Hiddenden/openrabbit
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity

update

Browse Source
This commit is contained in:
Latte
2026-01-07 20:21:33 +01:00
parent 9c7e96760b
commit a1fe47cdf4
5 changed files with 587 additions and 221 deletions
Download Patch File Download Diff File Expand all files Collapse all files

779
docs/workflows.md
View File

@@ -1,25 +1,393 @@
# Workflows # Workflows
This document provides ready-to-use workflow files for integrating AI code review into your Gitea repositories. This document provides ready-to-use workflow files for integrating OpenRabbit AI code review into your Gitea or GitHub repositories.
Simply copy the workflow files below into your repository's `.gitea/workflows/` or `.github/workflows/` directory.
--- ---
## Gitea Workflows Overview ## Quick Start
| Feature | Configuration | 1. Copy the workflow files to your repository
|---------|--------------| 2. Configure the required secrets (see [Required Secrets](#required-secrets))
| Context variable | `gitea.*` | 3. Update the placeholders:
| Token | `AI_REVIEW_TOKEN` (custom secret) | - `YourOrg/OpenRabbit` - Your OpenRabbit fork repository
| API URL | Your Gitea instance URL (e.g., `https://git.example.com/api/v1`) | - `https://git.example.com/api/v1` - Your Gitea instance API URL
| Tools location | Checkout from central OpenRabbit repo | - `Bartender` - Your bot's username (for self-trigger prevention)
All workflows are located in `.gitea/workflows/` directory.
--- ---
## Gitea Workflows ## Gitea Workflows
### PR Review Workflow ### 1. PR Review Workflow
Automatically reviews pull requests when opened or updated.
```yaml
# .gitea/workflows/enterprise-ai-review.yml
name: Enterprise AI Code Review
on:
pull_request:
types: [opened, synchronize]
jobs:
ai-review:
runs-on: ubuntu-latest
steps:
# Checkout the PR repository
- uses: actions/checkout@v4
with:
fetch-depth: 0
# Checkout the CENTRAL AI tooling repo
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
# Setup Python
- uses: actions/setup-python@v5
with:
python-version: "3.11"
# Install dependencies
- run: pip install requests pyyaml
# Run the AI review
- name: Run Enterprise AI Review
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_REPO: ${{ gitea.repository }}
AI_REVIEW_API_URL: https://git.example.com/api/v1
AI_REVIEW_PR_NUMBER: ${{ gitea.event.pull_request.number }}
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
OPENROUTER_API_KEY: ${{ secrets.OPENROUTER_API_KEY }}
OLLAMA_HOST: ${{ secrets.OLLAMA_HOST }}
run: |
cd .ai-review/tools/ai-review
python main.py pr ${{ gitea.repository }} ${{ gitea.event.pull_request.number }} \
--title "${{ gitea.event.pull_request.title }}"
# Fail CI on HIGH severity (optional)
- name: Check Review Result
if: failure()
run: |
echo "AI Review found HIGH severity issues. Please address them before merging."
exit 1
```
---
### 2. Issue Triage Workflow
Triggers on `@codebot triage` command in issue comments.
```yaml
# .gitea/workflows/ai-issue-triage.yml
name: AI Issue Triage
# WORKFLOW ROUTING:
# This workflow handles ONLY the 'triage' command
# Other workflows: ai-comment-reply.yml (specific commands), ai-chat.yml (free-form questions)
on:
issue_comment:
types: [created]
jobs:
ai-triage:
runs-on: ubuntu-latest
# Only run if comment contains @codebot triage
# CRITICAL: Ignore bot's own comments to prevent infinite loops (bot username: Bartender)
if: |
github.event.comment.user.login != 'Bartender' &&
contains(github.event.comment.body, '@codebot triage')
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
- uses: actions/setup-python@v5
with:
python-version: "3.11"
- run: pip install requests pyyaml
- name: Run AI Issue Triage
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_REPO: ${{ gitea.repository }}
AI_REVIEW_API_URL: https://git.example.com/api/v1
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
OPENROUTER_API_KEY: ${{ secrets.OPENROUTER_API_KEY }}
OLLAMA_HOST: ${{ secrets.OLLAMA_HOST }}
run: |
cd .ai-review/tools/ai-review
python main.py issue ${{ gitea.repository }} ${{ gitea.event.issue.number }}
```
---
### 3. Comment Reply Workflow
Handles specific commands: `help`, `explain`, `suggest`, `security`, `summarize`, `changelog`, `explain-diff`, `review-again`, `setup-labels`.
