ci: bump codex/gemini reviewers to public-workflows v2.11.3#94
Conversation
|
You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard. |
|
Warning Review limit reached
More reviews will be available in 3 hours, 19 minutes, and 8 seconds. Learn how PR review limits work. Your organization has used up its prepaid credits, and credit purchases are no longer available. Enable the review add-on in the billing tab to keep reviews running — you're only billed for reviews past your plan's rate limits ($0.25/file). ⌛ How to resolve this issue?After more reviews become available, a review can be triggered using the We recommend that you space out your commits to avoid hitting the rate limit. 🚦 How do rate limits work?CodeRabbit enforces hourly rate limits for each developer per organization. Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available. Please see our Fair Usage Limits Policy for further information. ℹ️ Review info⚙️ Run configurationConfiguration used: Organization UI Review profile: CHILL Plan: Pro Run ID: 📒 Files selected for processing (2)
✨ Finishing Touches🧪 Generate unit tests (beta)
Comment |
There was a problem hiding this comment.
Codex Review
No critical issues — LGTM pending human review.
I reviewed git diff HEAD^1 HEAD; the PR only updates the pinned reusable workflow SHAs/comments in the Codex and Gemini workflow callers. I couldn’t verify the upstream reusable workflow contents because network/DNS access to GitHub was unavailable in this environment.
Reviewed by Codex (gpt-5.5)
There was a problem hiding this comment.
Claude Review
Critical issues
None.
Security
- Both reviewer workflows are pinned to a full 40-char commit SHA (
3fb9ffb) rather than a mutable tag — good supply-chain hygiene, and the SHA is identical across both files. Worth a one-time confirmation that3fb9ffbace86c9e93a7b92170241dd54b5031608is the commit taggedv2.11.3in praetorian-inc/public-workflows. - No secrets are passed and the description notes the v2.11.3 palatine-skills checkout is fail-closed without
PALATINE_SKILLS— no new exposure introduced.
Test coverage
N/A — CI workflow pin bump only, no *.go/*.ts/*.py changes.
Bumps the Codex and Gemini PR-reviewer reusable-workflow pins to public-workflows v2.11.3 (commit 3fb9ffb). Bump-only: this is a public repo, so no PALATINE_SKILLS secrets are passed — the v2.11.3 palatine-skills checkout is fail-closed and degrades to a generic review when the secrets are absent. Part of the org-wide reviewer-caller sweep to v2.11.3.
🤖 Generated with Claude Code