Skip to content

chore: This is a test #266

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 5 commits into from
Closed

chore: This is a test #266

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
b16d67d
chore: This is a test
suejung-sentry Jul 23, 2025
427b19e
another test commit
suejung-sentry Jul 23, 2025
3ec38db
temp upload to overwatch
suejung-sentry Jul 23, 2025
eb8e33d
test
suejung-sentry Jul 23, 2025
0b9d3e2
wrong slug
suejung-sentry Jul 23, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
32 changes: 32 additions & 0 deletions .github/workflows/temp-overwatch.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,32 @@
name: Bug Prediction (Overwatch)

on:
pull_request:
types:
- opened
- synchronize

permissions:
contents: read
Comment on lines +1 to +10
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The workflow is missing concurrency controls which could lead to multiple instances running simultaneously on the same PR when multiple commits are pushed quickly. This could waste CI resources and potentially cause conflicts.

Suggested change
name: Bug Prediction (Overwatch)
on:
pull_request:
types:
- opened
- synchronize
permissions:
contents: read
name: Bug Prediction (Overwatch)
on:
pull_request:
types:
- opened
- synchronize
concurrency:
group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
cancel-in-progress: true
permissions:
contents: read

Did we get this right? 👍 / 👎 to inform future reviews.


jobs:
upload-overwatch:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Install Overwatch CLI
run: |
curl -o overwatch-cli https://overwatch.codecov.io/linux/cli
chmod +x overwatch-cli
Comment on lines +19 to +22
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The workflow downloads an executable binary from an external URL without any integrity verification. This poses a significant security risk as the binary could be tampered with or compromised. Consider adding checksum verification or using a signed binary distribution method.

Suggested change
- name: Install Overwatch CLI
run: |
curl -o overwatch-cli https://overwatch.codecov.io/linux/cli
chmod +x overwatch-cli
- name: Install Overwatch CLI
run: |
curl -o overwatch-cli https://overwatch.codecov.io/linux/cli
# Verify checksum (example)
echo "expected_sha256_hash overwatch-cli" | sha256sum -c
chmod +x overwatch-cli

Did we get this right? 👍 / 👎 to inform future reviews.

# Using --upload-empty-on-error flag to force this step through.
# This workflow is a temporary workaround until this alpha feature
# is merged into AI PR review
- name: Run Overwatch CLI
run: |
./overwatch-cli \
--auth-token ${{ secrets.OVERWATCH_SENTRY_AUTH_TOKEN }} \
--organization-slug codecov \
--upload-empty-on-error \
typescript --package-manager pnpm --eslint-pattern src
6 changes: 6 additions & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,3 +27,9 @@ It supports the following features:
- [Codecov Documentation](https://docs.codecov.com/docs)
- [Codecov Feedback](https://github.com/codecov/feedback/discussions)
- [Sentry Discord](https://discord.gg/Ww9hbqr)

this is a test

another test

test
Loading