ci: bump marocchino/sticky-pull-request-comment from 2.9.4 to 3.0.5#57
Conversation
Bumps [marocchino/sticky-pull-request-comment](https://github.com/marocchino/sticky-pull-request-comment) from 2.9.4 to 3.0.5. - [Release notes](https://github.com/marocchino/sticky-pull-request-comment/releases) - [Commits](marocchino/sticky-pull-request-comment@7737449...5770ad5) --- updated-dependencies: - dependency-name: marocchino/sticky-pull-request-comment dependency-version: 3.0.5 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
Roam Agent ReviewVerdict: SAFE (risk_level low) blast-radius 0/100 · ai-likelihood 14/100 · rule violations 0 · critique high-severity 0 Verdict: SAFE. All structural signals clean at the configured thresholds. Next steps
Powered by roam-code — Apache 2.0, 100% local. Customize thresholds in |
roam-code AnalysisMode: incremental ( Health Score: 80/100 health: Healthy codebase (80/100) — 46 critical issues, focus: god_components Health Metrics
PR Risk
Quality Gate: PASSEDGate expression: SARIF Upload
Full analysis outputhealth{
"_meta": {
"cache_ttl_s": 300,
"cacheable": true,
"index_age_s": 3,
"latency_ms": null,
"response_tokens": 3897,
"roam_version": "13.6.1",
"timestamp": "2026-07-06T10:41:07Z"
},
"actionable_count": 11,
"actionable_cycles": 1,
"agent_contract": {
"confidence": null,
"facts": [
"Healthy codebase (80/100) — 46 critical issues, focus: god_components",
"health score 80",
"tangle ratio 0.0",
"0.0013 propagation cost findings",
"issue count 66"
],
"next_commands": [
"roam debt",
"roam trends --days 30"
],
"risks": []
},
"algebraic_connectivity": null,
"algebraic_connectivity_available": false,
"bottleneck_thresholds": {
"p70": 617.7,
"p90": 4215.7,
"population": 2277,
"utility_multiplier": 1.5
},
"category_severity": {
"bottlenecks": {
"critical": 15,
"info": 0,
"warning": 0
},
"cycles": {
"critical": 0,
"info": 0,
"warning": 1
},
"god_components": {
"critical": 31,
"info": 9,
"warning": 10
},
"layer_violations": {
"critical": 0,
"info": 0,
"warning": 0
}
},
"command": "health",
"cycles_actionable": 1,
"cycles_total": 14,
"framework_filtered": 0,
"health_score": 80,
"ignored_cycles": 13,
"imported_coverable_lines": 0,
"imported_coverage_files": 0,
"imported_coverage_pct": null,
"imported_covered_lines": 0,
"index_status": {
"dirty_files": 0,
"fresh": false,
"head_commit": "674600c50ca9",
"hint": "index latest commit 14414602902c != HEAD 674600c50ca9 — git-derived metrics (commits, churn, co-change, weather) may be stale. Run `roam index --force`.",
"indexed_commit": "14414602902c"
},
"issue_count": 66,
"list_counts": {
"bottlenecks": 15,
"cycle_break_suggestions": 0,
"cycles": 14,
"god_components": 50,
"layer_violations": 0,
"next_steps": 2,
"score_breakdown": 5
},
"project": "roam-code",
"propagation_cost": 0.0013,
"schema": "roam-envelope-v1",
"schema_version": "1.1.0",
"severity": {
"critical": 46,
"info": 22,
"warning": 11
},
"summary": {
"actionable_cycles": 1,
"algebraic_connectivity": null,
"algebraic_connectivity_available": false,
"category_severity": {
"bottlenecks": {
"critical": 15,
"info": 0,
"warning": 0
},
"cycles": {
"critical": 0,
"info": 0,
"warning": 1
},
"god_components": {
