chore(manifest): bump YiAgent/OpenCI SHA to f9c2c235

[YiWang24]

Automated SHA bump: 5c6affab to f9c2c235

The YiAgent/OpenCI self-reference SHA in manifest.yml was stale. Updated to the latest main HEAD so all reusable workflow calls resolve correctly.

Generated by the on-main-bump-sha workflow.

---

^{Need help on this PR? Tag @codesmith with what you need.}

• Let Codesmith autofix CI failures and bot reviews

Summary by CodeRabbit

• Chores
  • Updated CI/CD infrastructure dependencies to newer versions across all automated workflows including build, test, deployment, documentation, issue operations, and maintenance processes. The dependency manifest was also updated for consistency. These updates improve infrastructure reliability, enhance security standards, and ensure compatibility with current tooling without impacting user-facing features.

[qodo-code-review]

ⓘ You've reached your Qodo monthly free-tier limit. Reviews pause until next month — upgrade your plan to continue now, or link your paid account if you already have one.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro Plus

Run ID: 51ad78d8-30a3-45db-8dce-2efd678f4b47

📥 Commits

Reviewing files that changed from the base of the PR and between f9c2c23 and ca12322.

📒 Files selected for processing (13)

• .github/workflows/agent.yml
• .github/workflows/ci-self-test.yml
• .github/workflows/ci.yml
• .github/workflows/dependencies.yml
• .github/workflows/deploy.yml
• .github/workflows/docs.yml
• .github/workflows/issue-ops.yml
• .github/workflows/observability.yml
• .github/workflows/on-maintenance.yml
• .github/workflows/pull-request.yml
• .github/workflows/release.yml
• .github/workflows/reusable-ci.yml
• manifest.yml

---

📝 Walkthrough

Walkthrough

This PR updates pinned commit SHAs for YiAgent/OpenCI reusable workflows and actions across GitHub Actions workflow files and the manifest. All references are bumped from 5c6affab1b052ff548ae85872b1c377d83cf2c0d to f9c2c23543336c47b39addd8386e5bafcebf7e2a consistently.

Changes

Reusable Workflow Pin Updates

Layer / File(s)	Summary
Manifest Dependency manifest.yml	The YiAgent/OpenCI dependency SHA is updated to the new commit reference.
Workflow File Pins .github/workflows/agent.yml, ci-self-test.yml, ci.yml, dependencies.yml, deploy.yml, docs.yml, issue-ops.yml, observability.yml, on-maintenance.yml, pull-request.yml, release.yml	All uses: references to YiAgent/OpenCI/.github/workflows/reusable-*.yml are updated to the new pinned commit across eleven workflow files.
Action Pins in Reusable CI reusable-ci.yml	The YiAgent/OpenCI/actions/_common/resolve-openci action reference is updated to the new pinned commit in eight jobs (preflight, detect-language, build-docker, scan-image, sign-image, check-migration, eval-smoke, agent).

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Possibly related PRs

• YiAgent/OpenCI#28: Main PR updates workflow uses: pins to the same commit f9c2c235..., adding unified on-maintenance and reusable maintenance pipeline changes.
• YiAgent/OpenCI#36: Both PRs update identical uses: YiAgent/OpenCI/...@<sha> references across the same workflow files and manifest.
• YiAgent/OpenCI#35: Both PRs update the same reusable-workflow uses: pins and manifest YiAgent/OpenCI dependency SHA references.

Poem

🐰 A rabbit hops through workflows neat,
With commit pins all so sweet,
From old to new they dance and spring,
Each uses: gets the fresh SHA sing,
Consistency blooms in every line! 🌿

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately reflects the main change: updating the YiAgent/OpenCI SHA reference across the manifest and all workflow files from the old commit to the new one.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/bump-self-sha-f9c2c235

---

_{Review rate limit: 7/10 reviews remaining, refill in 16 minutes and 32 seconds.}

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

OpenCI issue agent executed:

• escalate: needs-human

Reasoning:
Agent output did not contain a parseable action plan.