```yaml
# .gitea/workflows/ai-comment-reply.yml
name: AI Comment Reply
# WORKFLOW ROUTING:
# This workflow handles SPECIFIC commands: help, explain, suggest, security, summarize, changelog, explain-diff, review-again, setup-labels
# Other workflows: ai-issue-triage.yml (@codebot triage), ai-chat.yml (free-form questions)
on:
issue_comment:
types: [created]
# CUSTOMIZE YOUR BOT NAME:
# Change '@codebot' in the 'if' condition below to match your config.yml mention_prefix
# Examples: '@bartender', '@uni', '@joey', '@codebot'
jobs:
ai-reply:
runs-on: ubuntu-latest
# Only run for specific commands (not free-form chat or triage)
# This prevents duplicate runs with ai-chat.yml and ai-issue-triage.yml
# CRITICAL: Ignore bot's own comments to prevent infinite loops (bot username: Bartender)
if: |
github.event.comment.user.login != 'Bartender' &&
(contains(github.event.comment.body, '@codebot help') ||
contains(github.event.comment.body, '@codebot explain') ||
contains(github.event.comment.body, '@codebot suggest') ||
contains(github.event.comment.body, '@codebot security') ||
contains(github.event.comment.body, '@codebot summarize') ||
contains(github.event.comment.body, '@codebot changelog') ||
contains(github.event.comment.body, '@codebot explain-diff') ||
contains(github.event.comment.body, '@codebot review-again') ||
contains(github.event.comment.body, '@codebot setup-labels'))
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
- uses: actions/setup-python@v5
with:
python-version: "3.11"
- run: pip install requests pyyaml
- name: Run AI Comment Response
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_API_URL: https://git.example.com/api/v1
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
OPENROUTER_API_KEY: ${{ secrets.OPENROUTER_API_KEY }}
OLLAMA_HOST: ${{ secrets.OLLAMA_HOST }}
run: |
cd .ai-review/tools/ai-review
# Determine if this is a PR or issue comment
IS_PR="${{ gitea.event.issue.pull_request != null }}"
REPO="${{ gitea.repository }}"
ISSUE_NUMBER="${{ gitea.event.issue.number }}"
# Validate inputs
if [ -z "$REPO" ] || [ -z "$ISSUE_NUMBER" ]; then
echo "Error: Missing required parameters"
exit 1
fi
# Validate repository format (owner/repo)
if ! echo "$REPO" | grep -qE '^[a-zA-Z0-9_-]+/[a-zA-Z0-9_-]+$'; then
echo "Error: Invalid repository format: $REPO"
exit 1
fi
if [ "$IS_PR" = "true" ]; then
# This is a PR comment - use safe dispatch with minimal event data
# Build minimal event payload (does not include sensitive user data)
EVENT_DATA=$(cat <<EOF
{
"action": "created",
"issue": {
"number": ${{ gitea.event.issue.number }},
"pull_request": {}
},
"comment": {
"id": ${{ gitea.event.comment.id }},
"body": $(echo '${{ gitea.event.comment.body }}' | jq -Rs .)
}
}
EOF
)
# Use safe dispatch utility
python utils/safe_dispatch.py issue_comment "$REPO" "$EVENT_DATA"
else
# This is an issue comment - use the comment command
COMMENT_BODY='${{ gitea.event.comment.body }}'
python main.py comment "$REPO" "$ISSUE_NUMBER" "$COMMENT_BODY"
fi
```
---
### 4. Chat Workflow (Free-form Questions)
Handles any `@codebot` mention that isn't a specific command - for asking questions about the codebase.
