Skip to content

Patching the comment with the check results over creating a new one #1637

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
aaronpowell merged 3 commits into from
May 7, 2026
Merged

Patching the comment with the check results over creating a new one #1637

Changes from 1 commit
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
1d5c75f
Patching the comment with the check results over creating a new oneAv…
aaronpowell May 6, 2026
66ab9e6
Potential fix for pull request finding
aaronpowell May 7, 2026
99f6ecb
Potential fix for pull request finding
aaronpowell May 7, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
46 changes: 31 additions & 15 deletions .github/workflows/contributor-check.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -183,21 +183,32 @@ jobs:
esac
echo "risk=$r" >> "$GITHUB_OUTPUT"

- name: Comment on MEDIUM or HIGH risk
if: steps.overall.outputs.risk == 'MEDIUM' || steps.overall.outputs.risk == 'HIGH'
- name: Sync risk comment
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
number="${{ steps.author.outputs.number }}"
type="${{ steps.author.outputs.type }}"
risk="${{ steps.overall.outputs.risk }}"
profile="${{ steps.results.outputs.profile }}"
cred="${{ steps.results.outputs.credential }}"
marker="<!-- agt-contributor-check -->"
comment_id=$(
gh api "repos/${{ github.repository }}/issues/$number/comments" --paginate \
Comment thread
aaronpowell marked this conversation as resolved.
--jq ".[] | select(.user.login == \"github-actions[bot]\" and (.body | contains(\"$marker\"))) | .id" \
Comment thread
aaronpowell marked this conversation as resolved.
Outdated
| head -n 1
)

if [ "$risk" != "MEDIUM" ] && [ "$risk" != "HIGH" ]; then
if [ -n "$comment_id" ]; then
gh api --method DELETE "repos/${{ github.repository }}/issues/comments/$comment_id"
Comment thread
aaronpowell marked this conversation as resolved.
Outdated
fi
exit 0
fi

if [ "$risk" = "HIGH" ]; then icon="🔴"; else icon="🟡"; fi

body=$(cat <<EOF
<!-- agt-contributor-check -->
$marker
$icon **Contributor Reputation Check: $risk risk**

| Check | Risk |
Expand All @@ -211,30 +222,35 @@ jobs:
EOF
)

if [ "$type" = "pr" ]; then
gh pr comment "$number" --body "$body"
if [ -n "$comment_id" ]; then
gh api --method PATCH "repos/${{ github.repository }}/issues/comments/$comment_id" -f body="$body"
else
gh issue comment "$number" --body "$body"
gh api --method POST "repos/${{ github.repository }}/issues/$number/comments" -f body="$body"
fi

- name: Add risk label
if: steps.overall.outputs.risk == 'MEDIUM' || steps.overall.outputs.risk == 'HIGH'
- name: Sync risk label
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
number="${{ steps.author.outputs.number }}"
type="${{ steps.author.outputs.type }}"
risk="${{ steps.overall.outputs.risk }}"

for label in needs-review:MEDIUM needs-review:HIGH; do
if [ "$label" != "needs-review:$risk" ]; then
gh api --method DELETE "repos/${{ github.repository }}/issues/$number/labels/$label" >/dev/null 2>&1 || true
fi
done

if [ "$risk" != "MEDIUM" ] && [ "$risk" != "HIGH" ]; then
exit 0
fi

gh label create "needs-review:$risk" \
--description "Contributor reputation check flagged $risk risk" \
--color "FFA500" --force 2>/dev/null || true

if [ "$type" = "pr" ]; then
gh pr edit "$number" --add-label "needs-review:$risk"
else
gh issue edit "$number" --add-label "needs-review:$risk"
fi
gh api --method POST "repos/${{ github.repository }}/issues/$number/labels" \
-f labels[]="needs-review:$risk" >/dev/null

- name: Job summary
if: always()
Expand Down
Loading