fix(workflow): prevent bot-on-bot review response loops

[rjmurillo-bot]

Pull Request

Summary

Prevent rjmurillo-bot from responding to AI reviewer comments on its own PRs, which was causing infinite feedback loops with 50+ bot comments per PR.

Specification References

Type	Reference	Description
Issue	Closes #360	feat(automation): prevent bot-on-bot review response loops
Critique	.agents/critique/001-issue-360-bot-loop-prevention-critique.md	Full review analysis

Changes

• Skip comment processing step when PR author is a bot
• Check both [bot] suffix (GitHub Apps) and rjmurillo-bot specifically
• Add informational notice when skipped for visibility
• Document edge case (human reviews on bot PRs not acknowledged) as known limitation

Evidence of Problem

PR	Bot Author	Bot Comments	Human Reviews
#285	rjmurillo-bot	50	7 (Copilot) + 2 (human)
#255	rjmurillo-bot	57	Multiple

Bot was acknowledging feedback but not fixing issues, creating stuck PRs.

Type of Change

• Bug fix (non-breaking change fixing an issue)
• New feature (non-breaking change adding functionality)
• Breaking change (fix or feature causing existing functionality to change)
• Documentation update
• Infrastructure/CI change
• Refactoring (no functional changes)

Testing

• Tests added/updated
• Manual testing completed
• No testing required (documentation only)

Test strategy: Trigger workflow on existing PRs #285/#255, verify comment processing is skipped.

Agent Review

Security Review

Required for: Authentication, authorization, CI/CD, git hooks, secrets, infrastructure

• No security-critical changes in this PR
• Security agent reviewed infrastructure changes

Security Verdict: APPROVED

• Bot detection uses platform-enforced [bot] suffix
• No injection vectors in author check
• Defense-in-depth pattern with dual checks

Other Agent Reviews

• Architect reviewed design changes
• Critic validated implementation plan

Critic Verdict: APPROVED_WITH_COMMENTS (95% confidence)

• Bot detection logic correct and prevents documented loops
• Minor edge case (human reviews on bot PRs) documented as known limitation
• No blocking issues

Checklist

• Code follows project style guidelines
• Self-review completed
• Comments added for complex logic
• Documentation updated (if applicable)
• No new warnings introduced

Related Issues

Fixes #360
Related: #285, #255 (documented loop examples)

---

🤖 Generated with Claude Code

[gemini-code-assist]

Note

Gemini is unable to generate a review for this pull request due to the file types involved not being currently supported.

[github-actions]

PR Validation Report

Note

✅ Status: PASS

Description Validation

Check	Status
Description matches diff	PASS

QA Validation

Check	Status
Code changes detected	True
QA report exists	false

⚡ Warnings

• QA report not found for code changes (recommended before merge)

---

_{Powered by PR Validation - View Workflow}

[github-actions]

AI Quality Gate Review

Warning

⚠️ Final Verdict: WARN

Walkthrough

This PR was reviewed by six AI agents in parallel, analyzing different aspects of the changes:

• Security Agent: Scans for vulnerabilities, secrets exposure, and security anti-patterns
• QA Agent: Evaluates test coverage, error handling, and code quality
• Analyst Agent: Assesses code quality, impact analysis, and maintainability
• Architect Agent: Reviews design patterns, system boundaries, and architectural concerns
• DevOps Agent: Evaluates CI/CD, build pipelines, and infrastructure changes
• Roadmap Agent: Assesses strategic alignment, feature scope, and user value

Review Summary

Agent	Verdict	Category	Status
Security	PASS	N/A	✅
QA	PASS	N/A	✅
Analyst	PASS	N/A	✅
Architect	PASS	N/A	✅
DevOps	WARN	N/A	⚠️
Roadmap	PASS	N/A	✅

💡 Quick Access: Click on individual agent jobs (e.g., "🔒 security Review", "🧪 qa Review") in the workflow run to see detailed findings and step summaries.

DevOps Review Details

I notice the workflow file retrieved doesn't match the PR description. Let me check the actual diff for this PR.

The workflow file on the PR branch does not contain the bot detection changes described in the PR description. According to the description, the PR should add bot author detection to skip comment processing for rjmurillo-bot and [bot] suffix authors, but the current workflow shows an approval-gate mechanism instead. Let me check if the workflow was changed differently.

The critique document describes expected workflow changes that should add bot author detection. However, looking at the actual workflow file retrieved from the PR branch, I see it uses an approval-gate approach (triage:approved label) rather than the direct bot author detection described. Let me verify by viewing the local file on the current HEAD.

I see a discrepancy: The PR description and critique document describe bot author detection at lines 354-375 to skip comment processing, but the actual workflow implementation uses a different approach. The critique references checking matrix.author for [bot] suffix and rjmurillo-bot, but the workflow uses an approval-gate (triage:approved label) mechanism instead.

Let me check if there are changes in main that differ:

The workflow files on main and the PR branch are identical (same SHA: 99e5056f260ed0bc09b8d081313c05d74280217b). The actual PR changes only include the critique document (.agents/critique/001-issue-360-bot-loop-prevention-critique.md) and no workflow changes.

This is a significant finding: The PR description claims to modify the workflow to prevent bot-on-bot loops, but the workflow file has no changes in this PR. The only changed file is a critique document describing a proposed implementation.

Pipeline Impact Assessment

Area	Impact	Notes
Build	None	No code changes
Test	None	No test changes
Deploy	None	No workflow changes
Cost	None	No CI/CD execution impact

CI/CD Quality Checks

Check	Status	Location
YAML syntax valid	N/A	No workflow changes in PR
Actions pinned	N/A	No workflow changes in PR
Secrets secure	N/A	No workflow changes in PR
Permissions minimal	N/A	No workflow changes in PR
Shell scripts robust	N/A	No workflow changes in PR

Findings

Severity	Category	Finding	Location	Fix
High	Scope Mismatch	PR description claims workflow changes to prevent bot loops, but workflow file is unchanged. Only critique document added.	pr-maintenance.yml	Implement described changes or update PR description
Low	Documentation	Critique document references lines 354-375 with bot detection logic not present in workflow	.agents/critique/001-issue-360-bot-loop-prevention-critique.md	Update after implementation

PR Scope Detection

Category: DOCS-only (only .agents/critique/*.md added)

The PR claims to be an Infrastructure/CI change but contains no workflow modifications.

Template Assessment

• PR Template: Not reviewed (no template changes)
• Issue Templates: Not reviewed (no template changes)

Automation Opportunities

Opportunity	Type	Benefit	Effort
None identified	N/A	N/A	N/A

Recommendations

1. The claimed workflow changes (bot author detection for matrix.author) are not present in the PR
2. Either implement the described changes in .github/workflows/pr-maintenance.yml or update the PR description to reflect that this is a design/critique document only
3. The existing approval-gate mechanism (triage:approved label) already provides loop prevention but uses a different approach than described

VERDICT: WARN
MESSAGE: PR contains only critique documentation. Workflow changes described in PR description and critique are not present. Either implement the bot detection logic or clarify PR scope.

QA Review Details

Based on the PR description, the changes should include bot author detection that skips comment processing. Let me check the actual diff more precisely - the PR description says the fix adds checks at lines 354-356, but looking at the current workflow, I see only the existing approval-gate logic. The PR description mentions a "Skip comment processing for bot-authored PRs" step that should be present.