```yaml
# .gitea/workflows/ai-chat.yml
name: AI Chat (Bartender)
# WORKFLOW ROUTING:
# This workflow handles FREE-FORM questions/chat (no specific command)
# Other workflows: ai-issue-triage.yml (@codebot triage), ai-comment-reply.yml (specific commands)
# This is the FALLBACK for any @codebot mention that isn't a known command
on:
issue_comment:
types: [created]
# CUSTOMIZE YOUR BOT NAME:
# Change '@codebot' in all conditions below to match your config.yml mention_prefix
# Examples: '@bartender', '@uni', '@joey', '@codebot'
jobs:
ai-chat:
# Only run if comment mentions the bot but NOT a specific command
# This prevents duplicate runs with ai-comment-reply.yml and ai-issue-triage.yml
# CRITICAL: Ignore bot's own comments to prevent infinite loops (bot username: Bartender)
if: |
github.event.comment.user.login != 'Bartender' &&
contains(github.event.comment.body, '@codebot') &&
!contains(github.event.comment.body, '@codebot triage') &&
!contains(github.event.comment.body, '@codebot help') &&
!contains(github.event.comment.body, '@codebot explain') &&
!contains(github.event.comment.body, '@codebot suggest') &&
!contains(github.event.comment.body, '@codebot security') &&
!contains(github.event.comment.body, '@codebot summarize') &&
!contains(github.event.comment.body, '@codebot changelog') &&
!contains(github.event.comment.body, '@codebot explain-diff') &&
!contains(github.event.comment.body, '@codebot review-again') &&
!contains(github.event.comment.body, '@codebot setup-labels')
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
- uses: actions/setup-python@v5
with:
python-version: "3.11"
- run: pip install requests pyyaml
- name: Run AI Chat
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_REPO: ${{ gitea.repository }}
AI_REVIEW_API_URL: https://git.example.com/api/v1
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
OPENROUTER_API_KEY: ${{ secrets.OPENROUTER_API_KEY }}
OLLAMA_HOST: ${{ secrets.OLLAMA_HOST }}
SEARXNG_URL: ${{ secrets.SEARXNG_URL }}
run: |
cd .ai-review/tools/ai-review
python main.py comment ${{ gitea.repository }} ${{ gitea.event.issue.number }} "${{ gitea.event.comment.body }}"
```
---
### 5. Codebase Analysis Workflow
Weekly scheduled codebase health analysis.
```yaml
# .gitea/workflows/ai-codebase-review.yml
name: AI Codebase Quality Review
on:
# Weekly scheduled run
schedule:
- cron: "0 0 * * 0" # Every Sunday at midnight
# Manual trigger
workflow_dispatch:
inputs:
report_type:
description: "Type of report to generate"
required: false
default: "full"
type: choice
options:
- full
- security
- quick
jobs:
ai-codebase-review:
runs-on: ubuntu-latest
steps:
# Checkout the repository
- uses: actions/checkout@v4
with:
fetch-depth: 0 # Full history for analysis
# Checkout central AI tooling
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
# Setup Python
- uses: actions/setup-python@v5
with:
python-version: "3.11"
# Install dependencies
- run: pip install requests pyyaml
# Run AI codebase analysis
- name: Run AI Codebase Analysis
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_REPO: ${{ gitea.repository }}
AI_REVIEW_API_URL: https://git.example.com/api/v1
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
OPENROUTER_API_KEY: ${{ secrets.OPENROUTER_API_KEY }}
OLLAMA_HOST: ${{ secrets.OLLAMA_HOST }}
run: |
cd .ai-review/tools/ai-review
python main.py codebase ${{ gitea.repository }}
```
---
## GitHub Workflows
For GitHub, use `${{ github.* }}` instead of `${{ gitea.* }}` and `${{ secrets.GITHUB_TOKEN }}` for authentication.
