7c7ac1021a
* ci: add issue/PR description completeness checks (#1958) Two github-script workflows that validate description structure on issue/PR open/edit/reopen, for submissions that bypass the browser template (API, gh CLI, agent bulk PRs). - PR check: Summary, Linked Issue, Type of Change, duplicate-search box, How to Test. - Issue check: body length + per-label bug/enhancement fields, plus a bug+enhancement conflict guard. - Pass deletes any prior bot comment and applies `ready for review`; fail posts an in-place comment, fails the check, and applies `needs work` (PRs) / `needs more info` (issues). - References existing labels only — never creates or recolours repo labels (checks existence first, warns and skips if absent). - Safe pull_request_target: checkout pinned to the base ref, sparse `.github/scripts` only; PR head never checked out. Closes #1958 Co-authored-by: Povilas Kirna <povilas.kirna@pebble.net> Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>
29 lines
886 B
YAML
29 lines
886 B
YAML
name: ci / PR description check
|
|
|
|
on:
|
|
pull_request_target:
|
|
types: [opened, edited, synchronize, reopened]
|
|
|
|
# pull_request_target runs in the base-repo context (has secrets).
|
|
# The checkout below pins to the base branch so no fork code is executed.
|
|
# The script only reads context.payload and calls the GitHub API.
|
|
permissions:
|
|
issues: write
|
|
pull-requests: write
|
|
|
|
jobs:
|
|
check-description:
|
|
name: Check PR description
|
|
runs-on: ubuntu-latest
|
|
# Skip bots — they open PRs programmatically and have their own process.
|
|
if: github.event.pull_request.user.type != 'Bot'
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
with:
|
|
ref: ${{ github.base_ref }}
|
|
sparse-checkout: .github/scripts
|
|
|
|
- uses: actions/github-script@v7
|
|
with:
|
|
script: return require('./.github/scripts/check-pr-description.js')({github, context, core})
|