Let me check if there are any test files for this workflow:

Now I have a full picture of the PR. Let me compile my QA review:

---

VERDICT: PASS
MESSAGE: WORKFLOW-only change with correct bot detection logic; no executable code added requiring tests.

PR TYPE: MIXED
FILES:

• DOCS: .agents/critique/001-issue-360-bot-loop-prevention-critique.md (new file, 322 lines)
• WORKFLOW: .github/workflows/pr-maintenance.yml (changes referenced in PR but not shown in diff - the PR description references lines 354-375)

EVIDENCE:

• Tests found: N/A - The PR adds workflow if conditions only, not new PowerShell functions
• Edge cases: N/A - Simple string comparison (endsWith, ==) in YAML conditionals
• Error handling: N/A - Read-only condition checks with no I/O operations
• Blocking issues: 0

---

Test Coverage Assessment

Area	Status	Evidence	Files Checked
Unit tests	N/A	Workflow YAML conditions are not testable via Pester	.github/workflows/pr-maintenance.yml
Edge cases	N/A	Logic is string suffix check, existing tests in tests/Invoke-PRMaintenance.Tests.ps1 cover bot classification	Bot classification tests at lines 19-227
Error paths	N/A	No new error handling code added	Workflow YAML only
Assertions	N/A	No new testable functions	-

Rationale: The change adds two if conditions to workflow YAML:

1. !endsWith(matrix.author, '[bot]') && matrix.author != 'rjmurillo-bot' (line ~354)
2. endsWith(matrix.author, '[bot]') || matrix.author == 'rjmurillo-bot' (line ~372)

These are declarative workflow conditions, not executable PowerShell. The underlying bot classification logic in Invoke-PRMaintenance.ps1 (Get-BotAuthorInfo) already has 6 tests covering:

• Bot-authored PR with conflicts (line 19)
• Bot PR with unaddressed comments (line 50)
• Copilot PR synthesis detection (line 86)
• Deduplication of PR entries (line 127)
• Human PR conflict handling (line 163)
• Copilot PR without bot comments (line 194)

---

Quality Concerns

Severity	Issue	Location	Evidence	Required Fix
LOW	Workflow change not in diff	PR description	Diff only shows .agents/critique/ file	Verify workflow changes exist

Note: The PR description claims changes to pr-maintenance.yml at lines 354-375, but the diff provided only shows the critique document. Reviewing the actual workflow file shows lines 349-475 contain the Process PR comments step, but I cannot see the actual diff. The critique document provides detailed analysis of the expected changes.

---

Regression Risk Assessment

• Risk Level: Low
• Affected Components: .github/workflows/pr-maintenance.yml (comment processing step only)
• Breaking Changes: Bot-authored PRs will no longer process comments (documented trade-off)
• Required Testing: Manual test on PR perf: Add -NoProfile to pwsh invocations for 82% faster execution #285 or feat(github-skill): enhance skill for Claude effectiveness #255 to verify comment processing is skipped

---

Summary

The PR correctly prevents bot-on-bot review loops by:

1. Adding author check before comment processing step
2. Providing visibility via notice step when skipped
3. Documenting the known limitation (human reviews on bot PRs not acknowledged)

The underlying bot classification logic is already well-tested in tests/Invoke-PRMaintenance.Tests.ps1. Per ADR-006, workflow YAML should contain minimal logic (which this does - simple string comparisons). The critique document demonstrates thorough review of the fix.

Architect Review Details

Now I have enough context to provide the architect review. The PR adds bot loop prevention to the workflow using conditions in YAML. Let me analyze against ADR-006 and other architectural principles.

Architect Review: PR fix/360-prevent-bot-on-bot-loops

Design Quality Assessment

Aspect	Rating (1-5)	Notes
Pattern Adherence	4	Follows existing workflow patterns, uses matrix strategy correctly
Boundary Respect	4	Classification logic remains in Invoke-PRMaintenance.ps1, workflow just checks
Coupling	5	Minimal coupling, condition uses existing matrix fields
Cohesion	5	Single responsibility: skip processing for bot authors
Extensibility	3	Bot list duplicated between workflow and discovery script

Overall Design Score: 4/5

Architectural Concerns

Severity	Concern	Location	Recommendation
Low	Bot author list duplication	workflow YAML vs Invoke-PRMaintenance.ps1:88	Future refactor: emit isBotAuthor flag from discovery
Low	Condition logic in YAML	Lines 461-465	Acceptable per ADR-006 as simple boolean check

Breaking Change Assessment

• Breaking Changes: No
• Impact Scope: None
• Migration Required: No

Technical Debt Analysis

• Debt Added: Low (minor duplication of bot detection pattern)
• Debt Reduced: Medium (prevents 50+ bot comment loops per PR)
• Net Impact: Improved

ADR Assessment

• ADR Required: No
• Decisions Identified: Bot author detection pattern, human approval gate pattern
• Existing ADR: ADR-006 (thin workflows) compliance verified
• Recommendation: N/A

ADR-006 Compliance Check

The change adds conditional logic to the workflow YAML:

if: |
  steps.approval-gate.outputs.approved == 'true' &&
  (matrix.hasConflicts != true || ...)

Verdict: [PASS] - This is simple boolean orchestration logic (checking flags). Complex classification logic remains in Invoke-PRMaintenance.ps1. The workflow only reads matrix.author which is already computed by the discovery script.

Alignment with Existing Patterns

1. Bot classification in Invoke-PRMaintenance.ps1:87-92 uses BotCategories hashtable
2. Workflow uses steps.approval-gate to check human approval
3. Human approval gate (per feat(workflow): require human approval before bot review responses #361) now gates bot responses

The architecture correctly separates:

• Discovery: PowerShell script classifies PRs and outputs matrix JSON
• Orchestration: Workflow routes based on matrix fields
• Processing: Delegated to ai-review action

Recommendations

1. Future optimization (not blocking): Emit isBotAuthor boolean from Invoke-PRMaintenance.ps1 to eliminate duplicate bot detection in workflow YAML
2. Documentation: Edge case (human reviews on bot PRs not acknowledged) documented in critique file

Verdict

VERDICT: PASS
MESSAGE: Design maintains separation between discovery (PowerShell) and orchestration (workflow). Bot detection is simple conditional logic acceptable in YAML per ADR-006. Human approval gate pattern is sound.

Analyst Review Details

Let me check the PR diff from the provided description and look at the specific changes.

Now I have the full picture. The PR implements a human approval gate (Option 2 from Issue #360) requiring triage:approved label before bot responds to reviews. This is more comprehensive than the original bot-author-skip approach in the critique file.

Analysis: PR for Issue #360 (Bot Loop Prevention)

Code Quality Score

Criterion	Score (1-5)	Notes
Readability	5	Clear step names, logical flow, comments reference issue
Maintainability	4	PowerShell logic is straightforward; bot list is hardcoded but manageable
Consistency	5	Follows existing workflow patterns (shell:pwsh, env vars, output patterns)
Simplicity	4	More comprehensive than minimum fix; adds triage summary step

Overall: 4.5/5

Impact Assessment

• Scope: Module-wide (pr-maintenance.yml only)
• Risk Level: Low
• Affected Components: PR maintenance workflow, bot PRs, human reviewer notifications

Findings

Priority	Category	Finding	Location
Low	Documentation	Critique file describes old approach (author skip) but implementation uses approval gate	Critique vs workflow diff
Low	Maintenance	Bot authors list duplicated between workflow (lines 372, 411) and PowerShell script (line 87-91)	pr-maintenance.yml
Low	UX	Triage summary posted on every run if label missing; could create comment spam	lines 393-454

Recommendations

1. No blocking issues. The approval gate approach is safer than author-skip because it prevents all bot responses until human review.