### 1. PR Review Workflow (GitHub)
```yaml ```yaml
# .github/workflows/ai-review.yml # .github/workflows/ai-review.yml
@@ -54,19 +422,23 @@ jobs:
python main.py pr ${{ github.repository }} ${{ github.event.pull_request.number }} python main.py pr ${{ github.repository }} ${{ github.event.pull_request.number }}
``` ```
### Issue Triage Workflow ### 2. Issue Triage Workflow (GitHub)
```yaml ```yaml
# .github/workflows/ai-issue-triage.yml # .github/workflows/ai-issue-triage.yml
name: AI Issue Triage name: AI Issue Triage
on: on:
issues: issue_comment:
types: [opened, labeled] types: [created]
jobs: jobs:
ai-triage: ai-triage:
runs-on: ubuntu-latest runs-on: ubuntu-latest
# CRITICAL: Update 'YourBotUsername' to your bot's actual GitHub username
if: |
github.event.comment.user.login != 'YourBotUsername' &&
contains(github.event.comment.body, '@codebot triage')
steps: steps:
- uses: actions/checkout@v4 - uses: actions/checkout@v4
@@ -84,11 +456,10 @@ jobs:
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }} OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
run: | run: |
cd tools/ai-review cd tools/ai-review
python main.py issue ${{ github.repository }} ${{ github.event.issue.number }} \ python main.py issue ${{ github.repository }} ${{ github.event.issue.number }}
--title "${{ github.event.issue.title }}"
``` ```
### Comment Reply Workflow (includes Bartender Chat) ### 3. Comment Reply Workflow (GitHub)
```yaml ```yaml
# .github/workflows/ai-comment-reply.yml # .github/workflows/ai-comment-reply.yml
@@ -101,7 +472,18 @@ on:
jobs: jobs:
ai-reply: ai-reply:
runs-on: ubuntu-latest runs-on: ubuntu-latest
if: contains(github.event.comment.body, '@codebot') # CRITICAL: Update 'YourBotUsername' to your bot's actual GitHub username
if: |
github.event.comment.user.login != 'YourBotUsername' &&
(contains(github.event.comment.body, '@codebot help') ||
contains(github.event.comment.body, '@codebot explain') ||
contains(github.event.comment.body, '@codebot suggest') ||
contains(github.event.comment.body, '@codebot security') ||
contains(github.event.comment.body, '@codebot summarize') ||
contains(github.event.comment.body, '@codebot changelog') ||
contains(github.event.comment.body, '@codebot explain-diff') ||
contains(github.event.comment.body, '@codebot review-again') ||
contains(github.event.comment.body, '@codebot setup-labels'))
steps: steps:
- uses: actions/checkout@v4 - uses: actions/checkout@v4
@@ -120,11 +502,58 @@ jobs:
SEARXNG_URL: ${{ secrets.SEARXNG_URL }} SEARXNG_URL: ${{ secrets.SEARXNG_URL }}
run: | run: |
cd tools/ai-review cd tools/ai-review
python main.py comment ${{ github.repository }} ${{ github.event.issue.number }} \ python main.py comment ${{ github.repository }} ${{ github.event.issue.number }} "${{ github.event.comment.body }}"
"${{ github.event.comment.body }}"
``` ```
### Codebase Analysis Workflow ### 4. Chat Workflow (GitHub)
```yaml
# .github/workflows/ai-chat.yml
name: AI Chat
on:
issue_comment:
types: [created]
jobs:
ai-chat:
runs-on: ubuntu-latest
# CRITICAL: Update 'YourBotUsername' to your bot's actual GitHub username
if: |
github.event.comment.user.login != 'YourBotUsername' &&
contains(github.event.comment.body, '@codebot') &&
!contains(github.event.comment.body, '@codebot triage') &&
!contains(github.event.comment.body, '@codebot help') &&
!contains(github.event.comment.body, '@codebot explain') &&
!contains(github.event.comment.body, '@codebot suggest') &&
!contains(github.event.comment.body, '@codebot security') &&
!contains(github.event.comment.body, '@codebot summarize') &&
!contains(github.event.comment.body, '@codebot changelog') &&
