chore(actions): added new pr-check action

[developerEhsan]

• added new gh action
• fixed release action

Summary by CodeRabbit

• Chores
  • Introduced a new workflow to validate the Windows build process on pull requests.
  • Temporarily disabled the automated generation of release notes to streamline the release process.
  • Added a configuration file for automatic labeling of pull requests based on modified files.

[coderabbitai]

Walkthrough

A new GitHub Actions workflow has been introduced in .github/workflows/pr-check.yml to validate the Windows build process on pull requests targeting the master branch. This workflow runs on a Windows environment and executes a series of steps including repository checkout, setting up pnpm and Node.js (version 22.x), configuring caching, installing dependencies, and performing the build. Additionally, the release workflow in .github/workflows/release.yml has been modified by commenting out the step responsible for generating release notes. A new labeler configuration file has also been added to automate labeling of pull requests based on modified files.

Changes

File(s)	Change Summary
.github/workflows/pr-check.yml	Added a new workflow to validate Windows builds on pull requests. It includes steps for repository checkout, installing pnpm & Node.js 22.x, caching, dependency install, and build execution.
.github/workflows/release.yml	Commented out the "Generate Release Notes" step, temporarily disabling the changelog generation while keeping other release process steps intact.
.github/labeler.yml	Introduced a new configuration file for automatic labeling of pull requests based on modified files, with specific labels for dependencies, changelogs, Electron, UI, builds, tests, CI/CD, documentation, and hotfixes.

Sequence Diagram(s)

PR Check Workflow

sequenceDiagram
    participant PR as "Pull Request"
    participant Act as "GitHub Actions (pr-check)"
    participant Repo as "Repository"
    participant Env as "Node.js Environment"

    PR->>Act: Open PR targeting master
    Act->>Repo: Checkout repository (full history)
    Act->>Act: Install pnpm (latest)
    Act->>Env: Setup Node.js v22.x (with caching)
    Act->>Act: Retrieve pnpm store directory & setup cache
    Act->>Repo: Install dependencies (pnpm install --frozen-lockfile)
    Act->>Repo: Execute build (pnpm build)

Loading

Release Workflow

sequenceDiagram
    participant Rel as "Release Workflow"
    participant Repo as "Repository"
    participant Build as "Build Process"

    Rel->>Repo: Checkout repository
    Rel->>Repo: Install dependencies
    Rel->>Build: Execute build process
    Rel->>Rel: (Generate Release Notes step commented out)
    Rel->>Repo: Create release

Loading

Poem

Hoppity, I'm a rabbit with code so light,
New workflows spring up under GitHub's bright sight.
I bounce through builds with pnpm and Node.js flair,
While release notes sleep, caught in a gentle snare.
Cheers to the changes—hop on, code, and dare!

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (2)

.github/workflows/pr-check.yml (2)

18-22: Install pnpm Step: Pinning Version
The step correctly uses pnpm/action-setup@v4 to install pnpm. However, using the unpinned tag ("v4") may lead to unexpected updates. Consider pinning to a specific commit hash or version tag to ensure build consistency.

-        uses: pnpm/action-setup@v4
+        uses: pnpm/[email protected]  # or pin to a specific commit hash

🧰 Tools

🪛 GitHub Check: CodeQL

[warning] 19-19: Unpinned tag for a non-immutable Action in workflow
Unpinned 3rd party Action 'Validate Windows Build on PR' step Uses Step uses 'pnpm/action-setup' with ref 'v4', not a pinned commit hash

---

50-57: Commented-Out Verification Step
There is a commented-out block intended to verify the build output. If this functionality is planned to be re-enabled in the future, consider adding a clarifying comment regarding its temporary disablement. Alternatively, remove this block if it is no longer needed to keep the file clean.

🧰 Tools

🪛 GitHub Check: CodeQL

[warning] 10-57: Workflow does not contain permissions
Actions Job or Workflow does not set permissions

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 3667ee1 and 30815a6.

