Add GLM inline review workflow#836
Conversation
|
Claude finished @frankbria's task in 3m 26s —— View job GLM inline review complete.
1 finding (major): Posted as an inline comment on the diff line and summarized in the thread. No critical or runtime defects found — the threshold condition, |
GLM Review — PR #836
1 finding (1 major). No critical or runtime defects found: the review-threshold condition ( |
Pin frankbria/glm-review/.github/workflows/review.yml to the full commit SHA b877d15 instead of the mutable @main ref, matching the convention already used by claude-code-review.yml and opencode.yml. Prevents an unreviewed upstream revision from executing here with id-token: write and the ZHIPU_API_KEY secret. Addresses GLM review finding (major).
|
Claude finished @frankbria's task in 3m 1s —— View job GLM Review — PR #836 (synchronize re-review)Re-ran precision bug-hunt after commit
Prior finding — resolved, not re-reported.
✅ GLM review: no defects found. Verified specifically:
|
|
Claude finished @frankbria's task in 2m 28s —— View job GLM Review — PR #836 (synchronize re-review)Re-ran precision bug-hunt after the merge of
No new findings, no findings to re-report. The merge ( Prior finding — still resolved, not re-reported.
✅ GLM review: no defects found. Verified specifically against the checked-out file:
|
GLM Review — PR #836 (synchronize re-review)
|
660100d to
dc37c63
Compare
Dependabot rejects semver-major/minor/patch-days under cooldown for the github-actions ecosystem (only default-days is valid there), which made the .github/dependabot.yml config-validation check fail on main (#834) and block every PR merge that carries the file. Keep default-days: 14 for github-actions; pip/npm are unaffected.
|
Claude finished @frankbria's task in 2m 58s —— View job GLM Review — PR #836 (synchronize re-review)Re-ran precision bug-hunt after commit
New this run: Prior finding — still resolved, not re-reported.
✅ GLM review: no defects found. Verified specifically against the checked-out files:
|

Adds the reusable GLM-5.2 inline PR reviewer (frankbria/glm-review): CodeRabbit-style inline comments on defective lines with committable suggestions, bugs-only scope. ZHIPU_API_KEY secret is set. Verified on hai-sh#75.