!contains(github.event.comment.body, '@codebot explain-diff') &&
!contains(github.event.comment.body, '@codebot review-again') &&
!contains(github.event.comment.body, '@codebot setup-labels')
steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v5
with:
python-version: "3.11"
- run: pip install requests pyyaml
- name: Run AI Chat
env:
AI_REVIEW_TOKEN: ${{ secrets.GITHUB_TOKEN }}
AI_REVIEW_REPO: ${{ github.repository }}
AI_REVIEW_API_URL: https://api.github.com
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
SEARXNG_URL: ${{ secrets.SEARXNG_URL }}
run: |
cd tools/ai-review
python main.py comment ${{ github.repository }} ${{ github.event.issue.number }} "${{ github.event.comment.body }}"
```
### 5. Codebase Analysis Workflow (GitHub)
```yaml ```yaml
# .github/workflows/ai-codebase-review.yml # .github/workflows/ai-codebase-review.yml
@@ -133,7 +562,7 @@ name: AI Codebase Analysis
on: on:
schedule: schedule:
- cron: "0 0 * * 0" # Weekly on Sunday - cron: "0 0 * * 0" # Weekly on Sunday
workflow_dispatch: # Manual trigger workflow_dispatch:
jobs: jobs:
ai-codebase: ai-codebase:
@@ -162,177 +591,18 @@ jobs:
--- ---
## Gitea Workflows
### PR Review Workflow
```yaml
# .gitea/workflows/enterprise-ai-review.yml
name: AI Code Review
on:
pull_request:
types: [opened, synchronize]
jobs:
ai-review:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
- uses: actions/setup-python@v5
with:
python-version: "3.11"
- run: pip install requests pyyaml
- name: Run AI Review
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_REPO: ${{ gitea.repository }}
AI_REVIEW_API_URL: https://your-gitea.example.com/api/v1
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
run: |
cd .ai-review/tools/ai-review
python main.py pr ${{ gitea.repository }} ${{ gitea.event.pull_request.number }}
```
### Issue Triage Workflow
```yaml
# .gitea/workflows/ai-issue-triage.yml
name: AI Issue Triage
on:
issues:
types: [opened, labeled]
jobs:
ai-triage:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
- uses: actions/setup-python@v5
with:
python-version: "3.11"
- run: pip install requests pyyaml
- name: Run AI Issue Triage
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_REPO: ${{ gitea.repository }}
AI_REVIEW_API_URL: https://your-gitea.example.com/api/v1
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
run: |
cd .ai-review/tools/ai-review
python main.py issue ${{ gitea.repository }} ${{ gitea.event.issue.number }} \
--title "${{ gitea.event.issue.title }}"
```
### Comment Reply Workflow (includes Bartender Chat)
```yaml
# .gitea/workflows/ai-comment-reply.yml
name: AI Comment Reply
on:
issue_comment:
types: [created]
jobs:
ai-reply:
runs-on: ubuntu-latest
if: contains(github.event.comment.body, '@codebot')
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
- uses: actions/setup-python@v5
with:
python-version: "3.11"
- run: pip install requests pyyaml
- name: Run AI Comment Response
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_REPO: ${{ gitea.repository }}
AI_REVIEW_API_URL: https://your-gitea.example.com/api/v1
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
SEARXNG_URL: ${{ secrets.SEARXNG_URL }}
run: |
cd .ai-review/tools/ai-review
python main.py comment ${{ gitea.repository }} ${{ gitea.event.issue.number }} \
"${{ gitea.event.comment.body }}"
```
### Codebase Analysis Workflow
```yaml
# .gitea/workflows/ai-codebase-review.yml
name: AI Codebase Analysis
on:
schedule:
- cron: "0 0 * * 0" # Weekly on Sunday
workflow_dispatch: # Manual trigger
jobs:
ai-codebase:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: actions/checkout@v4
