fix(testing): Breaking changes should not break ci

[evrardjp]

Without this, a ! in commit title will break labeler.

This is a problem, as it means manually labeling issues.

This fixes it by correcting the github action.

Problem Statement

What is the problem you're trying to solve?

Related Issue

Fixes #...

Proposed Changes

How do you like to solve the issue and why?

Format

Please ensure that your PR follows the following format for the title:

feat(scope): add new feature
fix(scope): fix bug
docs(scope): update documentation
chore(scope): update build tool or dependencies
ref(scope): refactor code
clean(scope): provider cleanup
test(scope): add tests
perf(scope): improve performance
desig(scope): improve design

Where scope is optionally one of:

• charts
• release
• testing
• security
• templating

Checklist

• I have read the contribution guidelines
• All commits are signed with git commit --signoff
• My changes have reasonable test coverage
• All tests pass with make test
• I ensured my PR is ready for review with make reviewable

Summary by CodeRabbit

• Chores
  • PR workflow now automatically applies a "breaking-change" label for identified breaking changes, improving reviewer visibility and release planning.
  • Logging around breaking-change detection remains to aid troubleshooting of PR labeling behavior.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

Walkthrough

Replaces use of the BREAKING_CHANGE_LABEL environment variable with the literal string "breaking-change" when applying the breaking-change label in the PR-labeling GitHub Actions workflow; existing debug/log messages and conditional trigger for breaking-change titles remain unchanged.

Changes

Cohort / File(s)	Summary
GitHub Actions workflow \.github/workflows/pull-request-label\.yml	Replaced pushing the BREAKING_CHANGE_LABEL environment variable with pushing the literal string "breaking-change" when applying the breaking-change label; existing debug/log messages and conditional logic for detecting breaking-change titles left intact.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

• Single-line/single-file change in a workflow.
• Review points:
  • Ensure the label string is correctly quoted and passed in the action step.
  • Confirm debug logs and conditionals still reference the intended variables or messages.

Poem

🐇 I nibbled YAML, found a name,
No more env — a literal claim,
"breaking-change" now hops in view,
I logged a cheer and bounced on through,
✨ Tiny tweak — the label's true.

Pre-merge checks and finishing touches

❌ Failed checks (1 inconclusive)

Check name	Status	Explanation	Resolution
Description check	❓ Inconclusive	The PR description includes the required template sections, but Problem Statement, Related Issue, and Proposed Changes are largely unfilled, leaving key details undocumented.	Complete the Problem Statement, Related Issue, and Proposed Changes sections with specific details about the issue and solution instead of leaving them blank.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Title check	✅ Passed	The title 'fix(testing): Breaking changes should not break ci' directly addresses the main change—fixing the GitHub Actions labeler so that exclamation marks in commit titles don't break CI. This aligns with the file changes in the workflow and the PR objective.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 0

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

.github/workflows/pull-request-label.yml (1)

148-157: Add "breaking-change" to the qualifying labels list.

The comment on line 25 explicitly states that extensions should be included in the verify-labels step. However, the "breaking-change" label is not present in the any_of list on line 156. This will cause the verify-labels job to fail for PRs that only have a breaking-change label (and potentially scope labels), even though they were correctly labeled by the conventional-commit-labeler job.

Apply this diff to include the breaking-change label:

-          any_of: kind/chore,kind/bug,kind/feature,kind/dependency,kind/refactor,kind/design,kind/documentation,kind/testing,kind/performance,kind/cleanup
+          any_of: kind/chore,kind/bug,kind/feature,kind/dependency,kind/refactor,kind/design,kind/documentation,kind/testing,kind/performance,kind/cleanup,breaking-change

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between c3bd596 and c72c1ff.

📒 Files selected for processing (1)

• .github/workflows/pull-request-label.yml (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (8)

• GitHub Check: publish-artifacts (Dockerfile, CGO_ENABLED=0, amd64 arm64 s390x ppc64le, linux/amd64,linux/arm64,... / Build and Publish
• GitHub Check: publish-artifacts (Dockerfile.ubi, CGO_ENABLED=0, amd64 arm64 ppc64le, linux/amd64,linux/arm64,li... / Build and Publish
• GitHub Check: publish-artifacts (Dockerfile.ubi, CGO_ENABLED=0 GOEXPERIMENT=boringcrypto, amd64 ppc64le, linux/... / Build and Publish
• GitHub Check: lint
• GitHub Check: unit-tests
• GitHub Check: check-diff
• GitHub Check: Analyze project (actions, none)
• GitHub Check: Analyze project (go, autobuild)

🔇 Additional comments (1)

.github/workflows/pull-request-label.yml (1)

38-38: LGTM! This fixes the missing environment variable.

