mirror of
https://github.com/flutter/samples.git
synced 2025-11-08 13:58:47 +00:00
81be02196d
Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token) from 2.0.6 to 2.1.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/create-github-app-token/releases">actions/create-github-app-token's releases</a>.</em></p> <blockquote> <h2>v2.1.4</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.1.3...v2.1.4">2.1.4</a> (2025-09-13)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> bump <code>@octokit/auth-app</code> from 7.2.1 to 8.0.1 (<a href="https://redirect.github.com/actions/create-github-app-token/issues/257">#257</a>) (<a href="bef1eaf1c0">bef1eaf</a>)</li> </ul> <h2>v2.1.3</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.1.2...v2.1.3">2.1.3</a> (2025-09-13)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> bump undici from 7.8.0 to 7.10.0 in the production-dependencies group (<a href="https://redirect.github.com/actions/create-github-app-token/issues/254">#254</a>) (<a href="f3d5ec2073">f3d5ec2</a>)</li> </ul> <h2>v2.1.2</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.1.1...v2.1.2">2.1.2</a> (2025-09-12)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> bump <code>@octokit/request</code> from 9.2.3 to 10.0.2 (<a href="https://redirect.github.com/actions/create-github-app-token/issues/256">#256</a>) (<a href="5d7307be63">5d7307b</a>)</li> </ul> <h2>v2.1.1</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.1.0...v2.1.1">2.1.1</a> (2025-08-11)</h2> <h3>Bug Fixes</h3> <ul> <li>revert "use <code>node24</code> as runner" (<a href="https://redirect.github.com/actions/create-github-app-token/issues/278">#278</a>) (<a href="5204204e81">5204204</a>), closes <a href="https://redirect.github.com/actions/create-github-app-token/issues/267">actions/create-github-app-token#267</a></li> </ul> <h2>v2.1.0</h2> <h1><a href="https://github.com/actions/create-github-app-token/compare/v2.0.6...v2.1.0">2.1.0</a> (2025-08-08)</h1> <h3>Features</h3> <ul> <li>use <code>node24</code> as runner (<a href="https://redirect.github.com/actions/create-github-app-token/issues/267">#267</a>) (<a href="a1cbe0fa3c">a1cbe0f</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="6701853927"><code>6701853</code></a> build(release): 2.1.4 [skip ci]</li> <li><a href="bef1eaf1c0"><code>bef1eaf</code></a> fix(deps): bump <code>@octokit/auth-app</code> from 7.2.1 to 8.0.1 (<a href="https://redirect.github.com/actions/create-github-app-token/issues/257">#257</a>)</li> <li><a href="1526738aa4"><code>1526738</code></a> build(release): 2.1.3 [skip ci]</li> <li><a href="f3d5ec2073"><code>f3d5ec2</code></a> fix(deps): bump undici from 7.8.0 to 7.10.0 in the production-dependencies gr...</li> <li><a href="def152b8a7"><code>def152b</code></a> build(release): 2.1.2 [skip ci]</li> <li><a href="5d7307be63"><code>5d7307b</code></a> fix(deps): bump <code>@octokit/request</code> from 9.2.3 to 10.0.2 (<a href="https://redirect.github.com/actions/create-github-app-token/issues/256">#256</a>)</li> <li><a href="525760a53f"><code>525760a</code></a> build(deps): bump stefanzweifel/git-auto-commit-action from 5.2.0 to 6.0.1 (#...</li> <li><a href="8ab05a8a84"><code>8ab05a8</code></a> Add beta branch support for releases (<a href="https://redirect.github.com/actions/create-github-app-token/issues/282">#282</a>)</li> <li><a href="d00315e88c"><code>d00315e</code></a> build(deps): bump actions/checkout from 4 to 5 (<a href="https://redirect.github.com/actions/create-github-app-token/issues/279">#279</a>)</li> <li><a href="fcc6c288e5"><code>fcc6c28</code></a> build(deps-dev): bump dotenv from 16.5.0 to 17.2.1 (<a href="https://redirect.github.com/actions/create-github-app-token/issues/269">#269</a>)</li> <li>Additional commits viewable in <a href="df432ceedc...6701853927">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
332 lines
16 KiB
YAML
332 lines
16 KiB
YAML
name: '💬 Gemini CLI'
|
|
|
|
on:
|
|
pull_request_review_comment:
|
|
types:
|
|
- 'created'
|
|
pull_request_review:
|
|
types:
|
|
- 'submitted'
|
|
issue_comment:
|
|
types:
|
|
- 'created'
|
|
|
|
concurrency:
|
|
group: '${{ github.workflow }}-${{ github.event.issue.number }}'
|
|
cancel-in-progress: |-
|
|
${{ github.event.sender.type == 'User' && ( github.event.issue.author_association == 'OWNER' || github.event.issue.author_association == 'MEMBER' || github.event.issue.author_association == 'COLLABORATOR') }}
|
|
|
|
defaults:
|
|
run:
|
|
shell: 'bash'
|
|
|
|
permissions:
|
|
contents: 'write'
|
|
id-token: 'write'
|
|
pull-requests: 'write'
|
|
issues: 'write'
|
|
|
|
jobs:
|
|
gemini-cli:
|
|
# This condition is complex to ensure we only run when explicitly invoked.
|
|
if: |-
|
|
github.event_name == 'workflow_dispatch' ||
|
|
(
|
|
github.event_name == 'issues' && github.event.action == 'opened' &&
|
|
contains(github.event.issue.body, '@gemini-cli') &&
|
|
!contains(github.event.issue.body, '/review') &&
|
|
!contains(github.event.issue.body, '/triage') &&
|
|
(
|
|
github.event.sender.type == 'User' && (
|
|
github.event.issue.author_association == 'OWNER' ||
|
|
github.event.issue.author_association == 'MEMBER' ||
|
|
github.event.issue.author_association == 'COLLABORATOR'
|
|
)
|
|
)
|
|
) ||
|
|
(
|
|
github.event_name == 'issue_comment' &&
|
|
contains(github.event.comment.body, '@gemini-cli') &&
|
|
!contains(github.event.comment.body, '/review') &&
|
|
!contains(github.event.comment.body, '/triage') &&
|
|
(
|
|
github.event.sender.type == 'User' && (
|
|
github.event.comment.author_association == 'OWNER' ||
|
|
github.event.comment.author_association == 'MEMBER' ||
|
|
github.event.comment.author_association == 'COLLABORATOR'
|
|
)
|
|
)
|
|
) ||
|
|
(
|
|
github.event_name == 'pull_request_review' &&
|
|
contains(github.event.review.body, '@gemini-cli') &&
|
|
!contains(github.event.review.body, '/review') &&
|
|
!contains(github.event.review.body, '/triage') &&
|
|
(
|
|
github.event.sender.type == 'User' && (
|
|
github.event.review.author_association == 'OWNER' ||
|
|
github.event.review.author_association == 'MEMBER' ||
|
|
github.event.review.author_association == 'COLLABORATOR'
|
|
)
|
|
)
|
|
) ||
|
|
(
|
|
github.event_name == 'pull_request_review_comment' &&
|
|
contains(github.event.comment.body, '@gemini-cli') &&
|
|
!contains(github.event.comment.body, '/review') &&
|
|
!contains(github.event.comment.body, '/triage') &&
|
|
(
|
|
github.event.sender.type == 'User' && (
|
|
github.event.comment.author_association == 'OWNER' ||
|
|
github.event.comment.author_association == 'MEMBER' ||
|
|
github.event.comment.author_association == 'COLLABORATOR'
|
|
)
|
|
)
|
|
)
|
|
timeout-minutes: 10
|
|
runs-on: 'ubuntu-latest'
|
|
|
|
steps:
|
|
- name: 'Generate GitHub App Token'
|
|
id: 'generate_token'
|
|
if: |-
|
|
${{ vars.APP_ID }}
|
|
uses: 'actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42' # ratchet:actions/create-github-app-token@v2
|
|
with:
|
|
app-id: '${{ vars.APP_ID }}'
|
|
private-key: '${{ secrets.APP_PRIVATE_KEY }}'
|
|
|
|
- name: 'Get context from event'
|
|
id: 'get_context'
|
|
env:
|
|
EVENT_NAME: '${{ github.event_name }}'
|
|
EVENT_PAYLOAD: '${{ toJSON(github.event) }}'
|
|
run: |-
|
|
set -euo pipefail
|
|
|
|
USER_REQUEST=""
|
|
ISSUE_NUMBER=""
|
|
IS_PR="false"
|
|
|
|
if [[ "${EVENT_NAME}" == "issues" ]]; then
|
|
USER_REQUEST=$(echo "${EVENT_PAYLOAD}" | jq -r .issue.body)
|
|
ISSUE_NUMBER=$(echo "${EVENT_PAYLOAD}" | jq -r .issue.number)
|
|
elif [[ "${EVENT_NAME}" == "issue_comment" ]]; then
|
|
USER_REQUEST=$(echo "${EVENT_PAYLOAD}" | jq -r .comment.body)
|
|
ISSUE_NUMBER=$(echo "${EVENT_PAYLOAD}" | jq -r .issue.number)
|
|