with:
repository: YourOrg/OpenRabbit
path: .ai-review
token: ${{ secrets.AI_REVIEW_TOKEN }}
- uses: actions/setup-python@v5
with:
python-version: "3.11"
- run: pip install requests pyyaml
- name: Run Codebase Analysis
env:
AI_REVIEW_TOKEN: ${{ secrets.AI_REVIEW_TOKEN }}
AI_REVIEW_REPO: ${{ gitea.repository }}
AI_REVIEW_API_URL: https://your-gitea.example.com/api/v1
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
run: |
cd .ai-review/tools/ai-review
python main.py codebase ${{ gitea.repository }}
```
---
## Required Secrets ## Required Secrets
### Gitea
| Secret | Required | Description |
|--------|----------|-------------|
| `AI_REVIEW_TOKEN` | Yes | Gitea bot access token with repo read/write |
| `OPENAI_API_KEY` | Choose one | OpenAI API key |
| `OPENROUTER_API_KEY` | Choose one | OpenRouter API key |
| `OLLAMA_HOST` | Choose one | Ollama server URL (e.g., `http://localhost:11434`) |
| `SEARXNG_URL` | Optional | SearXNG instance for web search |
### GitHub ### GitHub
| Secret | Required | Description | | Secret | Required | Description |
@@ -343,49 +613,124 @@ jobs:
| `OLLAMA_HOST` | Choose one | Ollama server URL | | `OLLAMA_HOST` | Choose one | Ollama server URL |
| `SEARXNG_URL` | Optional | SearXNG instance for web search | | `SEARXNG_URL` | Optional | SearXNG instance for web search |
### Gitea
| Secret | Required | Description |
|--------|----------|-------------|
| `AI_REVIEW_TOKEN` | Yes | Gitea bot access token |
| `OPENAI_API_KEY` | Choose one | OpenAI API key |
| `OPENROUTER_API_KEY` | Choose one | OpenRouter API key |
| `OLLAMA_HOST` | Choose one | Ollama server URL |
| `SEARXNG_URL` | Optional | SearXNG instance for web search |
--- ---
## Customization ## Customization Guide
### For GitHub ### Changing the Bot Name
The tools are included in the same repository under `tools/ai-review`, so no additional checkout is needed. 1. Update `config.yml`:
```yaml
interaction:
mention_prefix: "@yourbot"
```
### For Gitea 2. Update all workflow files - replace `@codebot` with your bot name
Replace the repository reference with your OpenRabbit fork: 3. Update the bot username check - replace `'Bartender'` with your bot's username
### Using a Different LLM Provider
Set the appropriate secret and update `config.yml`:
```yaml ```yaml
repository: YourOrg/OpenRabbit # For OpenRouter (Claude, etc.)
provider: openrouter
model:
openrouter: anthropic/claude-3.5-sonnet
# For Ollama (self-hosted)
provider: ollama
model:
ollama: codellama:13b
``` ```
Replace the API URL with your Gitea instance: ### Disabling Specific Features
In `config.yml`:
```yaml ```yaml
AI_REVIEW_API_URL: https://your-gitea.example.com/api/v1 agents:
pr:
enabled: true
security_scan: true # Set to false to disable security scanning
inline_comments: true # Set to false to disable inline comments
auto_summary:
enabled: true # Set to false to disable auto-summary for empty PRs
issue:
enabled: true
auto_label: true # Set to false to disable auto-labeling
``` ```
--- ---
## Chat/Bartender Workflow ## Workflow Routing Logic
Both platforms support the Bartender chat agent through the comment reply workflow. When `@codebot` is mentioned with a question (not a specific command like `summarize`), the Chat Agent handles it with tool calling capabilities. The workflows are designed to be **mutually exclusive** to prevent duplicate runs:
To enable web search, set the `SEARXNG_URL` secret to your SearXNG instance URL.
**Example usage:**
``` ```
@codebot How do I configure rate limiting? @codebot mention detected
@codebot Find all authentication-related files ├── Contains "triage"?