The addition correctly provides the BREAKING_CHANGE_LABEL value that was already being referenced on line 79, fixing the bug where breaking changes weren't being labeled properly.

[coderabbitai]

Actionable comments posted: 2

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between c72c1ff and 74f91a1.

📒 Files selected for processing (1)

• .github/workflows/pull-request-label.yml (2 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (8)

• GitHub Check: publish-artifacts (Dockerfile.ubi, CGO_ENABLED=0 GOEXPERIMENT=boringcrypto, amd64 ppc64le, linux/... / Build and Publish
• GitHub Check: publish-artifacts (Dockerfile, CGO_ENABLED=0, amd64 arm64 s390x ppc64le, linux/amd64,linux/arm64,... / Build and Publish
• GitHub Check: publish-artifacts (Dockerfile.ubi, CGO_ENABLED=0, amd64 arm64 ppc64le, linux/amd64,linux/arm64,li... / Build and Publish
• GitHub Check: lint
• GitHub Check: check-diff
• GitHub Check: unit-tests
• GitHub Check: Analyze project (go, autobuild)
• GitHub Check: Analyze project (actions, none)

🔇 Additional comments (1)

.github/workflows/pull-request-label.yml (1)

77-81: Clarify the bug fix described in the PR.

The PR description states this "fixes an issue where a '!' in a commit title breaks the GitHub Actions labeler," but the regex at line 64 already correctly handles the "!" character with (?<breaking>!?). This change appears to be refactoring the hardcoded label name to use an environment variable rather than fixing a parsing bug.

Can you clarify:

1. What specifically was breaking before this change?
2. Was the issue that the "breaking-change" label didn't exist in the repository?
3. Or was there a typo in the previously hardcoded label name?

Understanding the root cause will help ensure this change fully addresses the issue.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

🧩 Analysis chain

🏁 Script executed:

# First, locate the file and read it
fd "pull-request-label.yml" -t f

# Show its contents with line numbers
cat -n .github/workflows/pull-request-label.yml

Repository: external-secrets/external-secrets

Length of output: 7401

---

Remove debug console.log statement at line 79.

Externalizing the breaking-change label name as an environment variable is good practice and maintains consistency with the TYPE_TO_LABEL pattern above. However, line 79 contains a temporary debug statement with a // debug jp comment that must be removed before merging.

🤖 Prompt for AI Agents

.github/workflows/pull-request-label.yml around line 38 and specifically remove
the temporary debug statement at line 79; there is a console.log with a "//
debug jp" comment that should be deleted. Edit the workflow to remove that
console.log line and the trailing comment, leaving only the intended environment
variable and workflow logic intact, and ensure no other leftover debug prints
remain before committing.

[coderabbitai]

🛠️ Refactor suggestion | 🟠 Major

Remove temporary debug statement.

The debug log on line 79 with the comment // debug jp appears to be temporary debugging code that should be removed before merging.

Apply this diff to remove the debug statement:

       if (breaking) {
         console.log("Adding breaking change label");
-        console.log(process.env.BREAKING_CHANGE_LABEL); // debug jp
         labels.push(process.env.BREAKING_CHANGE_LABEL);
       }

Alternatively, if logging the label value is needed for troubleshooting, make it more descriptive:

       if (breaking) {
-        console.log("Adding breaking change label");
-        console.log(process.env.BREAKING_CHANGE_LABEL); // debug jp
+        console.log(`Adding breaking change label: ${process.env.BREAKING_CHANGE_LABEL}`);
         labels.push(process.env.BREAKING_CHANGE_LABEL);
       }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	if (breaking) {
	console.log("Adding breaking change label");
	console.log(process.env.BREAKING_CHANGE_LABEL); // debug jp
	labels.push(process.env.BREAKING_CHANGE_LABEL);
	}
	if (breaking) {
	console.log("Adding breaking change label");
	labels.push(process.env.BREAKING_CHANGE_LABEL);
	}

🤖 Prompt for AI Agents

.github/workflows/pull-request-label.yml lines 77-81: remove the temporary debug
console.log on line 79 that prints process.env.BREAKING_CHANGE_LABEL (the one
with "// debug jp"); simply delete that debug statement so only the purposeful
log and label push remain, or if you need to retain logging for troubleshooting
replace it with a single descriptive log like `console.log("Breaking change
label:", process.env.BREAKING_CHANGE_LABEL)` and remove the inline comment.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud