Skip to content

Track actionable review follow-ups #816

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
ralphbean merged 6 commits into from
May 13, 2026
Merged

Track actionable review follow-ups #816

Show file tree
Hide file tree
Changes from 3 commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
1df1570
Track actionable review follow-ups
dhshah13 May 11, 2026
b1a7911
Address review feedback on follow-up issues
dhshah13 May 11, 2026
7ca8bdf
Warn on duplicate review follow-up markers
dhshah13 May 12, 2026
dc72d83
Align review action parsing with schema
dhshah13 May 12, 2026
181bbf5
fix(review): cap follow-up issue creation
dhshah13 May 12, 2026
7ee8f9a
Merge remote-tracking branch 'origin/main' into fix/789-review-follow…
dhshah13 May 12, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
228 changes: 223 additions & 5 deletions internal/cli/postreview.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,8 @@ package cli

import (
"context"
"crypto/sha256"
"encoding/hex"
"encoding/json"
"fmt"
"os"
Expand All @@ -17,6 +19,8 @@ import (
)

const reviewMarker = "<!-- fullsend:review-agent -->"
const reviewFollowupSummaryMarker = "<!-- fullsend:review-follow-ups -->"
const reviewFollowupIssueMarkerPrefix = "<!-- fullsend:review-follow-up:"

var hexSHARe = regexp.MustCompile(`^[0-9a-fA-F]{40}$|^[0-9a-fA-F]{64}$`)
var reasonRe = regexp.MustCompile(`^[a-zA-Z0-9_-]*$`)
Expand Down Expand Up @@ -119,7 +123,11 @@ has moved, a stale-head failure is posted instead.`,
return err
}

return submitFormalReview(cmd.Context(), client, owner, repoName, pr, parsed.Action, parsed.HeadSHA, commentURL, dryRun, printer)
if err := submitFormalReview(cmd.Context(), client, owner, repoName, pr, parsed.Action, parsed.HeadSHA, commentURL, dryRun, printer); err != nil {
return err
}
Copy link
Copy Markdown
Contributor

@ralphbean ralphbean May 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[moderate] (deferred) If postApprovedFollowUpIssues fails, the entire post-review command exits non-zero even though submitFormalReview already succeeded. Since follow-up issue creation is supplementary to the review, consider logging a warning and returning nil instead of propagating the error.


return postApprovedFollowUpIssues(cmd.Context(), client, owner, repoName, pr, parsed, dryRun, printer)
},
}

Expand All @@ -137,10 +145,22 @@ has moved, a stale-head failure is posted instead.`,

// ReviewResult represents a parsed review result file.
type ReviewResult struct {
Body string `json:"body"`
Action string `json:"action"` // "approve", "request-changes", "comment", "failure"
HeadSHA string `json:"head_sha"` // commit SHA the agent reviewed
Reason string `json:"reason"` // failure reason (when action is "failure")
Body string `json:"body"`
Action string `json:"action"` // "approve", "request-changes", "comment", "failure"
HeadSHA string `json:"head_sha"` // commit SHA the agent reviewed
Reason string `json:"reason"` // failure reason (when action is "failure")
Findings []ReviewFinding `json:"findings"`
}

// ReviewFinding is the structured form emitted by the review agent.
type ReviewFinding struct {
Severity string `json:"severity"`
Category string `json:"category"`
File string `json:"file"`
Line int `json:"line,omitempty"`
Description string `json:"description"`
Remediation string `json:"remediation,omitempty"`
Actionable bool `json:"actionable,omitempty"`
}

// reviewActionToEvent maps a ReviewResult action to a GitHub PR review event.
Expand Down Expand Up @@ -284,6 +304,204 @@ func submitFormalReview(ctx context.Context, client forge.Client, owner, repo st
return nil
}

type reviewFollowupIssue struct {
finding ReviewFinding
issue *forge.Issue
created bool
Copy link
Copy Markdown
Contributor

@ralphbean ralphbean May 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[important] truncate() uses len(s) and s[:max-3] which operate on byte offsets. If a multi-byte UTF-8 character straddles the cut point, this produces invalid UTF-8 in the GitHub issue title. Should use []rune conversion:

func truncate(s string, max int) string {
	runes := []rune(s)
	if len(runes) <= max {
		return s
	}
	if max <= 3 {
		return string(runes[:max])
	}
	return strings.TrimSpace(string(runes[:max-3])) + "..."
}