@codebot What does the dispatcher module do? │ └── YES → ai-issue-triage.yml
├── Contains specific command (help, explain, suggest, etc.)?
│ └── YES → ai-comment-reply.yml
└── Just @codebot + question (no command)?
└── YES → ai-chat.yml
```
**Important:** All workflows include a check to ignore the bot's own comments, preventing infinite loops.
---
## Troubleshooting
### Duplicate Workflow Runs
If you see multiple workflows triggering:
1. Check that command conditions in ai-chat.yml exclude all commands from ai-comment-reply.yml
2. Verify the bot username check is correct
### Bot Not Responding
1. Check that secrets are configured correctly
2. Verify the API URL is correct for your platform
3. Check workflow logs for errors
### Infinite Loop Prevention
All workflows include:
```yaml
if: github.event.comment.user.login != 'BotUsername'
```
Make sure to update `'BotUsername'` to your actual bot's login name.
---
## Example Usage
After setting up the workflows:
```
# Triage an issue
@codebot triage
# Get help
@codebot help
# Ask a question about the codebase
@codebot how does authentication work?
# Generate PR summary
@codebot summarize
# Generate changelog
@codebot changelog
# Re-run PR review
@codebot review-again
# Setup repository labels
@codebot setup-labels
``` ```

6
tools/ai-review/agents/__init__.py
View File

@@ -4,10 +4,11 @@ This package contains the modular agent implementations for the
enterprise AI code review system. enterprise AI code review system.
""" """
from agents.base_agent import BaseAgent, AgentContext, AgentResult from agents.base_agent import AgentContext, AgentResult, BaseAgent
from agents.chat_agent import ChatAgent
from agents.codebase_agent import CodebaseAgent
from agents.issue_agent import IssueAgent from agents.issue_agent import IssueAgent
from agents.pr_agent import PRAgent from agents.pr_agent import PRAgent
from agents.codebase_agent import CodebaseAgent
__all__ = [ __all__ = [
"BaseAgent", "BaseAgent",
@@ -16,4 +17,5 @@ __all__ = [
"IssueAgent", "IssueAgent",
"PRAgent", "PRAgent",
"CodebaseAgent", "CodebaseAgent",
"ChatAgent",
] ]

2
tools/ai-review/security/check_secrets.py
View File

@@ -15,7 +15,6 @@ from pathlib import Path
SECRET_PATTERNS = [ SECRET_PATTERNS = [
{ {
'name': 'OpenAI API Key',
"name": "OpenAI API Key", "name": "OpenAI API Key",
"pattern": r"sk-[a-zA-Z0-9]{32,}", "pattern": r"sk-[a-zA-Z0-9]{32,}",
"severity": "HIGH", "severity": "HIGH",
@@ -170,3 +169,4 @@ def main():
if __name__ == "__main__": if __name__ == "__main__":
sys.exit(main())

2
tools/ai-review/security/validate_workflows.py
View File

@@ -15,7 +15,6 @@ import yaml
SECURITY_CHECKS = [ SECURITY_CHECKS = [
{ {
'name': 'Full webhook data in env vars',
"name": "Full webhook data in env vars", "name": "Full webhook data in env vars",
"pattern": r"toJSON\(github\.event\)|toJSON\(gitea\.event\)", "pattern": r"toJSON\(github\.event\)|toJSON\(gitea\.event\)",
"severity": "HIGH", "severity": "HIGH",
@@ -155,3 +154,4 @@ def main():
if __name__ == "__main__": if __name__ == "__main__":
sys.exit(main())

19
tools/ai-review/utils/__init__.py Normal file
View File

@@ -0,0 +1,19 @@
"""Utility Functions Package
This package contains utility functions for webhook sanitization,
safe event dispatching, and other helper functions.
"""
from utils.webhook_sanitizer import (
extract_minimal_context,
sanitize_webhook_data,
validate_repository_format,
validate_webhook_signature,
)
__all__ = [
"sanitize_webhook_data",
"validate_repository_format",
"extract_minimal_context",
"validate_webhook_signature",
]