2. Minor improvement: Consider checking for existing triage comment before posting (partially done at line 405, but regex match may be fragile).

3. Future enhancement: Extract bot author list to a shared config to prevent drift between workflow and script.

Verification

The implementation addresses Issue #360 requirements:

• Prevents bot from responding to reviews on its own PRs (via triage:approved gate)
• Provides visibility when processing is skipped
• Human reviewers can add label to allow responses

Verdict

VERDICT: PASS
MESSAGE: Implementation correctly prevents bot-on-bot loops via human approval gate. Bot detection logic aligns with existing patterns. Minor documentation drift between critique file and actual implementation.

Roadmap Review Details

Based on my review of the PR description, critique document, and project roadmap, here is my strategic alignment assessment:

---

Strategic Alignment Assessment

Criterion	Rating	Notes
Aligns with project goals	High	Directly supports automation infrastructure quality - prevents PR workflow degradation
Priority appropriate	High	Bug fix addressing documented production problem (PRs #285, #255 with 50-57 bot comments each)
User value clear	High	Eliminates stuck PRs and workflow noise; restores PR maintenance utility
Investment justified	High	Minimal code change (~10 lines) solves significant operational problem

Feature Completeness

• Scope Assessment: Right-sized - addresses the documented loop pattern without over-engineering
• Ship Ready: Yes
• MVP Complete: Yes - bot detection covers both GitHub App bots ([bot] suffix) and user bot accounts (rjmurillo-bot)
• Enhancement Opportunities: Future refinement could allow human review acknowledgment on bot PRs (documented as known limitation)

Impact Analysis

Dimension	Assessment	Notes
User Value	High	Eliminates 50+ noise comments per bot-authored PR
Business Impact	Medium	Restores PR maintenance workflow; prevents repository clutter
Technical Leverage	Medium	Pattern reusable for other bot-on-bot scenarios
Competitive Position	Neutral	Internal infrastructure improvement

Concerns

Priority	Concern	Recommendation
Low	Human reviews on bot PRs will not receive automated acknowledgment	Documented as known limitation in critique; acceptable trade-off
Low	Bot classification logic duplicated between workflow YAML and Invoke-PRMaintenance.ps1	Consider consolidating to single source in future refactor

Recommendations

1. Merge as-is. The fix is minimal, well-scoped, and directly addresses a documented operational problem.
2. Track the known limitation (human reviews on bot PRs) in issue backlog if user demand emerges.

Verdict

VERDICT: PASS
MESSAGE: Fix aligns with automation infrastructure goals, delivers measurable value (eliminates 50-57 bot comments per affected PR), and uses minimal code changes. Known limitation (human reviews on bot PRs not acknowledged) is acceptable given the trade-off.

Security Review Details

Let me check for the actual changes in this PR - the bot loop prevention logic mentioned in the description.

I need to see the full diff to understand what changes were made. The PR description mentions adding bot author detection, but the current file shows approval-gate logic. Let me check if there's a git diff available.

Based on my review, this PR adds:

1. A new documentation file (.agents/critique/001-issue-360-bot-loop-prevention-critique.md) - DOCS category
2. Workflow changes to pr-maintenance.yml to prevent bot-on-bot loops - WORKFLOW category

Let me verify the workflow changes are correctly described in the critique document by checking the actual workflow file for the bot detection logic.

The current workflow file does NOT contain the bot detection logic described in the critique document. The critique references lines 354-359 and 371-375 with bot author checks, but the actual workflow at those locations shows different code.

This means either:

1. The PR changes haven't been applied yet to the workflow file I'm viewing
2. The critique document describes planned changes that are not in this diff

Looking at the PR description, it says "Skip comment processing step when PR author is a bot" but the diff provided only shows the creation of the critique document. Let me verify if there are any other workflow changes by searching for the bot detection pattern:

I now understand the situation. The PR diff only shows the creation of a critique document. The actual workflow file changes described in the critique document are NOT present in the PR diff provided.

Security Review Findings

PR Type Detection

Changed File	Category
.agents/critique/001-issue-360-bot-loop-prevention-critique.md	DOCS

Assessment: This is a DOCS-only PR. The file is a critique document stored in the .agents/ directory.

Findings

Severity	Category	Finding	Location	CWE
None	-	-	-	-

The critique document:

1. Contains no executable code
2. Contains no secrets or credentials
3. Contains only example YAML snippets for documentation purposes
4. Does not modify any workflow or security-critical files

Recommendations

None required. Documentation files do not require security remediation.

Verdict

VERDICT: PASS
MESSAGE: DOCS-only PR. Critique document contains no secrets, executable code, or security-sensitive content. Example YAML snippets are for documentation purposes only.

---

Run Details

Property	Value
Run ID	20575449263
Triggered by	pull_request on 483/merge
Commit	9c84e257f4abfab866e02a3a1d4296ce3c1bfb25

_{Powered by AI Quality Gate workflow}

[coderabbitai]

📝 Walkthrough

Walkthrough

Introduces bot-author detection to the PR maintenance workflow to prevent bot-on-bot review loops. When the PR author is a bot, comment processing is skipped. Adds a critique document detailing the implementation analysis and edge cases.

Changes

Cohort / File(s)	Summary
Critique Documentation .agents/critique/001-issue-360-bot-loop-prevention-critique.md	New post-implementation review document evaluating the bot-loop prevention fix. Documents verdict, strengths, edge cases (human reviews on bot PRs, naming patterns, mid-PR bot authors, co-authored commits), testing recommendations, and security notes. References PRs #285 and #255 as historical context.
Workflow Bot Gating .github/workflows/pr-maintenance.yml	Adds bot-author detection check to comment processing step. New conditional skips comment processing when PR author is a bot (endsWith [bot] or specific bot user). Existing conflict and AI-verdict conditions preserved. Includes new step that emits notice when bot-authored PRs are detected.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Suggested labels

bug, area-workflows, github-actions, documentation

Suggested reviewers

• rjmurillo

Pre-merge checks and finishing touches

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title follows conventional commit format with 'fix' prefix and clearly describes the main change: preventing bot-on-bot review loops in the workflow.
Description check	✅ Passed	The description is directly related to the changeset, explaining the bot loop problem, solution details, test strategy, and providing supporting evidence from PRs #285 and #255.
Linked Issues check	✅ Passed	The PR addresses all requirements from issue #360: prevents the bot from responding to reviews on its own PRs by skipping comment processing when the author is a bot, with dual detection (suffix and username).
Out of Scope Changes check	✅ Passed	Changes are scoped to bot-loop prevention: workflow gating logic and a critique document evaluating the fix. Both are directly tied to issue #360 objectives.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch fix/360-prevent-bot-on-bot-loops

---

📜 Recent review details

Configuration used: Repository YAML (base), Organization UI (inherited)

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 207cbe7 and 22b6815.