}

// postApprovedFollowUpIssues creates GitHub issues for actionable low/info
// findings after an approval. Blocking and comment-only findings stay in the
// review itself; this path only preserves non-blocking work that would
// otherwise disappear after merge.
func postApprovedFollowUpIssues(ctx context.Context, client forge.Client, owner, repo string, pr int, parsed ReviewResult, dryRun bool, printer *ui.Printer) error {
if strings.ToLower(parsed.Action) != "approve" {
return nil
}

actionable := actionableApprovedFindings(parsed.Findings)
if len(actionable) == 0 {
return nil
}

if dryRun {
printer.StepInfo(fmt.Sprintf("Dry run — would create %d review follow-up issue(s)", len(actionable)))
return nil
}

markers := make(map[string]ReviewFinding, len(actionable))
for _, finding := range actionable {
markers[reviewFollowupIssueMarker(owner, repo, finding)] = finding
}

printer.StepStart("Checking for existing review follow-up issues")
openIssues, err := client.ListOpenIssues(ctx, owner, repo, "type/chore")
Copy link
Copy Markdown
Contributor

@ralphbean ralphbean May 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[important] (deferred) The duplicate detection has a potential race condition: if two post-review runs execute concurrently for different PRs with identical findings, both could list issues, find no duplicates, and both create duplicate issues.

While the warning at line 347 helps detect this after the fact, there's no prevention. This is difficult to solve without database-level locking or GitHub's atomic operations.

Suggestion: Document this known limitation in a code comment so future maintainers understand the tradeoff. For example:

// Note: Duplicate detection is subject to race conditions if concurrent
// post-review runs create issues for the same finding. The warning below
// helps detect this case, but prevention would require atomic operations
// not available through the GitHub API.

Not blocking for this PR, but worth documenting.

if err != nil {
return fmt.Errorf("listing open issues for review follow-up duplicate detection: %w", err)
}
existingByMarker := map[string]forge.Issue{}
for _, issue := range openIssues {
for marker := range markers {
if strings.Contains(issue.Body, marker) {
if existing, ok := existingByMarker[marker]; ok {
printer.StepWarn(fmt.Sprintf("Duplicate review follow-up marker found in issues #%d and #%d; reusing #%d", existing.Number, issue.Number, existing.Number))
continue
}
existingByMarker[marker] = issue
}
Copy link
Copy Markdown
Contributor

@ralphbean ralphbean May 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[moderate] (deferred) The nested loop recomputes reviewFollowupIssueMarker for each finding on every issue (O(N×M) hash computations). Precomputing markers into a map before the loop is straightforward:

markers := make(map[string]ReviewFinding, len(actionable))
for _, f := range actionable {
    markers[reviewFollowupIssueMarker(owner, repo, f)] = f
}
for _, issue := range openIssues {
    for marker := range markers {
        if strings.Contains(issue.Body, marker) {
            existingByMarker[marker] = issue
        }
    }
}

Copy link
Copy Markdown
Contributor

@ralphbean ralphbean May 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[moderate] (deferred) The collision handling silently overwrites when multiple issues contain the same marker:

existingByMarker[marker] = issue  // Overwrites if duplicate found

While marker collisions are extremely unlikely (SHA-256 hash), if data corruption occurs or issues are manually edited, this could cause a finding to be marked as "tracked" when it's actually lost. Consider logging a warning when collision is detected, or document this as expected behavior.

Not blocking for this PR, but worth considering for robustness.

Copy link
Copy Markdown
Contributor Author

@dhshah13 dhshah13 May 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good call. I went ahead and addressed this.

Duplicate markers no longer silently overwrite the prior entry during duplicate detection. The scan keeps the first matching issue deterministically, emits a warning with both issue numbers, and skips replacing the existing marker mapping.

I also added TestPostApprovedFollowUpIssues_WarnsOnDuplicateMarkers to cover the manual/corrupted duplicate-marker case and verify the PR summary continues to reuse the first tracked issue instead of drifting silently.