if [[ $(echo "${EVENT_PAYLOAD}" | jq -r .issue.pull_request) != "null" ]]; then
|
|
IS_PR="true"
|
|
fi
|
|
elif [[ "${EVENT_NAME}" == "pull_request_review" ]]; then
|
|
USER_REQUEST=$(echo "${EVENT_PAYLOAD}" | jq -r .review.body)
|
|
ISSUE_NUMBER=$(echo "${EVENT_PAYLOAD}" | jq -r .pull_request.number)
|
|
IS_PR="true"
|
|
elif [[ "${EVENT_NAME}" == "pull_request_review_comment" ]]; then
|
|
USER_REQUEST=$(echo "${EVENT_PAYLOAD}" | jq -r .comment.body)
|
|
ISSUE_NUMBER=$(echo "${EVENT_PAYLOAD}" | jq -r .pull_request.number)
|
|
IS_PR="true"
|
|
fi
|
|
|
|
# Clean up user request
|
|
USER_REQUEST=$(echo "${USER_REQUEST}" | sed 's/.*@gemini-cli//' | sed 's/^[[:space:]]*//;s/[[:space:]]*$//')
|
|
|
|
{
|
|
echo "user_request=${USER_REQUEST}"
|
|
echo "issue_number=${ISSUE_NUMBER}"
|
|
echo "is_pr=${IS_PR}"
|
|
} >> "${GITHUB_OUTPUT}"
|
|
|
|
- name: 'Set up git user for commits'
|
|
run: |-
|
|
git config --global user.name 'gemini-cli[bot]'
|
|
git config --global user.email 'gemini-cli[bot]@users.noreply.github.com'
|
|
|
|
- name: 'Checkout PR branch'
|
|
if: |-
|
|
${{ steps.get_context.outputs.is_pr == 'true' }}
|
|
uses: 'actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683' # ratchet:actions/checkout@v4
|
|
with:
|
|
token: '${{ steps.generate_token.outputs.token || secrets.GITHUB_TOKEN }}'
|
|
repository: '${{ github.repository }}'
|
|
ref: 'refs/pull/${{ steps.get_context.outputs.issue_number }}/head'
|
|
fetch-depth: 0
|
|
|
|
- name: 'Checkout main branch'
|
|
if: |-
|
|
${{ steps.get_context.outputs.is_pr == 'false' }}
|
|
uses: 'actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683' # ratchet:actions/checkout@v4
|
|
with:
|
|
token: '${{ steps.generate_token.outputs.token || secrets.GITHUB_TOKEN }}'
|
|
repository: '${{ github.repository }}'
|
|
fetch-depth: 0
|
|
|
|
- name: 'Acknowledge request'
|
|
env:
|
|
GITHUB_TOKEN: '${{ steps.generate_token.outputs.token || secrets.GITHUB_TOKEN }}'
|
|
ISSUE_NUMBER: '${{ steps.get_context.outputs.issue_number }}'
|
|
REPOSITORY: '${{ github.repository }}'
|
|
REQUEST_TYPE: '${{ steps.get_context.outputs.request_type }}'
|
|
run: |-
|
|
set -euo pipefail
|
|
MESSAGE="I've received your request and I'm working on it now! 🤖"
|
|
if [[ -n "${MESSAGE}" ]]; then
|
|
gh issue comment "${ISSUE_NUMBER}" \
|
|
--body "${MESSAGE}" \
|
|
--repo "${REPOSITORY}"
|
|
fi
|
|
|
|
- name: 'Get description'
|
|
id: 'get_description'
|
|
env:
|
|
GITHUB_TOKEN: '${{ steps.generate_token.outputs.token || secrets.GITHUB_TOKEN }}'
|
|
IS_PR: '${{ steps.get_context.outputs.is_pr }}'
|
|
ISSUE_NUMBER: '${{ steps.get_context.outputs.issue_number }}'
|
|
run: |-
|
|
set -euo pipefail
|
|
if [[ "${IS_PR}" == "true" ]]; then
|
|
DESCRIPTION=$(gh pr view "${ISSUE_NUMBER}" --json body --template '{{.body}}')
|
|
else
|
|
DESCRIPTION=$(gh issue view "${ISSUE_NUMBER}" --json body --template '{{.body}}')
|
|
fi
|
|
{
|
|
echo "description<<EOF"
|
|
echo "${DESCRIPTION}"
|
|
echo "EOF"
|
|
} >> "${GITHUB_OUTPUT}"
|
|
|
|
- name: 'Get comments'
|
|
id: 'get_comments'
|
|
env:
|
|