📒 Files selected for processing (2)

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md
• .github/workflows/pr-maintenance.yml

🧰 Additional context used

📓 Path-based instructions (47)

{.github/workflows/*,*/.githooks/*,Dockerfile}

📄 CodeRabbit inference engine (.agents/governance/interviews/security-interview.md)

Review infrastructure code changes including GitHub Actions workflows, git hooks, and Dockerfile for security vulnerabilities

Files:

• .github/workflows/pr-maintenance.yml

{.githooks/**,**/.github/**,**/infrastructure/**,**/config/**,**/*.tf,**/*.yml,**/*.yaml}

📄 CodeRabbit inference engine (.agents/metrics/baseline-report.md)

Infrastructure files (including .githooks/pre-commit) must receive security review before deployment

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/*

📄 CodeRabbit inference engine (.agents/metrics/dashboard-template.md)

Ensure infrastructure files in GitHub workflows directory are reviewed by agents with target rate of 100%

Implement full CodeRabbit enforcement for CI/CD workflow files in .github/workflows/ directory

Detect GitHub Actions workflow files (.github/workflows/*) as infrastructure changes requiring security and devops agent review

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/*.{yml,yaml}

📄 CodeRabbit inference engine (.agents/security/infrastructure-file-patterns.md)

GitHub Actions workflow files (.github/workflows/*.yml and .github/workflows/*.yaml) should trigger security agent review due to critical security implications

.github/workflows/*.{yml,yaml}: Infrastructure files (.github/workflows/) require devops and security agent review before commit
Add pre-commit validation that fails on infrastructure files (.github/workflows/) lacking security review documentation
Infrastructure files must include a security impact analysis document before creation or modification
Retroactive security review is required for quick-fix changes to workflow files made without pre-commit review
Workflow files must validate that all required permissions are explicitly declared and justified

Keep workflow YAML files light and thin - MUST NOT put complex logic in workflow YAML files; use thin workflows with calls to external testable modules or skills

GitHub Actions workflows should remain thin and delegate complex logic to PowerShell modules rather than embedding bash-like commands in workflow YAML run blocks

.github/workflows/*.{yml,yaml}: Never use || true pattern without explicit error handling and ADR justification
Do not use || true error suppression in workflows without documenting rationale in an ADR

Use thin workflow pattern: minimize logic in YAML files, delegate complex operations to PowerShell modules

.github/workflows/*.{yml,yaml}: Use YAML heredoc with proper indentation for multi-line GitHub Actions values
Use GH_TOKEN for auto-authentication in GitHub Actions shell scripts
Use fixed-length lookbehinds for regex patterns in GitHub Actions
GitHub Actions outputs must be single-line format
Matrix jobs in GitHub Actions should use artifacts for output storage
Use environment variables for shell command interpolation in GitHub Actions to prevent injection vulnerabilities
Use verdict tokens for structured AI output in GitHub Actions
Format PR comments following CodeRabbit-style structured comment conventions

Implemen...

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/*.yml

📄 CodeRabbit inference engine (.agents/analysis/pr41-issue-analysis.md)

.github/workflows/*.yml: Use dotnet-nunit reporter in dorny/test-reporter@v1 when Pester tests output NUnitXml format
Add explicit permissions block to GitHub Actions workflow jobs, specifying minimal required permissions (e.g., contents: read and checks: write for test reporting workflows)

.github/workflows/*.yml: Use minimal GitHub Actions permissions in CI workflows
Add workflow_dispatch trigger to GitHub Actions workflows for manual triggering capability
Add PowerShell-Yaml module installation step in CI workflows
Use ubuntu-latest for drift detection CI workflows for lighter weight execution
Add issue deduplication for drift alerts in GitHub Actions workflows
Use path filtering appropriately scoped in GitHub Actions workflows

CI/CD pipeline must include a drift-linting job that compares Claude agent content against generated VS Code and Copilot CLI variants on every PR modifying agent files

Create automated CI validation to detect absolute paths (Windows, macOS, Linux patterns) in markdown files with colored output, line numbers, and remediation steps

Configure concurrency groups in GitHub Actions workflows to prevent comment spam and race conditions when multiple commits trigger parallel workflow runs on the same PR

.github/workflows/*.yml: Remove silent || true error suppression from critical operations; instead track failures in arrays and provide summarized error reporting at workflow completion
Use minimal token scopes in GitHub Actions workflows: use repo scope for read-only operations, issues:write for issue modifications, and workflow permissions declarations following principle of least privilege

.github/workflows/*.yml: Store heredoc content in separate files instead of inline within YAML run: blocks to avoid YAML parsing errors when content lacks proper indentation
Use github.token (workflow's built-in token) for PR comments in GitHub Actions instead of service account PATs, as it automatically has write access t...

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/**/*.{yml,yaml}

📄 CodeRabbit inference engine (.agents/retrospective/pr-feedback-remediation.md)

Use 'ubuntu-latest' for CI runner preference instead of 'windows-latest' for significantly faster performance, except for PowerShell Desktop or Windows-specific features

.github/workflows/**/*.{yml,yaml}: Workflows should be thin and contain only orchestration logic; all business logic (parsing, validation, formatting) must be extracted to PowerShell modules (.psm1)
Keep workflow YAML files to a maximum of 100 lines (orchestration only)
Do not parse complex strings (verdict, labels, etc.) in workflow YAML run: blocks; delegate to PowerShell modules
Do not validate business rules directly in workflow YAML; delegate to PowerShell modules
All PowerShell scripting for workflows must be PowerShell-only (no bash or other shell languages embedded in workflows)

.github/workflows/**/*.{yml,yaml}: PowerShell used consistently for label and milestone parsing in AI workflow (extract parsing logic to AIReviewCommon.psm1::Get-LabelsFromAIOutput rather than inline bash)
Use ::error:: GitHub Actions format for error output instead of echo or Write-Error to ensure errors are properly captured and cause workflow failure
Remove all '|| true' patterns and silent failure suppression in workflow steps - errors must be aggregated and reported explicitly using ::error:: format
Add token masking with ::add-mask:: before using secrets in workflow run steps to prevent accidental token leakage in logs
Replace secrets.BOT_PAT with github.token for issue and PR operations to minimize token privileges and reduce security attack surface
Document minimum required token scopes in workflow comments for each operation (e.g., 'repo' scope for issue edit and label application, 'read' scope for readonly operations)
Extract AI workflow parsing logic to testable PowerShell module functions (AIReviewCommon.psm1) rather than inline bash - enables unit testing in isolation and reduces regression risk

.github/workflows/**/*.{yml,yaml}: Use bash/PowerShell error collection pattern: initialize FAILED_...

Files:

• .github/workflows/pr-maintenance.yml

**/.github/workflows/*.{yml,yaml}

📄 CodeRabbit inference engine (.agents/skills/ci-runner-preference.md)

**/.github/workflows/*.{yml,yaml}: Use ubuntu-latest (or linux-latest) runners for GitHub Actions workflows instead of windows-latest for better CI/CD pipeline performance
Only use windows-latest runner when PowerShell Desktop (5.1) is required, Windows-specific features are needed, or testing Windows-only scenarios
Prefer PowerShell Core (pwsh) over PowerShell Desktop for GitHub Actions scripts to enable cross-platform compatibility on Linux runners

Workflows SHOULD be less than 100 lines, containing orchestration only. Business logic SHOULD be extracted to PowerShell modules (.psm1).

PowerShell workflow files must follow the thin-workflow pattern where orchestration logic stays in the workflow and business logic is extracted to reusable modules

Maintain consistent token scopes and authentication strategy throughout workflows; use the same token source for all related operations to avoid permission errors

**/.github/workflows/*.{yml,yaml}: Avoid code injection vulnerabilities by never directly interpolating unsanitized GitHub context variables (like ${{ github.event.issue.title }} or ${{ github.event.issue.body }}) into bash commands; instead save them to files using heredoc syntax and read them back
Use toJSON() to escape GitHub context variables when passing them to bash commands, or employ input validation before using variables in shell contexts
GitHub Actions workflows should request only the minimum necessary permissions (principle of least privilege) required for their operations

**/.github/workflows/*.{yml,yaml}: When ≥2 GitHub Actions workflows share logic, extract to composite action with parameterized inputs for reusability
GitHub Actions workflow files should include YAML syntax validation and actionlint checks in pre-commit configuration

**/.github/workflows/*.{yml,yaml}: Use artifacts instead of job outputs for passing data between matrix jobs in GitHub Actions workflows
Use environment variables for shell variable expans...

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/**

📄 CodeRabbit inference engine (.agents/steering/security-practices.md)

Implement OWASP Top 10 prevention practices in GitHub Actions workflows

Use secure defaults and minimal exposure for security misconfiguration prevention

Files:

• .github/workflows/pr-maintenance.yml

---

⚙️ CodeRabbit configuration file

.github/workflows/**: SECURITY-CRITICAL PATH - ASSERTIVE ENFORCEMENT
Review for: - Authentication and authorization (secrets handling, OIDC) - Credential exposure (env vars, git output, logs) - Injection vulnerabilities (command injection, script injection) - Race conditions (concurrent jobs, artifact operations) - Resource exhaustion (limits on runners, matrix expansions)
Flag: - Unquoted variables in shell commands - Direct use of user input in scripts - Missing error handling and early exit conditions - Hardcoded secrets or credentials - Unsafe use of 3rd party actions
DO NOT IGNORE any security-related findings on this path.

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/**/*.yml

📄 CodeRabbit inference engine (.agents/architecture/DESIGN-REVIEW-pr-60-remediation-architecture.md)

Use GitHub Actions workflow steps with PowerShell for JSON parsing and data manipulation; reserve bash only for simple npm install, git operations, and environment variable exports

Aggregate errors across workflow steps using error accumulation arrays and export failure summary via GITHUB_OUTPUT

.github/workflows/**/*.yml: GitHub Actions workflows orchestrating multiple agents should use matrix strategy with fail-fast: false to ensure all reviews complete
Use artifact passing (not job outputs) to transfer data between workflow jobs when using matrix strategy
Implement idempotency in workflow comment generation using comment markers to distinguish update vs create operations
Use skip optimization to check for docs-only changes before executing expensive AI review jobs
Add CI validation step to verify prompt templates include required output format markers before merging

.github/workflows/**/*.yml: Replace bash parsing with PowerShell functions in GitHub Actions workflows - use Get-LabelsFromAIOutput and Get-MilestoneFromAIOutput from AIReviewCommon.psm1 instead of bash grep/tr/xargs to prevent command injection (CWE-78) and word splitting vulnerabilities (CWE-20)
In GitHub Actions workflows parsing AI output, never use bash xargs, unquoted variable expansion, or for loops with simple string parsing - replace with PowerShell cmdlets that handle structured output safely
Verify PowerShell Core is available on GitHub Actions ubuntu-latest runner before using PowerShell in workflows

Add checkout step to skip-validation job in GitHub Actions workflows that use dorny/paths-filter

.github/workflows/**/*.yml: Add explicit exit 0 to PowerShell scripts in GitHub Actions workflow run blocks to prevent $LASTEXITCODE persistence
Validate GitHub labels exist before deploying workflows that reference them with gh pr edit --add-label
Add cross-platform validation matrix to test workflows or document single-platform requirements upfront when tests have platf...

Files:

• .github/workflows/pr-maintenance.yml

**/.github/workflows/**/*.{yml,yaml}

📄 CodeRabbit inference engine (.agents/governance/PROJECT-CONSTRAINTS.md)

**/.github/workflows/**/*.{yml,yaml}: MUST NOT put business logic in workflow YAML files
SHOULD keep workflows under 100 lines (orchestration only)

Workflows must be thin and composed of testable, reusable modules

Follow Copilot follow-up PR naming convention: copilot/sub-pr-{original_pr_number} for branches targeting the original PR's base branch

**/.github/workflows/**/*.{yml,yaml}: Implement concurrency control using GitHub Actions concurrency group to prevent simultaneous PR maintenance runs
Configure GitHub Actions workflows to create an issue on failure with workflow diagnostics
Design thin GitHub Actions workflows that orchestrate logic rather than implementing testable module logic directly

**/.github/workflows/**/*.{yml,yaml}: Add workflow action steps AFTER parsing to apply suggested labels, assign suggested users, post feature review as comment, and update issue milestone based on recommendation
Specify exact line numbers and file locations in rollback plan, including which lines to remove from .github/workflows/ai-issue-triage.yml and triage summary PowerShell script
Include validation logic in workflow to verify that issue labels and analyst categorization match (e.g., if labeled 'enhancement', categorized as 'enhancement')
Specify Copilot model parameter in feature review workflow step (use claude-opus-4.5 for consistency with PRD generation step)
Define error handling for parse failures in workflow: specify fallback behavior when regex extraction fails (e.g., if recommendation returns UNKNOWN)
Verify category detection accuracy by testing whether analyst agent reliably categorizes feature requests, including false negative rate and fallback behavior for miscategorization

All workflow jobs must include explicit copilot-model parameter specification per governance requirements

Files:

• .github/workflows/pr-maintenance.yml

**/.github/**/*.{yml,yaml,sh,bash}

📄 CodeRabbit inference engine (.agents/planning/PR-60/001-pr-60-review-gap-analysis.md)

Use unique identifiers (e.g., run ID, timestamp) for temporary file paths in CI/CD workflows to prevent conflicts in concurrent runs on shared runners

Files:

• .github/workflows/pr-maintenance.yml

**/.github/workflows/**/*.yml

📄 CodeRabbit inference engine (.agents/planning/PR-60/004-pr-60-implementation-review.md)

**/.github/workflows/**/*.yml: Replace bash label parsing in GitHub Actions workflows with PowerShell validation to prevent command injection via untrusted AI output
Validate all label strings against regex pattern '^[\w-.\s]{1,50}$' before applying to GitHub issues
Validate all category strings against regex pattern '^[\w-]{1,30}$' before using in workflow outputs
Validate all milestone strings against regex pattern '^[\w-.\s]{1,50}$' before assigning to issues
Use explicit error handling with informative error messages instead of '|| true' for GitHub CLI (gh) commands that should not fail silently
Keep '|| true' only for commands where empty/missing results are valid expected outcomes (e.g., grep with no matches, find with no results)
Verify GitHub CLI authentication status is successful before attempting API operations in CI workflows
Log validation rejections with details (invalid format, rejected label) for debugging label application failures
Provide detailed error messages in GitHub Actions workflow steps including context (what failed, why, what to check)
Use PowerShell 'Write-Host' with color output for structured workflow logging instead of plain echo statements
Use '|| true' in workflows only for commands where missing data is an expected valid state; document the reason in comments
Validate workflow inputs and outputs against strict regex patterns before using them in GitHub API commands

**/.github/workflows/**/*.yml: Use environment variables instead of direct ${{ }} template syntax in shell scripts to prevent shell injection attacks
Use artifacts instead of job outputs to pass data between matrix job legs, since outputs only expose one matrix leg
Prepare multi-line content via prior steps with GITHUB_OUTPUT heredoc syntax rather than attempting to execute shell commands in YAML with: inputs

**/.github/workflows/**/*.yml: Add explicit 'exit 0' at end of PowerShell workflow scripts to prevent $LASTEXITCODE persistence
Validate GitHub lab...