Validation:

  • go test ./internal/cli -run TestPostApprovedFollowUpIssues_WarnsOnDuplicateMarkers
  • go test ./internal/cli ./internal/forge/...

}
}
printer.StepDone("Duplicate check complete")

results := make([]reviewFollowupIssue, 0, len(actionable))
for _, finding := range actionable {
Copy link
Copy Markdown
Contributor

@ralphbean ralphbean May 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[moderate] (deferred) No cap on follow-up issues per review run. If a review agent emits many actionable low/info findings (e.g., 50+), this loop creates all of them as GitHub issues in a single run with no rate limiting or cap. This could be noisy for maintainers and could hit GitHub API rate limits.

Consider adding a configurable cap (e.g., max 10 per run) with a warning when hit. Not blocking for this PR.

Copy link
Copy Markdown
Contributor Author

@dhshah13 dhshah13 May 12, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good call. I added a cap, using 3 as the stricter limit rather than the example 10 so one review run cannot flood maintainers.

Details:

  • --max-follow-up-issues now defaults to 3.
  • Allowed range is 0..3; 0 disables follow-up issue creation and values above 3 are rejected.
  • Existing duplicate issues do not consume the creation cap.
  • When the cap is hit, the sticky follow-up summary includes a warning with the skipped count.
  • Added tests for the default, validation, cap behavior, and the existing-issues-do-not-consume-cap case.

Validation:

  • go test ./internal/cli -run 'Test(NewPostReviewCmd_MaxFollowUpIssuesDefault|ValidateMaxReviewFollowUpIssues|PostApprovedFollowUpIssues|ReviewActionToEvent|ParseReviewResult_Findings)'
  • bash internal/scaffold/fullsend-repo/scripts/validate-output-schema-test.sh

marker := reviewFollowupIssueMarker(owner, repo, finding)
if issue, ok := existingByMarker[marker]; ok {
issueCopy := issue
results = append(results, reviewFollowupIssue{
finding: finding,
issue: &issueCopy,
created: false,
})
continue
}

title := reviewFollowupIssueTitle(pr, finding)
body := reviewFollowupIssueBody(owner, repo, pr, finding, marker)
printer.StepStart("Creating review follow-up issue")
issue, err := client.CreateIssue(ctx, owner, repo, title, body, "type/chore")
if err != nil {
return fmt.Errorf("creating review follow-up issue for %s: %w", reviewFindingLocation(finding), err)
}
printer.StepDone(fmt.Sprintf("Created follow-up issue #%d", issue.Number))
results = append(results, reviewFollowupIssue{
finding: finding,
issue: issue,
created: true,
})
}

return postReviewFollowupSummary(ctx, client, owner, repo, pr, results, printer)
}

func actionableApprovedFindings(findings []ReviewFinding) []ReviewFinding {
actionable := make([]ReviewFinding, 0, len(findings))
for _, finding := range findings {
severity := strings.ToLower(finding.Severity)
if finding.Actionable && (severity == "low" || severity == "info") {
actionable = append(actionable, finding)
}
}
return actionable
}

func postReviewFollowupSummary(ctx context.Context, client forge.Client, owner, repo string, pr int, results []reviewFollowupIssue, printer *ui.Printer) error {
if len(results) == 0 {
return nil
}

var created []reviewFollowupIssue
var existing []reviewFollowupIssue
for _, result := range results {
if result.created {
created = append(created, result)
} else {
existing = append(existing, result)
}
}

var b strings.Builder
b.WriteString("## Review follow-ups\n\n")
if len(created) > 0 {
b.WriteString("Created follow-up issues for actionable non-blocking review findings:\n\n")
for _, result := range created {
fmt.Fprintf(&b, "- [#%d](%s) — %s\n", result.issue.Number, result.issue.URL, reviewFindingSummary(result.finding))
}
}
if len(existing) > 0 {
if len(created) > 0 {
b.WriteString("\n")
}
b.WriteString("Existing follow-up issues already track these findings:\n\n")
for _, result := range existing {
fmt.Fprintf(&b, "- [#%d](%s) — %s\n", result.issue.Number, result.issue.URL, reviewFindingSummary(result.finding))
}
}