"critical": 31,
"info": 9,
"warning": 10
},
"layer_violations": {
"critical": 0,
"info": 0,
"warning": 0
}
},
"cycles_actionable": 1,
"cycles_definition": "Cycle counts derived from `roam.graph.cycles.find_cycles(G, min_size=2)` on the symbol graph. `cycles_total` = all SCCs of size >= 2; `cycles_actionable` = SCCs spanning >=2 files AND no test files (same-file and test-only cycles are informational). Run `roam health` for the per-cycle breakdown.",
"cycles_total": 14,
"detail_available": true,
"god_components": 50,
"god_components_definition": "God components: symbols where `(in_degree + out_degree) > 20` from the `graph_metrics` table, with utility-aware severity bands (standard >50=CRITICAL >30=WARNING; utility >150=CRITICAL >90=WARNING). Run `roam health` for the per-symbol breakdown. Legacy aliases: `god_objects` (fingerprint), `god_classes` (rules).",
"health_score": 80,
"health_score_definition": "weighted geometric mean (0-100) of 5 sigmoid health factors: tangle_ratio, god_components, bottlenecks, layer_violations, file_health (+coverage if available).",
"ignored_cycles": 13,
"imported_coverage_files": 0,
"imported_coverage_pct": null,
"issue_count": 66,
"partial_success": true,
"preserved_list_truncations": {},
"propagation_cost": 0.0013,
"severity": {
"critical": 46,
"info": 22,
"warning": 11
},
"tangle_ratio": 0,
"tangle_ratio_definition": "fraction of symbols inside non-trivial SCCs; higher = more cyclic coupling.",
"total_cycles": 14,
"truncated": true,
"verdict": "Healthy codebase (80/100) — 46 critical issues, focus: god_components",
"warnings_out": [
"health_algebraic_connectivity_warning:RuntimeWarning:algebraic_connectivity compute failed (ModuleNotFoundError): No module named 'numpy'; returning 0.0 sentinel — value is NOT a legitimate disconnected-graph reading"
]
},
"tangle_ratio": 0,
"total_cycles": 14,
"utility_count": 39,
"version": "13.6.1",
"warnings_out": [
"health_algebraic_connectivity_warning:RuntimeWarning:algebraic_connectivity compute failed (ModuleNotFoundError): No module named 'numpy'; returning 0.0 sentinel — value is NOT a legitimate disconnected-graph reading"
]
}pr-risk{
"_meta": {
"cache_ttl_s": 60,
"cacheable": true,
"index_age_s": 5,
"latency_ms": null,
"response_tokens": 817,
"roam_version": "13.6.1",
"timestamp": "2026-07-06T10:41:09Z"
},
"actor": null,
"agent_contract": {
"confidence": null,
"facts": [
"Moderate risk (30/100) — review recommended (risk_level medium) (driver: test_coverage_low)",
"risk score 30",
"2 risk rank findings",
"1 changed files",
"1 lines added"
],
"next_commands": [],
"risks": [
"pr-risk: moderate (30/100) on b9030bdfc2f4bf95d10fe95bfa30bd003de9143c..HEAD — driver: test_coverage_low"
]
},
"author": null,
"blast_radius_pct": 0,
"bus_factor_risk": 0,
"change_shape": "mixed",
"changed_files": 1,
"closest_historical_pattern": null,
"closest_similarity": 0,
"cluster_spread": 0,
"clusters_touched": 6,
"command": "pr-risk",
"coupling_score": 0,
"dead_code": [
{
"file": ".github/workflows/dogfood.yml",
"kind": "function",
"name": "dogfood"
}
],
"dead_exports": 1,
"familiarity": {
"avg_familiarity": 1,
"files": [],
"files_assessed": 0
},
"findings": [