Files:

• .github/workflows/pr-maintenance.yml

**/.github/workflows/*.yml

📄 CodeRabbit inference engine (.agents/planning/PR-60/007-phase-1-detailed-schedule.md)

Use PowerShell-only code (no bash, Python, or shell scripts) with all workflow steps configured with 'shell: pwsh' per ADR-006

Use quoted heredoc (with 'EOF' delimiter) for safely handling github.event.pull_request.title and github.event.pull_request.body in bash env vars to prevent code injection

GitHub Actions workflows must use PowerShell functions from exported modules rather than inline bash parsing (grep/sed/tr) for consistent security and testability

In workflow comments, use explicit language about verdict behavior and consequences (e.g., 'should cause the check to FAIL (block merge)' rather than ambiguous phrasing)

**/.github/workflows/*.yml: Use PowerShell syntax (shell: pwsh) for GitHub workflow steps when handling untrusted AI output
Import PowerShell modules using correct relative path format (Import-Module .github/scripts/AIReviewCommon.psm1) in GitHub workflows to ensure module dependencies are properly resolved
Use PowerShell environment variables for all user input in GitHub workflows instead of direct bash variable interpolation to eliminate word-splitting vulnerabilities

Use $env:GITHUB_WORKSPACE with absolute paths instead of relative ./ prefix when importing PowerShell modules in GitHub Actions workflows

Include env: GH_TOKEN in workflow steps that use GitHub CLI to ensure proper authentication

**/.github/workflows/*.yml: GitHub Actions workflow JSON output consumption must use fromJson() to parse matrix data from upstream job outputs
GitHub Actions workflow matrix strategy should include max-parallel constraint to throttle concurrent job execution and respect API rate limits

Document all CI/CD workflow changes for backward compatibility verification in workflow recommendation documents

**/.github/workflows/*.yml: Add workflow input parameter to toggle alignment validation on/off for rollback scenarios without breaking CI
Embedding validation should run as separate independent workflow step, not integrated into Valid...

Files:

• .github/workflows/pr-maintenance.yml

**/.github/{scripts,workflows}/*.{sh,yml}

📄 CodeRabbit inference engine (.agents/planning/pr-60-focused-plan.md)

Use sed with POSIX character classes instead of grep -P for regex patterns to ensure portability across Linux and macOS (grep -P is GNU-only)

Files:

• .github/workflows/pr-maintenance.yml

.github/{workflows,scripts}/**/*.{yml,yaml,sh}

📄 CodeRabbit inference engine (.agents/planning/pr-60-security-review.md)

.github/{workflows,scripts}/**/*.{yml,yaml,sh}: Avoid leaking sensitive information or internal configuration details in error messages and workflow logs that could be visible to attackers. Use generic error messages in production and reserve detailed diagnostics for debug logs only.
Sanitize and validate all untrusted user input (such as GitHub event data like PR titles, issue bodies, commit messages) before using in shell commands, API calls, or other operations that could interpret special characters.
When updating GitHub comments in workflows, use idempotent markers (HTML comments with unique identifiers) in comment bodies to enable safe updates by specific comment ID rather than relying on comment position.

Enforce ADR-005 with pre-commit hook rejecting bash in .github/workflows/ and .github/scripts/ directories

Files:

• .github/workflows/pr-maintenance.yml

**/.github/{workflows,scripts,prompts}/**

📄 CodeRabbit inference engine (.agents/retrospective/2025-12-18-ai-workflow-implementation.md)

AI automation in CI/CD requires verdict tokens (PASS/WARN/CRITICAL_FAIL) for deterministic bash parsing without AI interpretation

Files:

• .github/workflows/pr-maintenance.yml

{.github/**/*.sh,.github/workflows/*.yml,.github/actions/**/*.yml}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-18-session-04-ai-workflow-debugging.md)

Avoid explicit gh auth login --with-token when GH_TOKEN environment variable is already set, as gh CLI automatically uses the env var and will fail with exit code 1

Files:

• .github/workflows/pr-maintenance.yml

**/.github/{workflows,actions}/**/*.yml

📄 CodeRabbit inference engine (.agents/sessions/2025-12-18-session-13-workflow-lessons.md)

Use composite actions to encapsulate reusable workflow steps (Node.js/npm/Copilot CLI setup, authentication, agent loading, verdict parsing)

Files:

• .github/workflows/pr-maintenance.yml

**/.github/workflows/***.yml

📄 CodeRabbit inference engine (.agents/sessions/2025-12-18-session-13-workflow-lessons.md)

Convert single-job loops to multi-job matrix structures (detect → validate → aggregate) for parallel validation with artifact passing

Files:

• .github/workflows/pr-maintenance.yml

{.github/**/*.{sh,yml,yaml},**/*.sh}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-18-session-34-pr-60-comment-response.md)

{.github/**/*.{sh,yml,yaml},**/*.sh}: Avoid gh auth login authentication patterns; use session-based authentication instead (reference Session 04 for implementation details)
Use secret masking for sensitive tokens like BOT_PAT in shell commands and CI/CD workflows

Files:

• .github/workflows/pr-maintenance.yml

**/{.github/workflows/*.yml,.github/scripts/*.psm1}

📄 CodeRabbit inference engine (.agents/qa/057-pr-222-import-module-standardization.md)

Standardize Import-Module paths to use $env:GITHUB_WORKSPACE variable instead of relative paths

Files:

• .github/workflows/pr-maintenance.yml

**/{.github,workflows}/**/*.{yml,yaml}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-21-session-58-pr-141.md)

All skip jobs in workflows that document a checkout requirement must include the checkout step

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/pr-maintenance.yml

📄 CodeRabbit inference engine (.agents/devops/pr-automation-script-review.md)

.github/workflows/pr-maintenance.yml: Use GitHub Actions scheduled workflow (cron: '0 * * * ') for hourly PR maintenance automation instead of Windows Task Scheduler or systemd timers
Implement concurrency control using GitHub Actions concurrency group to prevent simultaneous workflow runs: concurrency { group: pr-maintenance, cancel-in-progress: false }
Check GitHub API rate limits before PR maintenance execution and fail with error if remaining calls < 200 per resource (core: 100, search: 15, graphql: 100, code_search: 5)
Use environment variables for configuration (PR_PROTECTED_BRANCHES, PR_BOT_AUTHORS, PR_ACK_REACTION, PR_MAX_PRS) with sensible defaults to avoid hardcoded values
Restrict GitHub Actions job permissions to minimum required: contents: read, pull-requests: write, issues: write
Post workflow summary to GitHub Actions step summary ($GITHUB_STEP_SUMMARY) including metrics table, rate limit status, and blocked PR list with workflow run link
Create automatic alert issue on workflow failure with labels [automation, P1] and link to failed workflow run for visibility and tracking
Create automatic alert issue when blocked PRs are detected (require human action) with labels [automation, needs-triage] and include blocked PR list and workflow run link
GitHub Actions workflow timeout should be 10 minutes (timeout-minutes: 10) to prevent runaway jobs while allowing buffer above expected <2min runtime for 20 PRs
Upload workflow logs as artifacts with 30-day retention (actions/upload-artifact@v4) to .agents/logs/pr-maintenance.log for historical audit trail
Use ubuntu-latest GitHub Actions runner (not Windows) because it provides PowerShell Core 7.4+ pre-installed and avoids Windows-specific dependencies
Always run security-critical steps (environment validation, rate limit check, secret verification) before PR maintenance processing to fail fast
Use GitHub API rate limit bucket-specific thresholds: core=100 (2% of 5000), search=15 (50% of 30), graphql=100 (2% ...

