Conversation
Updating personal development branch from Shared development
There was a problem hiding this comment.
Pull request overview
Adds a GitHub Actions workflow intended to run an automated Copilot-based pull request review, including configuration for trigger conditions and model settings.
Changes:
- Added a new workflow that triggers on PR open/sync/reopen events.
- Configured the workflow to run
github/copilot-pr-reviewer@v1withgpt-4.1and specified generation parameters.
| on: | ||
| pull_request: | ||
| types: [opened, synchronize, reopened] | ||
|
|
There was a problem hiding this comment.
This workflow is triggered via pull_request but it depends on ${{ secrets.OPENAI_API_KEY }}. For pull requests coming from forks, GitHub Actions does not provide repository secrets, so the reviewer step will fail or be skipped. If you want this reviewer to work on fork PRs, consider using a pull_request_target-based design that avoids checking out/running untrusted PR code, or gate the job so it only runs when the secret is available (and/or when github.event.pull_request.head.repo.full_name == github.repository).
| fetch-depth: 0 | ||
|
|
||
| - name: Review with Copilot | ||
| uses: github/copilot-pr-reviewer@v1 |
There was a problem hiding this comment.
The workflow grants pull-requests: write and uses a third-party action. Please pin github/copilot-pr-reviewer to an immutable commit SHA (instead of @v1) to reduce supply-chain risk from tag updates.
| uses: github/copilot-pr-reviewer@v1 | |
| uses: github/copilot-pr-reviewer@<FULL_40_CHARACTER_COMMIT_SHA> |
|
It appears that this workflow isn't necessary; something must have been fixed behind the scenes in GitHub. Commit will be reverted. |
Description
Add workflow to try to get copilot PR reviewing working by specifying when it will run and which model it will use.
Checklist (Mandatory for new features)
Testing (Mandatory for all changes)
test-medium-connected.xmlPassedtest-large-long.xmlPassed