actions/_common/resolve-openci action is updated to the new SHA in multiple jobs within reusable workflow definitions (preflight, detect-language, build-docker, scan-image, sign-image, check-migration, eval-smoke, agent, verify-sha).

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~7 minutes

Possibly related PRs

• YiAgent/OpenCI#133: Updates pinned YiAgent/OpenCI commit SHAs across the same GitHub Actions workflow references and reusable workflows.
• YiAgent/OpenCI#84: Updates the pinned commit SHAs for the same reusable workflows and resolve-openci action across the same workflow files.
• YiAgent/OpenCI#153: Modifies the same GitHub Actions workflow files and manifest to update pinned YiAgent/OpenCI SHAs across the same call sites.

Suggested labels

area:ci

Poem

🐰 A dependency dance, so neat and clean,
Sha-bumping our workflows to 99f2f5d—a gleam,
From agent to docs, all refs realigned,
Nine workflows renewed, no logic redesigned,
Our CI now speaks the latest commit's mind! 🚀

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The pull request title accurately reflects the main change: bumping the YiAgent/OpenCI SHA in the manifest and all workflow files to a newer commit.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/bump-self-sha-99f2f5dd

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[coderabbitai]

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

.github/workflows/reusable-ci.yml (1)

293-307: ⚠️ Potential issue | 🔴 Critical | ⚡ Quick win

Update stale resolve-openci pin on line 306 in verify-sha job.

Line 306 still uses the outdated SHA 9bd9cf085ba9d3a199b701d42ea054e1625a65ce while all other instances in this workflow use 99f2f5dd3ec4ca8099a1112b2c1a09e3b6f14a87. This mismatch is causing the SHA consistency check failure.

Proposed fix

-      - name: Resolve OpenCI ref and checkout
-        uses: YiAgent/OpenCI/actions/_common/resolve-openci@9bd9cf085ba9d3a199b701d42ea054e1625a65ce
+      - name: Resolve OpenCI ref and checkout
+        uses: YiAgent/OpenCI/actions/_common/resolve-openci@99f2f5dd3ec4ca8099a1112b2c1a09e3b6f14a87

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In @.github/workflows/reusable-ci.yml around lines 293 - 307, The verify-sha job
uses an outdated pin for the Resolve OpenCI action; update the uses statement
for YiAgent/OpenCI/actions/_common/resolve-openci (currently pinned as
9bd9cf085ba9d3a199b701d42ea054e1625a65ce) to the consistent SHA
99f2f5dd3ec4ca8099a1112b2c1a09e3b6f14a87 so the workflow's SHA pins match and
the SHA consistency check passes.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Outside diff comments:
In @.github/workflows/reusable-ci.yml:
- Around line 293-307: The verify-sha job uses an outdated pin for the Resolve
OpenCI action; update the uses statement for
YiAgent/OpenCI/actions/_common/resolve-openci (currently pinned as
9bd9cf085ba9d3a199b701d42ea054e1625a65ce) to the consistent SHA
99f2f5dd3ec4ca8099a1112b2c1a09e3b6f14a87 so the workflow's SHA pins match and
the SHA consistency check passes.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro Plus

Run ID: 1c371977-271a-4303-9de4-dbb82f8e6bec

📥 Commits

Reviewing files that changed from the base of the PR and between 99f2f5d and c8f1102.

📒 Files selected for processing (12)

• .github/workflows/agent.yml
• .github/workflows/ci-self-test.yml
• .github/workflows/ci.yml
• .github/workflows/dependencies.yml
• .github/workflows/docs.yml
• .github/workflows/issue-ops.yml
• .github/workflows/on-maintenance.yml
• .github/workflows/pull-request.yml
• .github/workflows/release.yml
• .github/workflows/reusable-ci.yml
• .github/workflows/reusable-pr.yml
• manifest.yml