📒 Files selected for processing (2)

• .github/workflows/pr-check.yml (1 hunks)
• .github/workflows/release.yml (1 hunks)

✅ Files skipped from review due to trivial changes (1)

• .github/workflows/release.yml

🧰 Additional context used

🪛 GitHub Check: CodeQL

.github/workflows/pr-check.yml

[warning] 10-57: Workflow does not contain permissions
Actions Job or Workflow does not set permissions

---

[warning] 19-19: Unpinned tag for a non-immutable Action in workflow
Unpinned 3rd party Action 'Validate Windows Build on PR' step Uses Step uses 'pnpm/action-setup' with ref 'v4', not a pinned commit hash

🔇 Additional comments (8)

.github/workflows/pr-check.yml (8)

1-2: Workflow Identification and Name Declaration
The workflow name "Validate Windows Build on PR" is clear and descriptive, effectively communicating its purpose.

---

3-7: Pull Request Trigger Setup
The pull_request trigger is properly configured to run only on PRs targeting the "master" branch, ensuring relevant execution.

---

12-17: Checkout Repository Step
Using actions/checkout@v4 with a fetch-depth of 0 is appropriate for retrieving full history (required for changelog generation).

---

23-28: Install Node.js Step
The configuration for Node.js using actions/setup-node@v4 with version "22.x" and caching configured for pnpm is correctly implemented.

---

29-33: Get pnpm Store Directory
The step correctly retrieves the pnpm store directory and sets it as an output using $GITHUB_OUTPUT, which is necessary for the caching step that follows.

---

34-41: Setup pnpm Cache
The usage of actions/cache@v4 with a dynamic key based on the pnpm lock file hash ensures efficient caching. This approach is well implemented.

---

42-44: Install Dependencies Step
Running pnpm install --frozen-lockfile guarantees that dependency versions remain consistent with the lock file, which is a best practice.

---

45-49: Build Step Configuration
The build step sets the required environment variable (ELECTRON_BUILDER_ALLOWED_EXECUTABLES) and correctly initiates the build with pnpm build. The configuration appears proper.

[coderabbitai]

🛠️ Refactor suggestion

Job Configuration and Environment
The job "validate-build" is set to run on "ubuntu-latest", providing a clean build environment. However, note that the workflow currently lacks an explicit permissions declaration. Defining minimal permissions (e.g., contents: read) is recommended to improve security.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (2)

.github/workflows/pr-check.yml (2)

21-25: Action Version Pinning for pnpm Setup
The "Install pnpm" step uses pnpm/action-setup@v4 with version: latest. Relying on latest can lead to unpredictable builds if the action changes. It is recommended to pin the action to a specific commit or a fully qualified version tag to ensure reproducibility and security.

For example, consider updating the step as follows:

-      - name: Install pnpm
-        uses: pnpm/action-setup@v4
-        with:
-          version: latest
+      - name: Install pnpm
+        uses: pnpm/action-setup@<pinned-version>
+        with:
+          version: latest

Replace <pinned-version> with the appropriate commit hash or tag.

🧰 Tools

🪛 GitHub Check: CodeQL

[warning] 22-22: Unpinned tag for a non-immutable Action in workflow
Unpinned 3rd party Action 'Validate Windows Build on PR' step Uses Step uses 'pnpm/action-setup' with ref 'v4', not a pinned commit hash

---

53-61: Commented-Out Build Verification Step
There is a commented-out block intended for verifying the build output. This step, when activated, can help ensure that the build produces the expected artifacts. Consider re-enabling or updating it when build output validation becomes necessary.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 30815a6 and aa6651c.