GITHUB_TOKEN: '${{ steps.generate_token.outputs.token || secrets.GITHUB_TOKEN }}'
|
|
IS_PR: '${{ steps.get_context.outputs.is_pr }}'
|
|
ISSUE_NUMBER: '${{ steps.get_context.outputs.issue_number }}'
|
|
run: |-
|
|
set -euo pipefail
|
|
if [[ "${IS_PR}" == "true" ]]; then
|
|
COMMENTS=$(gh pr view "${ISSUE_NUMBER}" --json comments --template '{{range .comments}}{{.author.login}}: {{.body}}{{"\n"}}{{end}}')
|
|
else
|
|
COMMENTS=$(gh issue view "${ISSUE_NUMBER}" --json comments --template '{{range .comments}}{{.author.login}}: {{.body}}{{"\n"}}{{end}}')
|
|
fi
|
|
{
|
|
echo "comments<<EOF"
|
|
echo "${COMMENTS}"
|
|
echo "EOF"
|
|
} >> "${GITHUB_OUTPUT}"
|
|
|
|
- name: 'Run Gemini'
|
|
id: 'run_gemini'
|
|
uses: 'google-github-actions/run-gemini-cli@v0'
|
|
env:
|
|
GITHUB_TOKEN: '${{ steps.generate_token.outputs.token || secrets.GITHUB_TOKEN }}'
|
|
REPOSITORY: '${{ github.repository }}'
|
|
USER_REQUEST: '${{ steps.get_context.outputs.user_request }}'
|
|
ISSUE_NUMBER: '${{ steps.get_context.outputs.issue_number }}'
|
|
IS_PR: '${{ steps.get_context.outputs.is_pr }}'
|
|
with:
|
|
gemini_api_key: '${{ secrets.GEMINI_API_KEY }}'
|
|
gcp_workload_identity_provider: '${{ vars.GCP_WIF_PROVIDER }}'
|
|
gcp_project_id: '${{ vars.GOOGLE_CLOUD_PROJECT }}'
|
|
gcp_location: '${{ vars.GOOGLE_CLOUD_LOCATION }}'
|
|
gcp_service_account: '${{ vars.SERVICE_ACCOUNT_EMAIL }}'
|
|
use_vertex_ai: '${{ vars.GOOGLE_GENAI_USE_VERTEXAI }}'
|
|
use_gemini_code_assist: '${{ vars.GOOGLE_GENAI_USE_GCA }}'
|
|
settings: |-
|
|
{
|
|
"maxSessionTurns": 50,
|
|
"telemetry": {
|
|
"enabled": false,
|
|
"target": "gcp"
|
|
}
|
|
}
|
|
prompt: |-
|
|
## Role
|
|
|
|
You are a helpful AI assistant invoked via a CLI interface in a GitHub workflow. You have access to tools to interact with the repository and respond to the user.
|
|
|
|
## Context
|
|
|
|
- **Repository**: `${{ github.repository }}`
|
|
- **Triggering Event**: `${{ github.event_name }}`
|
|
- **Issue/PR Number**: `${{ steps.get_context.outputs.issue_number }}`
|
|
- **Is this a PR?**: `${{ steps.get_context.outputs.is_pr }}`
|
|
- **Issue/PR Description**:
|
|
`${{ steps.get_description.outputs.description }}`
|
|
- **Comments**:
|
|
`${{ steps.get_comments.outputs.comments }}`
|
|
|
|
## User Request
|
|
|
|
The user has sent the following request:
|
|
`${{ steps.get_context.outputs.user_request }}`
|
|
|
|
## How to Respond to Issues, PR Comments, and Questions
|
|
|
|
This workflow supports three main scenarios:
|
|
|
|
1. **Creating a Fix for an Issue**
|
|
- Carefully read the user request and the related issue or PR description.
|
|
- Use available tools to gather all relevant context (e.g., `gh issue view`, `gh pr view`, `gh pr diff`, `cat`, `head`, `tail`).
|
|
- Identify the root cause of the problem before proceeding.
|
|
- **Show and maintain a plan as a checklist**:
|
|
- At the very beginning, outline the steps needed to resolve the issue or address the request and post them as a checklist comment on the issue or PR (use GitHub markdown checkboxes: `- [ ] Task`).