cfg := sticky.Config{Marker: reviewFollowupSummaryMarker}
if _, err := sticky.Post(ctx, client, owner, repo, pr, b.String(), cfg, printer); err != nil {
return fmt.Errorf("posting review follow-up summary: %w", err)
}
return nil
}

func reviewFollowupIssueTitle(pr int, finding ReviewFinding) string {
summary := reviewFindingSummary(finding)
if summary == "" {
summary = "actionable review finding"
}
return fmt.Sprintf("Follow-up from PR #%d: %s", pr, truncate(summary, 88))
}

func reviewFollowupIssueBody(owner, repo string, pr int, finding ReviewFinding, marker string) string {
Copy link
Copy Markdown
Contributor

@ralphbean ralphbean May 13, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[moderate, deferred] finding.Description and finding.Remediation are rendered as raw markdown in the issue body. A compromised agent could inject misleading links or formatting. Consider sanitizing or escaping markdown-active characters in agent-sourced content before writing to GitHub issues. Low risk today since the source is a controlled agent, but worth hardening given the project's threat model prioritizes external injection.

var b strings.Builder
b.WriteString(marker)
b.WriteString("\n\n")
b.WriteString("## Review follow-up\n\n")
fmt.Fprintf(&b, "- PR: https://github.com/%s/%s/pull/%d\n", owner, repo, pr)
fmt.Fprintf(&b, "- Severity: `%s`\n", finding.Severity)
fmt.Fprintf(&b, "- Category: `%s`\n", finding.Category)
fmt.Fprintf(&b, "- Location: `%s`\n", reviewFindingLocation(finding))
b.WriteString("\n## Finding\n\n")
b.WriteString(strings.TrimSpace(finding.Description))
if finding.Remediation != "" {
b.WriteString("\n\n## Suggested remediation\n\n")
b.WriteString(strings.TrimSpace(finding.Remediation))
}
b.WriteString("\n\n---\n")
b.WriteString("_Generated by the fullsend review agent from an approved PR. The PR was approved because this finding was non-blocking, but it was marked actionable so it is tracked separately._\n")
return b.String()
}

func reviewFollowupIssueMarker(owner, repo string, finding ReviewFinding) string {
Copy link
Copy Markdown
Contributor

@ralphbean ralphbean May 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[important] (deferred) The marker hash is computed without validating that required fields are non-empty. If finding.File, finding.Category, or other fields are empty strings, the hash still computes but may lead to unexpected collisions or confusing markers.

Consider adding defensive validation in postApprovedFollowUpIssues before calling this function, or add a comment documenting the assumption that findings are pre-validated by the JSON schema.

Not blocking for this PR since the schema should enforce required fields, but defensive programming would make this more robust.

hash := sha256.New()
fmt.Fprintf(hash, "%s/%s\n%s\n%s\n%s\n%d\n%s\n", owner, repo, strings.ToLower(finding.Severity), finding.Category, finding.File, finding.Line, compactWhitespace(finding.Description))
return reviewFollowupIssueMarkerPrefix + hex.EncodeToString(hash.Sum(nil)) + " -->"
}

func reviewFindingLocation(finding ReviewFinding) string {
if finding.Line > 0 {
return fmt.Sprintf("%s:%d", finding.File, finding.Line)
}
return finding.File
}

func reviewFindingSummary(finding ReviewFinding) string {
summary := compactWhitespace(finding.Description)
if summary != "" {
return summary
}
return compactWhitespace(finding.Category)
}

func compactWhitespace(s string) string {
return strings.Join(strings.Fields(s), " ")
}

func truncate(s string, max int) string {
runes := []rune(s)
if len(runes) <= max {
return s
}
if max <= 0 {
return ""
}
if max <= 3 {
return string(runes[:max])
}
return strings.TrimSpace(string(runes[:max-3])) + "..."
}

// dismissStaleRequestChanges dismisses the most recent CHANGES_REQUESTED
// review by the authenticated user when the new verdict is softer.
func dismissStaleRequestChanges(ctx context.Context, client forge.Client, owner, repo string, pr int, newEvent, user string, reviews []forge.PullRequestReview, printer *ui.Printer) {
Expand Down
Loading
Loading