follow-up to fix regex for finding consumer workflows

[derekmisler]

Related Issues

Closes: https://github.com/docker/gordon/issues/399

Summary

Two small fixes to the consumer-repo update job in the release workflow (.github/workflows/release.yml):

• Signed commits: Adds the -s flag to git commit so automated version-bump commits include a DCO sign-off, matching the project's contribution requirements.
• Graceful PR edit failures: Wraps the gh pr edit call with 2>&1 || echo "::warning::..." so a failure to update an existing PR (e.g., permissions, transient API error) emits a warning instead of failing the entire release job.

---

Tip

Comment /review to trigger the PR Reviewer agent for automated feedback.
Comment /describe to generate a PR description.

[docker-agent]

Assessment: 🟡 NEEDS ATTENTION

One medium-severity issue was confirmed in the changed code.

[docker-agent]

[MEDIUM] Overly broad error suppression silently drops PR title/body updates when reviewer assignment fails

The gh pr edit command combines three operations in a single call — --title, --body, and --add-reviewer — and the newly added 2>&1 || echo "::warning::..." guard is applied to the entire compound command. If --add-reviewer causes a failure (e.g., derekmisler is not a member of a consumer repo), both the title and body updates are also silently skipped, and the workflow continues with only a warning. Consumer PRs will retain stale titles/bodies from a previous release with no hard failure signal.

Suggested fix: Split the operations into two separate gh pr edit calls:

# This must succeed — update title and body unconditionally
gh pr edit "$EXISTING_PR" --repo "$REPO" \
  --title "chore: update cagent-action to $VERSION" \
  --body "$PR_BODY"
# Reviewer assignment may fail on external repos — tolerate it
gh pr edit "$EXISTING_PR" --repo "$REPO" \
  --add-reviewer "derekmisler" 2>&1 || echo "::warning::Failed to add reviewer to PR #$EXISTING_PR in $REPO (may be non-fatal)"