📒 Files selected for processing (1)

• .github/workflows/pr-check.yml (1 hunks)

🧰 Additional context used

🪛 GitHub Check: CodeQL

.github/workflows/pr-check.yml

[warning] 22-22: Unpinned tag for a non-immutable Action in workflow
Unpinned 3rd party Action 'Validate Windows Build on PR' step Uses Step uses 'pnpm/action-setup' with ref 'v4', not a pinned commit hash

⏰ Context from checks skipped due to timeout of 90000ms (1)

• GitHub Check: Analyze (javascript-typescript)

🔇 Additional comments (9)

.github/workflows/pr-check.yml (9)

1-2: Descriptive Workflow Name
The workflow name "Validate Windows Build on PR" clearly indicates its purpose.

---

3-7: PR Trigger Configuration
The workflow is configured to trigger on pull requests targeting the master branch, ensuring that the build validation only occurs when necessary.

---

8-10: Security: Permissions Declaration
The explicit permissions block (contents: read) is correctly added, limiting access and enhancing the security posture of the workflow.

---

11-20: Job and Checkout Setup
The "validate-build" job is properly defined to run on ubuntu-latest, and the checkout step uses actions/checkout@v4 with a fetch depth of 0, which is beneficial for tasks like changelog generation.

---

26-31: Node.js Setup
The "Install Node.js" step correctly sets up Node.js version 22.x and enables caching using pnpm. This configuration should help speed up subsequent builds.

---

32-36: Retrieving pnpm Store Directory
The step that retrieves the pnpm store directory is implemented correctly using a bash command to output the store path to $GITHUB_OUTPUT.

---

37-44: Caching pnpm Store
The cache is effectively configured with actions/cache@v4, using a key based on the hash of pnpm-lock.yaml. This approach is ideal for speeding up dependency installation.

---

45-47: Dependency Installation
The dependency installation step using pnpm install --frozen-lockfile ensures that the lockfile is respected, which is good for maintaining consistency in dependency versions.

---

48-52: Build Configuration
The build step is well-configured, including the necessary environment variable (ELECTRON_BUILDER_ALLOWED_EXECUTABLES) and executing pnpm build. This setup is clear and directly supports the build process.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

.github/workflows/pr-check.yml (1)

53-60: Commented-out Verification Step
A verification step for the build output is included but commented out. If this check is planned for future use or debugging, consider adding an explanatory comment; otherwise, remove it to keep the workflow tidy.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between aa6651c and fc0d0c0.

📒 Files selected for processing (1)

• .github/workflows/pr-check.yml (1 hunks)

🧰 Additional context used

🪛 GitHub Check: CodeQL

.github/workflows/pr-check.yml

[warning] 22-22: Unpinned tag for a non-immutable Action in workflow
Unpinned 3rd party Action 'Validate Windows Build on PR' step Uses Step uses 'pnpm/action-setup' with ref 'v4', not a pinned commit hash

⏰ Context from checks skipped due to timeout of 90000ms (1)

• GitHub Check: validate-build

🔇 Additional comments (10)

.github/workflows/pr-check.yml (10)

1-7: Workflow Trigger and Naming Configuration
The workflow is properly named ("Validate Windows Build on PR") and uses a pull request trigger that targets the master branch. Ensure that limiting the trigger to master is intentional—if you require checks on other branches, adjust accordingly.

---

8-10: Explicit Permissions Declaration
Adding the permissions block with contents: read is a solid security practice that minimizes token permissions. If further granularity is needed in the future, consider restricting additional permissions.

---

11-14: Job Setup Verification
The validate-build job is correctly set up to run on windows-latest, fitting the requirement to validate Windows builds.

---

15-20: Repository Checkout Step
The checkout step uses actions/checkout@v4 with a fetch-depth of 0, ensuring that the full history is available for changelog generation.

---

21-25: Pinning the pnpm Action Version
The workflow employs pnpm/action-setup@v4, which isn’t pinned to a specific commit hash. This could result in non-deterministic builds if the action changes. Consider pinning to a specific commit SHA or a fixed version tag.