{
"claim": "pr-risk: moderate (30/100) on b9030bdfc2f4bf95d10fe95bfa30bd003de9143c..HEAD — driver: test_coverage_low",
"confidence": "heuristic",
"evidence": {
"actor": null,
"author": null,
"blast_radius_pct": 0,
"bus_factor_risk": 0,
"changed_files_count": 1,
"commit_range": "b9030bdfc2f4bf95d10fe95bfa30bd003de9143c..HEAD",
"coupling_score": 0,
"created_at_epoch": 1783334469,
"diff_id": "3648024474fe",
"familiarity_risk": 0,
"file_list": [
".github/workflows/dogfood.yml"
],
"hotspot_score": 0,
"label": "b9030bdfc2f4bf95d10fe95bfa30bd003de9143c..HEAD",
"lines_added": 1,
"lines_removed": 1,
"minor_risk": 0,
"novelty_score": 0,
"reductive_change": false,
"risk_level": "moderate",
"risk_score": 30,
"staged": false,
"test_coverage_pct": 0,
"top_driver": "test_coverage_low"
},
"finding_id_str": "pr-risk:composite-risk-score:3648024474fe",
"kind": "pr-risk:composite-risk-score",
"severity": "medium",
"source_detector": "pr-risk",
"source_version": "1.0.0",
"subject_id": null,
"subject_kind": "commit"
}
],
"hotspot_score": 0,
"label": "b9030bdfc2f4bf95d10fe95bfa30bd003de9143c..HEAD",
"layer_spread": 0.03,
"layers_touched": 1,
"lines_added": 1,
"lines_removed": 1,
"minor_risk": {
"files": [],
"files_assessed": 0,
"minor_files": 0
},
"novelty_score": 0,
"per_file": [
{
"blast": 0,
"churn": 127,
"is_test": false,
"lines_added": 1,
"lines_removed": 1,
"path": ".github/workflows/dogfood.yml",
"symbols": 6
}
],
"project": "roam-code",
"reductive_change": false,
"reductive_discount_applied": false,
"risk_level": "moderate",
"risk_level_canonical": "medium",
"risk_rank": 2,
"risk_score": 30,
"schema": "roam-envelope-v1",
"schema_version": "1.1.0",
"suggested_reviewers": [
{
"actor": "Cranot",
"author": "Cranot",
"lines": 122
},
{
"actor": "dependabot[bot]",
"author": "dependabot[bot]",
"lines": 1
}
],
"summary": {
"change_shape": "mixed",
"changed_files": 1,
"findings_count": 1,
"lines_added": 1,
"lines_removed": 1,
"partial_success": false,
"risk_level": "moderate",
"risk_level_canonical": "medium",
"risk_rank": 2,
"risk_score": 30,
"score_classification": "classified",
"verdict": "Moderate risk (30/100) — review recommended (risk_level medium) (driver: test_coverage_low)"
},
"test_coverage_pct": 0,
"total_clusters": 12388,
"total_layers": 32,
"version": "13.6.1",
"warnings_out": []
}roam-code analysis | Commands: |
Bumps marocchino/sticky-pull-request-comment from 2.9.4 to 3.0.5.
Release notes
Sourced from marocchino/sticky-pull-request-comment's releases.
... (truncated)
Commits
5770ad5📦️ Build2c19060build(deps-dev): Bump@biomejs/biomefrom 2.4.14 to 2.5.2 (#1730)3d24e5abuild(deps-dev): Bump js-yaml from 4.1.1 to 5.2.1 (#1732)3604821build(deps-dev): Bump@rollup/plugin-commonjsfrom 29.0.2 to 29.0.3 (#1710)a4d9c0fbuild(deps-dev): Bump@types/nodefrom 25.9.1 to 26.1.0 (#1731)ae65a58build(deps-dev): Bump vitest from 4.1.7 to 4.1.9 (#1719)8680321build(deps-dev): Bump vite from 8.0.13 to 8.0.16 (#1720)5d40239build(deps): Bump actions/checkout from 6 to 7 (#1721)39ab01dbuild(deps-dev): Bump rollup from 4.60.4 to 4.62.2 (#1722)b2660f1build(deps): Bump undici from 6.24.0 to 6.27.0 (#1725)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)