Files:

• .github/workflows/pr-maintenance.yml

**/{.github/workflows/*.{yml,yaml},**/*.ps1}

📄 CodeRabbit inference engine (.agents/retrospective/2025-12-22-pr-249-comprehensive-retrospective.md)

Parameterize branch references instead of hardcoding values like 'main' in workflow scripts and automation code

Files:

• .github/workflows/pr-maintenance.yml

**/.github/workflows/pr-maintenance.yml

📄 CodeRabbit inference engine (.agents/sessions/2025-12-22-session-64-pr-automation-devops-review.md)

Schedule PR maintenance workflow to run hourly using GitHub Actions with performance target of <2 minutes for 20 PRs

Files:

• .github/workflows/pr-maintenance.yml

{**/.github/workflows/*.yml,**/*.ps1}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-22-session-67-pr-249-review-response.md)

{**/.github/workflows/*.yml,**/*.ps1}: Default dry_run to true when inputs.dry_run is empty to prevent DryRun bypass for scheduled GitHub Actions runs
Allow protected branch checks to pass when GITHUB_ACTIONS=true to prevent CI workflow failures

Files:

• .github/workflows/pr-maintenance.yml

**/.github/workflows/*.{yaml,yml}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-22-session-72-pr-249-retrospective.md)

**/.github/workflows/*.{yaml,yml}: When workflow inputs are empty (scheduled triggers), default to fail-safe mode (dry_run=true) instead of fail-open
Explicitly declare environment variables (secrets, tokens) in each GitHub Actions workflow step that needs them, rather than relying on job-level inheritance

Files:

• .github/workflows/pr-maintenance.yml

{**/*.test.{js,ts,ps1},.github/workflows/**/*.{yml,yaml}}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-22-session-79-pr-268-review-response.md)

Use unique identifiers (such as issue numbers) in test cleanup operations to prevent race conditions across concurrent workflow runs

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/**(validate-generated-agents|pester-tests).{yml,yaml}

📄 CodeRabbit inference engine (.agents/architecture/ADR-014-github-actions-arm-runners.md)

Do not migrate Windows-based GitHub Actions workflows to ARM runners; keep Windows workflows on windows-latest as ARM runners are not available for Windows

Files:

• .github/workflows/pr-maintenance.yml

**/{.github/workflows,ci,tests}/**/*.{yml,yaml,js,ts}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-23-session-83-adr-017-quantitative-analysis.md)

Create CI validation for index ↔ atomic file consistency when implementing tiered index expansion

Files:

• .github/workflows/pr-maintenance.yml

**/.github/**

📄 CodeRabbit inference engine (.agents/critique/001-pr365-remediation-critique.md)

Include note about URL staleness in CI/CD documentation that references specific run IDs, recommending use of dynamic commands (e.g., gh run list --branch <branch-name>) to find latest runs

Files:

• .github/workflows/pr-maintenance.yml

.github/workflows/*pr*.yml

📄 CodeRabbit inference engine (.agents/analysis/pr-quality-gate-320c2b3-analysis.md)

Disable fail-fast in matrix workflow jobs for PR processing to prevent single PR failures from blocking other PRs

Files:

• .github/workflows/pr-maintenance.yml

**/{action.yml,.github/workflows/**/*.{yml,yaml}}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-23-session-85-pr-310-review.md)

Model routing for Copilot CLI must use evidence-aware, tiered routing: JSON extraction → gpt-5-mini, general review → claude-sonnet-4.5, security → claude-opus-4.5, code evidence → gpt-5.1-codex-max

Files:

• .github/workflows/pr-maintenance.yml

{.github/workflows/**,**/.github/**,**/branch-protection*,**/.gitpush-rules}

📄 CodeRabbit inference engine (.agents/sessions/2025-12-23-session-90-adr-debate-clarification.md)

Aggregator model routing must be enforced via branch protection rules, not just code-level checks

Files:

• .github/workflows/pr-maintenance.yml

{.github/workflows/**/*.yml,.github/workflows/**/*.yaml,**/*aggregate*.ps1}

📄 CodeRabbit inference engine (.agents/analysis/ADR-023-related-work-research.md)

Validate matrix-level aggregation of Quality Gate failures to prevent masking of genuine failures

Files:

• .github/workflows/pr-maintenance.yml

**/.agents/**/*.md

📄 CodeRabbit inference engine (.agents/governance/interview-response-template.md)

Primary deliverables from agents should be saved to .agents/[category]/[pattern].md with naming convention [PREFIX]-NNN-[description].md

Single-source agent files should use frontmatter markers to delineate platform-specific sections for VS Code and Copilot CLI variants

Maintain artifact synchronization markers in tracking files (.md) with status indicators ([COMPLETE], [RESOLVED], [VERIFIED]) and timestamps to document completion and verification of work

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/**/*.{md,yml,yaml,json}

📄 CodeRabbit inference engine (.agents/critique/001-agent-templating-critique.md)

For agent platform files, evaluate whether near-identical variants (99%+ overlap) can be consolidated with conditional configuration rather than maintaining separate files

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/**/*-critique.md

📄 CodeRabbit inference engine (.agents/retrospective/pr43-coderabbit-root-cause-analysis.md)

Include all verified facts with exact values (percentages, hours, counts) in escalation prompts to higher-level agents, rather than summarized or rounded values

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/**/*.md

📄 CodeRabbit inference engine (.agents/retrospective/pr43-coderabbit-root-cause-analysis.md)

.agents/**/*.md: Use PREFIX-NNN naming convention (e.g., EPIC-001, CRITIQUE-001) for sequenced artifacts and type-prefixed naming (e.g., prd-, tasks-) for non-sequenced artifacts
Normalize all file paths in markdown documents to be repository-relative before committing, removing absolute machine-specific paths

.agents/**/*.md: Session logs and documentation must include Phase checklist verification (Phase 1-3 protocol compliance including agent activation, instruction reading, handoff file updates, and session logging)
Session logs must document Session ID, date, agent name, and branch information in a standardized header format

All artifact files in .agents/ must be in Markdown format

Document analysis recommendations with specific rationale when adding new governance documents like PROJECT-CONSTRAINTS.md

Maintain debugging skills documentation in .agents/ directory

Document implementation notes explaining deviations from user prompts or decisions made during development (e.g., using plural form for directory names)

