Create Development

[Sazwanismail]

User description

I'll provide a comprehensive and well-documented version of the first-responder-v2-prs-collect.yml workflow. This version includes detailed comments, additional steps for robustness, and follows best practices for GitHub Actions.

# .github/workflows/first-responder-v2-prs-collect.yml
# Collects pull requests for first responder v2 and sends notifications to Slack.
# Runs every 15 minutes during working hours (Mon-Fri, 9am-5pm UTC).
# Also allows manual trigger via workflow_dispatch.

name: First Responder v2 PRs Collect

on:
  schedule:
    # Cron syntax: minute hour day-of-month month day-of-week
    # Every 15 minutes between 9:00 and 16:45 UTC (last run at 16:45)
    # Only on weekdays (1-5 = Monday-Friday)
    - cron: "*/15 9-16 * * 1-5"
  workflow_dispatch:
    # Allow manual triggering with optional inputs (if needed)
    inputs:
      debug:
        description: 'Enable debug logging'
        required: false
        default: false
        type: boolean

# Set permissions for the GITHUB_TOKEN
permissions:
  contents: read
  pull-requests: read
  issues: read

jobs:
  collect-prs:
    name: Collect PRs and notify Slack
    runs-on: ubuntu-latest
    # Add timeout to prevent runaway jobs
    timeout-minutes: 10

    steps:
      # Step 1: Check out the repository code
      - name: Checkout repository
        uses: actions/checkout@v3
        with:
          fetch-depth: 1  # Shallow clone for speed

      # Step 2: Set up Node.js environment
      - name: Setup Node.js
        uses: actions/setup-node@v3
        with:
          node-version: '18'
          cache: 'npm'  # Cache npm dependencies for faster installs

      # Step 3: Install dependencies from package-lock.json
      - name: Install dependencies
        run: npm ci
        # npm ci is faster and uses exact versions from package-lock.json

      # Step 4: Run PR collection script with environment variables
      - name: Run PR collection script
        env:
          # GitHub token automatically provided by GitHub Actions
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
          
          # Slack bot token required to post messages
          SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
          
          # Slack channel IDs for announcements and join channel
          SLACK_ANNOUNCEMENT_CHANNEL_ID: ${{ secrets.SLACK_ANNOUNCEMENT_CHANNEL_ID }}
          SLACK_JOIN_CHANNEL_ID: ${{ secrets.SLACK_JOIN_CHANNEL_ID }}
          
          # Optional debug flag if manual trigger with debug
          DEBUG: ${{ github.event.inputs.debug && 'true' || '' }}
        run: node src/scripts/first-responder-v2/prs-collect.js

      # Step 5: (Optional) Notify on failure
      - name: Notify Slack on failure
        if: failure()
        env:
          SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
          SLACK_ANNOUNCEMENT_CHANNEL_ID: ${{ secrets.SLACK_ANNOUNCEMENT_CHANNEL_ID }}
        run: |
          curl -X POST -H "Authorization: Bearer $SLACK_BOT_TOKEN" \
          -H "Content-type: application/json" \
          --data "{
            \"channel\": \"$SLACK_ANNOUNCEMENT_CHANNEL_ID\",
            \"text\": \":x: First Responder v2 PR collection failed at $(date -u +'%Y-%m-%d %H:%M:%S UTC')\"
          }" \
          https://slack.com/api/chat.postMessage

Key Features of this Updated YAML:

• Detailed comments explaining each section.
• Permissions block to restrict token scope for security.
• Timeout to prevent long-running jobs.
• Caching for npm dependencies to speed up runs.
• Manual trigger with optional debug input.
• Failure notification step to alert Slack if the script fails.
• Environment variables clearly listed.

Make sure you have the required secrets set in your repository:

• SLACK_BOT_TOKEN
• SLACK_ANNOUNCEMENT_CHANNEL_ID
• SLACK_JOIN_CHANNEL_ID

If you need further adjustments or have a different file in mind, let me know! Tentu, saya akan memberikan lebih banyak detail dan konteks terkait workflow first-responder-v2-prs-collect.yml serta komponen-komponennya. Berikut adalah penjelasan mendalam, tips penggunaan, dan kode tambahan untuk memaksimalkan workflow ini.

