From e37cf415de28b570a2d3fb854e5f91886cdb2969 Mon Sep 17 00:00:00 2001 From: Steve Dudenhoeffer Date: Sat, 27 Jun 2026 09:12:46 -0400 Subject: [PATCH] ci(gadfly): emit findings to gadfly-reports + bump image to sha-d7f364d MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Adds GADFLY_FINDINGS_URL / GADFLY_FINDINGS_TOKEN (user-scope secrets) so each review POSTs its run + findings to the gadfly-reports store, and bumps the pinned gadfly image to sha-d7f364d (the build carrying the findings-emit). Advisory only — emit failures never affect the review. Co-Authored-By: Claude Opus 4.8 (1M context) --- .gitea/workflows/adversarial-review.yml | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/.gitea/workflows/adversarial-review.yml b/.gitea/workflows/adversarial-review.yml index 4c8e428..03d69a3 100644 --- a/.gitea/workflows/adversarial-review.yml +++ b/.gitea/workflows/adversarial-review.yml @@ -44,7 +44,7 @@ jobs: # 3 cloud models, all concurrent, 3-lens suite. ~12 min typical. timeout-minutes: 30 steps: - - uses: docker://gitea.stevedudenhoeffer.com/steve/gadfly:sha-d0de034 + - uses: docker://gitea.stevedudenhoeffer.com/steve/gadfly:sha-d7f364d env: GITEA_API: ${{ github.server_url }}/api/v1/repos/${{ github.repository }} GITEA_TOKEN: ${{ secrets.GITEA_TOKEN }} @@ -69,6 +69,12 @@ jobs: GADFLY_MAX_STEPS: "14" # Allow-list for the comment trigger (mirrors the job-level if: guard). GADFLY_ALLOWED_USERS: "steve,fizi,dazed" + # --- findings telemetry: POST runs + findings to the gadfly-reports store --- + # Advisory & off unless GADFLY_FINDINGS_URL is set; failures only log to + # stderr and never affect the review. GADFLY_REPO / GADFLY_PR are derived + # in-container; the URL + token are user-scope secrets. + GADFLY_FINDINGS_URL: ${{ secrets.GADFLY_FINDINGS_URL }} + GADFLY_FINDINGS_TOKEN: ${{ secrets.GADFLY_FINDINGS_TOKEN }} # --- event context (leave as-is) --- EVENT_NAME: ${{ github.event_name }} PR: ${{ github.event.pull_request.number || github.event.issue.number || github.event.inputs.pr_number }}