Skip to content

Add manifest for creating custom app #31

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jerop merged 1 commit into from
Jul 29, 2025
Merged

Add manifest for creating custom app #31

jerop merged 1 commit into from
Jul 29, 2025

Conversation

@aliciatang07
Copy link
Contributor

@aliciatang07 aliciatang07 commented Jul 23, 2025

add manifest for custom app

@aliciatang07 aliciatang07 requested review from a team as code owners July 23, 2025 19:25
@gemini-cli
Copy link
Contributor

gemini-cli bot commented Jul 23, 2025

📋 Review Summary

This PR introduces a GitHub App manifest file to facilitate the creation of a custom GitHub App for using this action. While this is a positive step towards simplifying setup, the initial configuration requests overly broad permissions and contains placeholder values that need clarification.

🔍 General Feedback

  • The addition of a manifest file is a great idea for improving the user experience.
  • The manifest is well-structured and includes helpful comments.
  • The primary area for improvement is adhering to the principle of least privilege for permissions.

🎯 Specific Feedback

🟡 High

  • File: custom_app_manifest.yaml:14-16 - The permissions requested (contents: write, issues: write, pull_requests: write) are overly permissive for the action's described functionality. The action primarily runs the Gemini CLI and does not appear to need write access to repository contents, issues, or pull requests. To follow the principle of least privilege, these should be reduced. I recommend contents: read if the CLI needs to read files from the repo, and removing issues and pull_requests permissions entirely if they are not used.

🟢 Medium

  • File: custom_app_manifest.yaml:6 - The name field contains a placeholder "orgname". It should be made clear in the documentation or comments that users must replace this with their actual organization or a unique name.
  • File: custom_app_manifest.yaml:7 - The homepage_url is set to a placeholder https://example.com. This should be updated by the user, and it would be helpful to note this in the associated documentation.

🔵 Low

  • File: custom_app_manifest.yaml:23 - The file is missing a final newline character, which is a common convention for text files.

✅ Highlights

  • Adding a custom_app_manifest.yaml is an excellent way to help users configure a GitHub App quickly and correctly.
  • The inclusion of comments explaining the purpose of different fields is very helpful.

jerop
jerop requested changes Jul 24, 2025
View reviewed changes
Copy link
Contributor

@jerop jerop left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

how will this manifest be used? please add docs

@aliciatang07 aliciatang07 requested a review from jerop July 24, 2025 04:55
jerop
jerop requested changes Jul 25, 2025
View reviewed changes
@aliciatang07
add manifest template
ee556c8 
add manifest for custom app

fix lint

Apply suggestions from code review

Co-authored-by: Jerop Kipruto <jerop@google.com>
Signed-off-by: Xuejie(Alicia) Tang <tangxuejie96@163.com>

add instruction
@aliciatang07 aliciatang07 requested a review from jerop July 25, 2025 19:44
JeromeJu
JeromeJu approved these changes Jul 29, 2025
View reviewed changes
Copy link
Contributor

@JeromeJu JeromeJu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@jerop jerop merged commit 8e74e04 into google-github-actions:main Jul 29, 2025
19 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jerop jerop jerop approved these changes

@JeromeJu JeromeJu JeromeJu approved these changes

@sethvargo sethvargo Awaiting requested review from sethvargo sethvargo is a code owner automatically assigned from google-github-actions/maintainers

@verbanicm verbanicm Awaiting requested review from verbanicm verbanicm is a code owner automatically assigned from google-github-actions/maintainers

@HassanJasim HassanJasim Awaiting requested review from HassanJasim HassanJasim is a code owner automatically assigned from google-github-actions/run-gemini-cli-maintainers

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@aliciatang07 @jerop @JeromeJu