|
|
- Example:
|
|
```
|
|
### Plan
|
|
- [ ] Investigate the root cause
|
|
- [ ] Implement the fix in `file.py`
|
|
- [ ] Add/modify tests
|
|
- [ ] Update documentation
|
|
- [ ] Verify the fix and close the issue
|
|
```
|
|
- Use: `gh pr comment "${ISSUE_NUMBER}" --body "<plan>"` or `gh issue comment "${ISSUE_NUMBER}" --body "<plan>"` to post the initial plan.
|
|
- As you make progress, keep the checklist visible and up to date by editing the same comment (check off completed tasks with `- [x]`).
|
|
- To update the checklist:
|
|
1. Find the comment ID for the checklist (use `gh pr comment list "${ISSUE_NUMBER}"` or `gh issue comment list "${ISSUE_NUMBER}"`).
|
|
2. Edit the comment with the updated checklist:
|
|
- For PRs: `gh pr comment --edit <comment-id> --body "<updated plan>"`
|
|
- For Issues: `gh issue comment --edit <comment-id> --body "<updated plan>"`
|
|
3. The checklist should only be maintained as a comment on the issue or PR. Do not track or update the checklist in code files.
|
|
- If the fix requires code changes, determine which files and lines are affected. If clarification is needed, note any questions for the user.
|
|
- Make the necessary code or documentation changes using the available tools (e.g., `write_file`). Ensure all changes follow project conventions and best practices. Reference all shell variables as `"${VAR}"` (with quotes and braces) to prevent errors.
|
|
- Run any relevant tests or checks to verify the fix works as intended. If possible, provide evidence (test output, screenshots, etc.) that the issue is resolved.
|
|
- **Branching and Committing**:
|
|
- **NEVER commit directly to the `main` branch.**
|
|
- If you are working on a **pull request** (`IS_PR` is `true`), the correct branch is already checked out. Simply commit and push to it.
|
|
- `git add .`
|
|
- `git commit -m "feat: <describe the change>"`
|
|
- `git push`
|
|
- If you are working on an **issue** (`IS_PR` is `false`), create a new branch for your changes. A good branch name would be `issue/${ISSUE_NUMBER}/<short-description>`.
|
|
- `git checkout -b issue/${ISSUE_NUMBER}/my-fix`
|
|
- `git add .`
|
|
- `git commit -m "feat: <describe the fix>"`
|
|
- `git push origin issue/${ISSUE_NUMBER}/my-fix`
|
|
- After pushing, you can create a pull request: `gh pr create --title "Fixes #${ISSUE_NUMBER}: <short title>" --body "This PR addresses issue #${ISSUE_NUMBER}."`
|
|
- Summarize what was changed and why in a markdown file: `write_file("response.md", "<your response here>")`
|
|
- Post the response as a comment:
|
|
- For PRs: `gh pr comment "${ISSUE_NUMBER}" --body-file response.md`
|
|
- For Issues: `gh issue comment "${ISSUE_NUMBER}" --body-file response.md`
|
|
|
|
2. **Addressing Comments on a Pull Request**
|
|
- Read the specific comment and the context of the PR.
|
|
- Use tools like `gh pr view`, `gh pr diff`, and `cat` to understand the code and discussion.
|
|
- If the comment requests a change or clarification, follow the same process as for fixing an issue: create a checklist plan, implement, test, and commit any required changes, updating the checklist as you go.
|
|
- **Committing Changes**: The correct PR branch is already checked out. Simply add, commit, and push your changes.
|
|
- `git add .`
|
|
- `git commit -m "fix: address review comments"`
|
|
- `git push`
|
|
- If the comment is a question, answer it directly and clearly, referencing code or documentation as needed.
|
|
- Document your response in `response.md` and post it as a PR comment: `gh pr comment "${ISSUE_NUMBER}" --body-file response.md`
|
|
|
|
3. **Answering Any Question on an Issue**
|
|
- Read the question and the full issue context using `gh issue view` and related tools.
|
|
- Research or analyze the codebase as needed to provide an accurate answer.
|
|
- If the question requires code or documentation changes, follow the fix process above, including creating and updating a checklist plan and **creating a new branch for your changes as described in section 1.**
|
|
- Write a clear, concise answer in `response.md` and post it as an issue comment: `gh issue comment "${ISSUE_NUMBER}" --body-file response.md`
|
|
|
|
## Guidelines
|
|
|
|
- **Be concise and actionable.** Focus on solving the user's problem efficiently.
|
|
- **Always commit and push your changes if you modify code or documentation.**
|
|
- **If you are unsure about the fix or answer, explain your reasoning and ask clarifying questions.**
|
|
- **Follow project conventions and best practices.**
|