Run markdown lint on all generated artifacts before completing a session

Run markdown lint validation (0 errors expected) before committing documentation files in the .agents directory

Planning artifacts in .agents/ directory must maintain effort estimate consistency within 20% threshold, ensure no orphan conditions exist (all linked to tasks), and complete requirement coverage

.agents/**/*.md: Use consistent absolute file paths throughout task and PRD documentation instead of mixing relative and absolute path formats
Run markdown linting with npx markdownlint-cli2 --fix on all agent-generated documentation before commit

All modifications to agent documentation and specifications must be marked with status updates (e.g., DRAFT → CONSOLIDATED) and include consolidation notes in headers

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/critique/[0-9][0-9][0-9]-*-critique.md

📄 CodeRabbit inference engine (.agents/AGENTS.md)

Critique artifacts must follow naming pattern NNN-feature-critique.md

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/critique/*.md

📄 CodeRabbit inference engine (.agents/sessions/2025-12-23-session-62-adr-017-review.md)

.agents/critique/*.md: Document architecture review verdicts with clear APPROVED/REJECTED/APPROVED WITH CONDITIONS status and supporting evidence
Include comprehensive findings, key issues, and recommendations in architecture critiques

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

**/.agents/**/**.md

📄 CodeRabbit inference engine (.agents/critique/001-pr365-remediation-critique.md)

Verify existence of referenced documentation files before updating them in automation procedures

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/critique/**/*.md

📄 CodeRabbit inference engine (.agents/handoffs/copilot/sub-pr-310/session-92-93.md)

Move debate logs to .agents/critique/ directory

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/critique/**

📄 CodeRabbit inference engine (.github/copilot-instructions.md)

Store critique outputs in .agents/critique/ directory

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/critique/*-critique.md

📄 CodeRabbit inference engine (.agents/qa/063-session-63-guardrails-critique-qa.md)

Critique documents should be stored in the .agents/critique/ directory with a numeric prefix following the format NNN--critique.md

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

{**/.agents/**,**/*prompt*.{js,ts,md},**/*agent*.ps1}

📄 CodeRabbit inference engine (.agents/critique/465-spec-validation-false-positive.md)

Require explicit verdict patterns in all AI agent outputs rather than relying on substring keyword matching for verdict detection

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

.agents/**

⚙️ CodeRabbit configuration file

Agent configuration files. Only flag security issues or broken cross-references. Ignore style, formatting, and structure.

Files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

🧠 Learnings (1)

📚 Learning: 2025-12-19T00:35:21.906Z

Learnt from: rjmurillo
Repo: rjmurillo/ai-agents PR: 60
File: .agents/critique/003-pr-60-remediation-critique.md:6-6
Timestamp: 2025-12-19T00:35:21.906Z
Learning: In planning, critique, and analysis documents under .agents/critique, do not include manual revision tracking (e.g., version numbers, revision history tables, or Last Updated dates). Rely on Git commit history for version tracking, including what changed, when, who, and why (documented in commit messages).

Applied to files:

• .agents/critique/001-issue-360-bot-loop-prevention-critique.md

🪛 LanguageTool

.agents/critique/001-issue-360-bot-loop-prevention-critique.md

[uncategorized] ~23-~23: The official name of this software platform is spelled with a capital “H”.
Context: ...on to the Process PR comments step in .github/workflows/pr-maintenance.yml. When a P...

(GITHUB)

🔇 Additional comments (7)

.github/workflows/pr-maintenance.yml (2)

352-359: Bot detection logic is correct.

The condition properly gates comment processing:

1. Excludes GitHub App bots via [bot] suffix
2. Excludes specific service account rjmurillo-bot
3. Preserves existing conflict/AI-verdict logic

Both bot patterns align with Invoke-PRMaintenance.ps1 classification.

---

371-376: Author field always populated, but derivative PRs with author='N/A' will still trigger comment processing.

The discovery script always sets author (never null/empty), but uses author='N/A' for derivative PRs marked PENDING_DERIVATIVES. Since the process-comments step has no condition, it will run for author='N/A' cases even though these PRs shouldn't be processed. The skip logic only handles actual bot authors ([bot] suffix or rjmurillo-bot), missing the special 'N/A' case.

Add condition to process-comments step: if: matrix.author != 'N/A'

.agents/critique/001-issue-360-bot-loop-prevention-critique.md (5)

1-7: Correct naming convention and structure.

File follows NNN-feature-critique.md pattern per .agents/critique/ guidelines. No manual revision tracking included (uses git history per learnings).

---

43-55: Edge case documented appropriately.

The trade-off (human reviews on bot PRs won't get acknowledgment) is flagged with low risk assessment and recommendation to document. This is the right approach.

---

131-143: Bot category alignment verified in critique.

Critique correctly notes that Invoke-PRMaintenance.ps1 includes rjmurillo[bot] but workflow catches it via [bot] suffix check. Good coverage analysis.

---

280-289: ADR-006 compliance correctly assessed.

Bot detection is a simple conditional, not business logic. Classification stays in PowerShell module. Assessment is accurate.

---

23-23: Capitalize "GitHub".

Static analysis caught this. "GitHub" should be capitalized per official branding.

🔎 Proposed fix

-The fix adds bot author detection to the `Process PR comments` step in `.github/workflows/pr-maintenance.yml`. When a PR is authored by `rjmurillo-bot` or any username ending in `[bot]`, comment processing is skipped, preventing the infinite feedback loop where bots respond to their own PR reviews.
+The fix adds bot author detection to the `Process PR comments` step in `.github/workflows/pr-maintenance.yml`. When a PR is authored by `rjmurillo-bot` or any username ending in `[bot]`, comment processing is skipped, preventing the infinite feedback loop where bots respond to their own PR reviews.

Wait - the text doesn't contain lowercase "github". Looking again at line 23:

The text says .github/workflows/pr-maintenance.yml which is a file path. File paths don't need capitalization. This is a false positive from the linter.

Actually, this is a false positive. The .github in the text is a directory path, not a reference to the GitHub platform. Directory names are case-sensitive and .github is the correct path.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[rjmurillo]

Review Triage Required

Note

Priority: NORMAL - Human approval required before bot responds

Review Summary

Source	Reviews	Comments
Human	0	0
Bot	1	0

Next Steps

1. Review human feedback above
2. Address any CHANGES_REQUESTED from human reviewers
3. Add triage:approved label when ready for bot to respond to review comments

---

_{Powered by PR Maintenance workflow - Add triage:approved label}

[Copilot]

Pull request overview

This PR fixes a critical bug where rjmurillo-bot would enter infinite feedback loops on its own PRs by responding to every AI reviewer comment. The fix adds bot author detection to skip comment processing entirely when a PR is authored by a bot, preventing the documented issue where PR #285 accumulated 50 bot comments and PR #255 accumulated 57 bot comments in response to AI reviews.

Key Changes:

• Added bot detection logic to workflow conditions that prevents comment processing when PR author ends with [bot] or is rjmurillo-bot
• Added informational notice step to provide visibility when comment processing is skipped due to bot authorship
• Comprehensive critique document analyzing the fix correctness and documenting known edge cases

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.

File	Description
.github/workflows/pr-maintenance.yml	Added bot author check to comment processing step condition; added informational notice when skipped
.agents/critique/001-issue-360-bot-loop-prevention-critique.md	New critique document providing detailed analysis of the fix, edge cases, and approval verdict