fix(ci): fix actionlint CI failure and test.yml SHA corruption#175
Conversation
- Remove resolve-openci from actionlint job in reusable-self-test.yml. The vendored .openci/ at a pinned SHA has different action input signatures than the current source, causing actionlint false positives about undefined inputs (anthropic-api-key, allowed-tools, openci-ref). - Fix test.yml: the old AWK-based SHA extraction bug in bump-self-sha.sh replaced 'bootstra' with the full 40-char SHA in 4 locations (comments, descriptions, and step names). Restored original 'bootstrapping' text.
Qodo reviews are paused for this user.Troubleshooting steps vary by plan Learn more → On a Teams plan? Using GitHub Enterprise Server, GitLab Self-Managed, or Bitbucket Data Center? |
|
Warning Review limit reached
More reviews will be available in 6 minutes and 40 seconds. Learn how PR review limits work. Your organization has run out of usage credits. Purchase more in the billing tab. ⌛ How to resolve this issue?After more reviews become available, a review can be triggered using the We recommend that you space out your commits to avoid hitting the rate limit. 🚦 How do rate limits work?CodeRabbit enforces hourly rate limits for each developer per organization. Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available. Please see our Fair Usage Limits Policy for further information. ℹ️ Review info⚙️ Run configurationConfiguration used: defaults Review profile: CHILL Plan: Pro Plus Run ID: 📒 Files selected for processing (2)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
![openbot-dev[bot]](https://avatars.githubusercontent.com/u/279808688?s=60&v=4){kind=small}
|
1 participant
Summary
Fixes two issues found in CI:
1. actionlint false positives in
ci-self-testRoot cause: The
actionlintjob vends.openci/from a pinned SHA viaresolve-openci. When the top-level workflow files reference newer action input names than what exists in the older vendored composite actions, actionlint reports "input not defined" errors.Fix: Remove the
resolve-opencivendoring step from theactionlintjob. Actionlint only needs to check the current source files — the vendored.openci/at a different SHA introduces false positives.2.
test.ymltext corruptionRoot cause: An earlier version of
bump-self-sha.shusedawk '{print $NF}'to extract the old SHA frommanifest.yml. On the lineYiAgent/OpenCI: "sha" # resolve-openci bootstrap,awkextractedbootstrapinstead of the SHA. The perl substitution then replacedbootstrapwith the full 40-char SHA, corruptingbootstrappinginto a SHA string in 4 locations.Fix: Restored the original
bootstrappingtext in all comments, descriptions and step names.Files Changed
.github/workflows/reusable-self-test.yml— Remove resolve-openci from actionlint job (+ SHA sync).github/workflows/test.yml— Fix 4 corrupted text instancesNeed help on this PR? Tag
@codesmithwith what you need. Autofix is disabled.Greptile Summary
This PR addresses two separate CI problems: false-positive actionlint errors caused by vendoring an older composite-action SHA into the lint job, and four text corruptions in
test.ymlwhere the word "bootstrapping" was replaced with a 40-character SHA by a faultyawkfield extractor inbump-self-sha.sh.reusable-self-test.yml: Drops theresolve-opencistep from theactionlintjob so the tool validates workflows against the current composite actions rather than an older vendored copy. The pinned SHA in the three remainingresolve-opencisteps is advanced to0fc8c784(the PR base commit).test.yml: Restores "bootstrapping" in four locations — the file header comment, body comment,workflow_dispatchinput description, and step name — all of which were overwritten by the SHA bump script reading the wrongawkfield.Confidence Score: 5/5
Both changes are safe to merge — one removes a step that caused false positives, the other restores text that was mechanically corrupted.
The actionlint job change is a targeted removal of a vendoring step whose only effect was injecting stale composite-action definitions into the linter's view. The remaining jobs that still call resolve-openci have their SHA advanced to the current base commit, keeping them consistent. The test.yml edits are pure text restoration with no behavioral impact.
No files require special attention. The bump-self-sha.sh script that originally caused the corruption is not modified here, so if it is still using awk '{print $NF}' on the manifest line it may corrupt text again on the next SHA bump — worth a follow-up fix there.
Important Files Changed
Flowchart
%%{init: {'theme': 'neutral'}}%% flowchart TD subgraph Before["actionlint job — BEFORE"] A1[Checkout source] --> B1[resolve-openci\nvendor .openci/ at old SHA] B1 --> C1[Install actionlint] C1 --> D1[Run actionlint] D1 --> E1["❌ False positives:\nold .openci/ actions have\ndifferent input names"] end subgraph After["actionlint job — AFTER"] A2[Checkout source] --> C2[Install actionlint] C2 --> D2[Run actionlint] D2 --> E2["✅ Checks current source\nagainst current composite actions"] end subgraph SHA["SHA Bump — other jobs"] F[resolve-openci step\n38435ebe → 0fc8c784\nbase commit of this PR] endReviews (1): Last reviewed commit: "fix(ci): fix actionlint CI failure and t..." | Re-trigger Greptile