1. Penjelasan Mendalam tentang Cron Schedule

Workflow ini menggunakan cron expression */15 9-16 * * 1-5. Mari kita uraikan:

• */15 → Setiap 15 menit (menit 0,15,30,45).
• 9-16 → Jam 9 pagi hingga 4 sore UTC (jam 16). Karena cron menjalankan pada menit ke-0,15,30,45 di jam tersebut, maka run terakhir dimulai pukul 16:45 UTC (setara pukul 23:45 WIB jika UTC+7).
• * → Setiap hari dalam bulan.
• * → Setiap bulan.
• 1-5 → Senin sampai Jumat (1=Senin, 5=Jumat).

Mengubah ke Zona Waktu Lokal

Jika Anda ingin menjalankan workflow sesuai jam kerja di Indonesia (misal 09:00–17:00 WIB), Anda bisa menyesuaikan cron dengan mempertimbangkan offset UTC. Contoh untuk WIB (UTC+7):

# 09:00–17:00 WIB = 02:00–10:00 UTC
on:
  schedule:
    - cron: "*/15 2-9 * * 1-5"   # Setiap 15 menit jam 2–9 UTC

Perhatikan bahwa jam 10:00 UTC = 17:00 WIB, tapi menit terakhir di jam 9 adalah 09:45 UTC = 16:45 WIB. Jika ingin sampai jam 17:00 WIB (10:00 UTC), Anda perlu menjadwalkan di jam 10 juga, tapi hanya di menit 0 agar tidak berjalan setelah jam 17:00 WIB. Anda bisa menggunakan multiple cron lines:

on:
  schedule:
    - cron: "*/15 2-9 * * 1-5"   # 09:00–16:45 WIB
    - cron: "0 10 * * 1-5"        # 17:00 WIB tepat

2. Variabel Lingkungan dan Secret yang Diperlukan

Workflow ini menggunakan tiga Slack channel ID:

• SLACK_ANNOUNCEMENT_CHANNEL_ID: Channel untuk pengumuman penting, misalnya ringkasan PR yang dikumpulkan.
• SLACK_JOIN_CHANNEL_ID: Channel khusus untuk mengundang anggota baru atau notifikasi onboarding.
• SLACK_BOT_TOKEN: Token bot Slack dengan hak akses chat:write dan channels:join (jika perlu mengundang bot ke channel).

Cara mendapatkan Slack Bot Token dan Channel ID:

1. Buat aplikasi Slack di api.slack.com/apps.
2. Tambahkan scope chat:write dan channels:join (atau groups:write untuk private channel).
3. Install aplikasi ke workspace Anda.
4. Salin Bot User OAuth Token (mulai dengan xoxb-).
5. Untuk mendapatkan Channel ID, buka channel di Slack, klik nama channel di bagian atas, dan sali ID dari URL (biasanya diawali C atau G).

Tambahkan semua nilai tersebut sebagai repository secrets di GitHub (Settings > Secrets and variables > Actions).

3. Script prs-collect.js – Contoh Sederhana

Workflow ini menjalankan script Node.js. Berikut adalah contoh minimal script yang mungkin digunakan (anda dapat menyesuaikan dengan logika Anda sendiri):

// src/scripts/first-responder-v2/prs-collect.js
const { Octokit } = require('@octokit/rest');
const { WebClient } = require('@slack/web-api');

// Inisialisasi klien
const octokit = new Octokit({ auth: process.env.GITHUB_TOKEN });
const slack = new WebClient(process.env.SLACK_BOT_TOKEN);

async function collectPRs() {
  try {
    // Contoh: ambil PR terbuka di repo tertentu
    const { data: pullRequests } = await octokit.pulls.list({
      owner: 'sazwan96',
      repo: 'sazwanismail', // ganti dengan repo Anda
      state: 'open'
    });

    console.log(`Ditemukan ${pullRequests.length} PR terbuka.`);

    // Kirim notifikasi ke Slack
    if (pullRequests.length > 0) {
      const message = {
        channel: process.env.SLACK_ANNOUNCEMENT_CHANNEL_ID,
        text: `Ada ${pullRequests.length} PR baru yang perlu direview!`,
        blocks: [
          {
            type: 'section',
            text: {
              type: 'mrkdwn',
              text: `*Daftar PR Terbuka:*`
            }
          },
          ...pullRequests.map(pr => ({
            type: 'section',
            text: {
              type: 'mrkdwn',
              text: `<${pr.html_url}|#${pr.number}: ${pr.title}> oleh @${pr.user.login}`
            }
          }))
        ]
      };
      await slack.chat.postMessage(message);
    } else {
      // Opsional: kirim pesan bahwa tidak ada PR
      await slack.chat.postMessage({
        channel: process.env.SLACK_ANNOUNCEMENT_CHANNEL_ID,
        text: 'Tidak ada PR terbuka saat ini.'
      });
    }

    // Kirim pesan ke join channel (misal untuk onboarding)
    await slack.chat.postMessage({
      channel: process.env.SLACK_JOIN_CHANNEL_ID,
      text: 'Workflow PR collection berjalan dengan sukses.'
    });

  } catch (error) {
    console.error('Error:', error);
    // Opsional: kirim notifikasi error ke Slack
    await slack.chat.postMessage({
      channel: process.env.SLACK_ANNOUNCEMENT_CHANNEL_ID,
      text: `Terjadi error: ${error.message}`
    });
    process.exit(1);
  }
}

collectPRs();

Pastikan Anda menginstal dependencies yang diperlukan:

npm install @octokit/rest @slack/web-api

4. Menambahkan Logging dan Monitoring

Untuk memudahkan debugging, Anda dapat menambahkan step yang meng-upload log sebagai artifact jika terjadi error:

- name: Upload logs on failure
  if: failure()
  uses: actions/upload-artifact@v3
  with:
    name: error-logs
    path: /home/runner/.npm/_logs/
    retention-days: 5

5. Menambahkan Step untuk Menjalankan Test Sebelum Collect

Jika Anda ingin memastikan script berfungsi sebelum menjalankan koleksi PR, Anda bisa menambahkan step test:

- name: Run tests
  run: npm test

6. Menjadwalkan dengan Input Manual yang Lebih Fleksibel

Anda dapat memperluas workflow_dispatch dengan input untuk memilih repositori target atau mode debug:

on:
  workflow_dispatch:
    inputs:
      repo:
        description: 'Repository to scan (format: owner/repo)'
        required: false
        default: 'sazwan96/sazwanismail'
      debug:
        description: 'Enable debug logging'
        required: false
        default: false
        type: boolean

Kemudian di script, baca input tersebut:

const repoFullName = process.env.INPUT_REPO || 'sazwan96/sazwanismail';
const [owner, repo] = repoFullName.split('/');

7. Keamanan: Menggunakan GitHub App Token

Jika Anda membutuhkan akses yang lebih aman atau spesifik, pertimbangkan untuk menggunakan GitHub App token daripada GITHUB_TOKEN. Anda bisa menggunakan action tibdex/github-app-token untuk menghasilkan token dengan izin terbatas.

8. Alternatif: Menggunakan Action schedule dengan If Condition

Jika Anda ingin mengontrol eksekusi berdasarkan kondisi tertentu (misal hanya jika ada perubahan file tertentu), Anda bisa menambahkan conditional step:

- name: Check if script changed
  id: changed
  uses: tj-actions/changed-files@v35
  with:
    files: |
      src/scripts/first-responder-v2/prs-collect.js
      .github/workflows/first-responder-v2-prs-collect.yml

- name: Run PR collection only if relevant files changed
  if: steps.changed.outputs.any_changed == 'true'
  run: node src/scripts/first-responder-v2/prs-collect.js

9. Integrasi dengan Database atau API Eksternal

Jika Anda perlu menyimpan hasil koleksi PR ke database atau memanggil API eksternal, tambahkan step tersebut di dalam script atau sebagai step terpisah.

10. Notifikasi ke Multiple Channel

Anda bisa mengirim notifikasi ke lebih dari dua channel dengan menambahkan variabel lingkungan tambahan:

env:
  SLACK_CHANNEL_1: ${{ secrets.SLACK_CHANNEL_1 }}
  SLACK_CHANNEL_2: ${{ secrets.SLACK_CHANNEL_2 }}

Lalu di script, Anda bisa memposting ke semua channel yang didefinisikan.

---

Dengan semua tambahan ini, workflow Anda menjadi lebih powerful, fleksibel, dan mudah dipelihara. Jika ada bagian spesifik yang ingin didalami atau ditambahkan, beri tahu saya!

---

CodeAnt-AI Description

Add a comprehensive Development / contributing guide for new contributors

What Changed

• Introduces a full "Development" document with contribution workflow, code of conduct, and developer obligations
• Adds step-by-step setup and platform-specific build and test instructions for Linux, macOS, and Windows (MSYS2 and Visual Studio), including sanitizer guidance
• Documents testing expectations (unit, functional, coverage), CI guidance, commit signing (DCO), and PR submission checklist
• Lists communication channels and licensing expectations for contributions

Impact

✅ Clearer contributor onboarding
✅ Shorter local setup and testing time
✅ Fewer PR checklist and CI review errors

💡 Usage Guide

Checking Your Pull Request

Every time you make a pull request, our system automatically looks through it. We check for security issues, mistakes in how you're setting up your infrastructure, and common code problems. We do this to make sure your changes are solid and won't cause any trouble later.