Suggested Diff:

-        uses: pnpm/action-setup@v4
+        uses: pnpm/[email protected]  # Replace with a pinned commit or specific version number

🧰 Tools

🪛 GitHub Check: CodeQL

[warning] 22-22: Unpinned tag for a non-immutable Action in workflow
Unpinned 3rd party Action 'Validate Windows Build on PR' step Uses Step uses 'pnpm/action-setup' with ref 'v4', not a pinned commit hash

---

26-31: Node.js Setup Step
The Node.js installation step uses actions/setup-node@v4 with Node version 22.x and caching enabled for pnpm. This configuration is correctly implemented and ensures version consistency.

---

32-36: Retrieving pnpm Store Directory
The step that retrieves the pnpm store path via a bash command and sets it as an output variable is well implemented, enabling dynamic cache path resolution.

---

37-44: pnpm Cache Setup
Using actions/cache@v4 with a key based on the operating system and the hash of the lock file is an effective approach to caching. This step is clear and well configured.

---

45-47: Dependency Installation
Running pnpm install --frozen-lockfile guarantees consistency by adhering strictly to the lockfile—this is a best practice for dependency management.

---

48-52: Build Step Execution
The build step sets the ELECTRON_BUILDER_ALLOWED_EXECUTABLES environment variable to '*' and executes pnpm build. Verify that allowing all executables (using a wildcard) aligns with your security policies.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

.github/labeler.yml (1)

64-64: Trailing Newline Consideration
Line 64 is empty, which is acceptable; however, ensuring a single trailing newline can keep the file compliant with common file format standards.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between fc0d0c0 and 831385e.

📒 Files selected for processing (1)

• .github/labeler.yml (1 hunks)

🔇 Additional comments (11)

.github/labeler.yml (11)

1-2: Overall File Description is Clear
The header comment on lines 1–2 clearly describes the file’s purpose of automatically assigning labels based on file changes. This helps set the context for anyone reading or modifying the configuration.

---

3-9: General Labels Block is Well-Organized
The "🟢 dependencies" label on lines 4–8 correctly targets key dependency files. The grouping and indentation follow YAML standards, making it easy to read and maintain.

---

10-12: Changelog Label is Appropriately Configured
The "changelog" label block on lines 10–12 succinctly captures changes to the changelog file. This is clear and fits well with the overall labeling strategy.

---

13-17: Electron-Main Label is Clearly Defined
The "electron-main" label defined on lines 14–16 (with the preceding comment on line 13) properly targets files in src/main/** and electron/**. This segment is concise and meets the intended purpose.

---

18-22: Electron-Renderer Label is Correct and Consistent
The "electron-renderer" section on lines 18–21 correctly labels files related to the renderer aspects of the Electron app. The configuration is consistent with the Electron-main block.

---

23-28: UI & Frontend Labels are Well-Structured
The "🎨 ui" label on lines 24–27 accurately covers assets and styles for the UI. The file patterns (assets, styles, and css directories) are appropriate for capturing frontend changes.

---

29-39: Build & Configuration Labels are Comprehensive
The "🏗️ build" section on lines 30–38 covers a broad range of configuration files (e.g., webpack, Vite, Babel, TypeScript, ESLint, Prettier, and scripts). This thorough coverage will help in categorizing build-related changes effectively.

---

40-46: Testing Labels are Properly Defined
The "🧪 tests" label block on lines 41–45 accurately points to test directories and configuration files. This clear separation helps in tracking testing-related PR modifications.

---

47-51: CI/CD & GitHub Actions Labels are Consistent
The "🛠️ ci/cd" label on lines 48–50 includes both the workflows directory and the labeler configuration itself, which ensures that changes affecting continuous integration are easily spotted.

---

52-58: Documentation Labels Cover Relevant Files
The "📄 docs" label block on lines 53–57 effectively captures various documentation files such as those in the docs folder, README, and CONTRIBUTING files. This supports clear tracking of documentation updates.

---

59-63: Hotfix Label is Intuitive and Handy
The "🔥 hotfix" label on lines 60–63 is appropriately configured to tag critical files in the source and Electron directories, as well as changes to package.json. This enables quick identification of urgent fixes.