Talking to CodeAnt AI

Got a question or need a hand with something in your pull request? You can easily get in touch with CodeAnt AI right here. Just type the following in a comment on your pull request, and replace "Your question here" with whatever you want to ask:

@codeant-ai ask: Your question here

This lets you have a chat with CodeAnt AI about your pull request, making it easier to understand and improve your code.

Example

@codeant-ai ask: Can you suggest a safer alternative to storing this secret?

Preserve Org Learnings with CodeAnt

You can record team preferences so CodeAnt AI applies them in future reviews. Reply directly to the specific CodeAnt AI suggestion (in the same thread) and replace "Your feedback here" with your input:

@codeant-ai: Your feedback here

This helps CodeAnt AI learn and adapt to your team's coding style and standards.

Example

@codeant-ai: Do not flag unused imports.

Retrigger review

Ask CodeAnt AI to review the PR again, by typing:

@codeant-ai: review

Check Your Repository Health

To analyze the health of your code repository, visit our dashboard at https://app.codeant.ai. This tool helps you identify potential issues and areas for improvement in your codebase, ensuring your repository maintains high standards of code health.

[codeant-ai]

CodeAnt AI is reviewing your PR.

---

Thanks for using CodeAnt! 🎉

We're free for open-source projects. if you're enjoying it, help us grow by sharing.

Share on X ·
Reddit ·
LinkedIn

[changeset-bot]

⚠️ No Changeset found

Latest commit: fd85c59

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request introduces a new Development file, which serves as a comprehensive guide for contributors. This document outlines the entire contribution process, from setting up the development environment and adhering to coding standards to building, testing, and submitting changes across various operating systems. Its purpose is to streamline the onboarding of new contributors and ensure consistency in development practices.

Highlights

• New Contribution Guide: A new Development file has been added, serving as a comprehensive guide for contributors.
• Cross-Platform Build & Test Instructions: The guide includes detailed instructions for building and testing the project on Linux (with sanitizers), macOS 14, and Windows (using MinGW-w64 and Visual Studio).
• Development Standards and Process: It outlines coding standards, development workflow, testing guidelines (unit and functional tests), and the process for submitting changes, including the Developer Certificate of Origin (DCO).

Changelog

• Development
  • Added a new file detailing comprehensive contribution guidelines.
  • Included instructions for building and testing on Linux, macOS, and Windows.
  • Specified coding standards, development process, and submission requirements.

Activity

• No human activity has been recorded on this pull request yet.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.

[codeant-ai]

Sequence Diagram

This PR adds a new Development guide that defines the expected contribution workflow from local setup through testing and pull request submission. The diagram captures the primary contributor path emphasized by the new documentation.

sequenceDiagram
    participant Contributor
    participant Repository
    participant Local Environment
    participant CI
    participant Maintainers

    Contributor->>Repository: Read development guidelines
    Contributor->>Local Environment: Set up build and dependencies
    Contributor->>Local Environment: Implement change and run tests
    Contributor->>Repository: Submit pull request to master
    Repository->>CI: Run automated checks
    CI-->>Maintainers: Report test results for review

Loading

---

Generated by CodeAnt AI

[codeant-ai]

Nitpicks 🔍

🔒 No security issues identified

⚡ Recommended areas for review License Clarity The licensing section suggests "e.g., MIT" without confirming the repository's actual license. This could lead contributors to assume the wrong license—ensure a single, authoritative license statement or link to a definite LICENSE file. Branch Policy The guide mandates development on the master branch. Many repositories use main or another default branch; this should reference the repository's actual default branch or explain how to adapt the guidance. Placeholder Text The document contains multiple generic placeholders (e.g., [Project Name]) and template text that should be replaced with the actual project/repository name or clearly documented as a template before merging.

[gemini-code-assist]

Code Review

This pull request introduces a new Development file, which appears to be a comprehensive guide for contributors. The document is well-structured and covers various aspects of the development process. However, it contains several placeholders like [Project Name] and some of the build instructions for different platforms are incorrect or could lead to compatibility issues, especially regarding the Berkeley DB dependency for legacy wallets. I've provided specific comments and suggestions to address these points. Additionally, consider renaming the file to CONTRIBUTING.md, which is the standard convention for contribution guidelines and would be more discoverable.

[codeant-ai]

CodeAnt AI finished reviewing your PR.