🐛 Fix GitHub repo browsing in Mission Explorer — use Contents API

[clubanderson]

Summary

• Fix Mission Explorer failing to list files from user GitHub repos (showing "Empty")
• The browser was calling phantom endpoints (/api/github/missions?repo=... and /api/github/missions/file?path=...) that went through the generic proxy to invalid GitHub API paths
• Now uses the GitHub Contents API: repos/{owner}/{repo}/contents/ for listing, with base64 content decoding for file fetch
• Filters listings to mission file extensions (.json, .yaml, .yml, .md)

Test plan

• Add clubanderson/sample-runbooks as a watched repo in Mission Explorer
• Click to expand — should show 9 files (YAML + MD)
• Click a YAML file — should show parsed mission or unstructured preview with detected CNCF projects
• Click a Markdown file — should show parsed steps from headings

[kubestellar-prow]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign clubanderson for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[netlify]

✅ Deploy Preview for kubestellarconsole ready!

Name	Link
🔨 Latest commit	125365d
🔍 Latest deploy log	https://app.netlify.com/projects/kubestellarconsole/deploys/69cc6b75d90069000803dd24
😎 Deploy Preview	https://deploy-preview-4047.console-deploy-preview.kubestellar.io
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[github-actions]

👋 Hey @clubanderson — thanks for opening this PR!

🤖 This project is developed exclusively using AI coding assistants.

Please do not attempt to code anything for this project manually.
All contributions should be authored using an AI coding tool such as:

• Claude Code (Opus 4.5 / 4.6) — recommended
• GitHub Copilot
• Cursor
• Other AI coding assistants

This ensures consistency in code style, architecture patterns, test coverage,
and commit quality across the entire codebase.

---

This is an automated message.

[github-actions]

Thank you for your contribution! Your PR has been merged.

Check out what's new:

• KubeStellar Console — Live multi-cluster dashboard
• Marketplace — Community extensions
• Knowledge Base — Troubleshooting and how-tos

Stay connected: Slack #kubestellar-dev | Multi-Cluster Survey

[Copilot]

Pull request overview

Fixes Mission Explorer’s GitHub repo browsing by switching from invalid proxied endpoints to GitHub’s Contents API, enabling correct directory listings and file previews for watched repos.

Changes:

• Use /api/github/repos/{owner}/{repo}/contents/{path} for directory listing instead of phantom /api/github/missions endpoints.
• Fetch file content via Contents API and decode base64 responses for preview/import.
• Filter GitHub listings to supported mission file extensions (.json, .yaml, .yml, .md).

[Copilot]

The Contents API path is constructed incorrectly for subdirectories. repoPath can be owner/repo/subpath, but /repos/${repoPath}/contents/ becomes /repos/{owner}/{repo}/{subpath}/contents, which is not a valid GitHub endpoint. Split repoPath into {owner, repo, subPath} and call /api/github/repos/${owner}/${repo}/contents/${subPath} (or omit ${subPath} for repo root).

Suggested change

	const { data: ghEntries } = await api.get<Array<{ name: string; path: string; type: string; size?: number }>>(
	`/api/github/repos/${repoPath}/contents/`
	const [owner, repo, ...subParts] = repoPath.split('/')
	const subPath = subParts.join('/')
	const contentsUrl = subPath
	? `/api/github/repos/${owner}/${repo}/contents/${subPath}`
	: `/api/github/repos/${owner}/${repo}/contents`
	const { data: ghEntries } = await api.get<Array<{ name: string; path: string; type: string; size?: number }>>(
	contentsUrl

[Copilot]

ghEntries is assumed to be an array, but the Contents API can return an object (file metadata) or an error payload (e.g., { message: ... }). If that happens, (ghEntries || []).filter(...) will throw at runtime. Guard with Array.isArray(ghEntries) (and handle non-array responses by showing an empty listing / error message).

Suggested change

	const entries: BrowseEntry[] = (ghEntries || [])
	const ghArray = Array.isArray(ghEntries) ? ghEntries : []
	const entries: BrowseEntry[] = ghArray

[Copilot]

Decoding base64 via atob() can corrupt non-ASCII UTF-8 content (e.g., Markdown headings with unicode). Prefer decoding base64 to bytes and then new TextDecoder('utf-8').decode(...) so file previews render correctly for all UTF-8 text.

Suggested change

	content = atob(ghFile.content.replace(/\n/g, ''))
	const binaryString = atob(ghFile.content.replace(/\n/g, ''))
	const bytes = new Uint8Array(binaryString.length)
	for (let i = 0; i < binaryString.length; i += 1) {
	bytes[i] = binaryString.charCodeAt(i)
	}
	content = new TextDecoder('utf-8').decode(bytes)

[Copilot]

The download_url fallback uses a direct fetch() to raw.githubusercontent.com with no timeout, no status check, and no auth. This can hang, and it will fail for private repos (and potentially hit CORS) even when the proxied Contents API call succeeded with a PAT. Consider using the proxied GitHub API instead (e.g., use the sha from the contents response to call /api/github/repos/{owner}/{repo}/git/blobs/{sha}), or add a backend-side fetch for download_url so auth stays server-side and timeouts/status are enforced.

[Copilot]

Path segments are interpolated directly into the URL. If owner, repo, or filePath contains characters that need escaping (spaces, #, etc.), the request can break or hit the wrong endpoint. Encode path segments when building /api/github/repos/.../contents/... (encode each segment but preserve / separators).

Suggested change

	const { data: ghFile } = await api.get<{ content?: string; encoding?: string; download_url?: string }>(
	`/api/github/repos/${owner}/${repo}/contents/${filePath}`
	const encodedOwner = encodeURIComponent(owner)
	const encodedRepo = encodeURIComponent(repo)
	const encodedFilePath = filePath
	.split('/')
	.map((segment) => encodeURIComponent(segment))
	.join('/')
	const { data: ghFile } = await api.get<{ content?: string; encoding?: string; download_url?: string }>(
	`/api/github/repos/${encodedOwner}/${encodedRepo}/contents/${encodedFilePath}`

[clubanderson]

🔄 Auto-Applying Copilot Code Review

Copilot code review found 4 code suggestion(s) and 1 general comment(s).

@copilot Please apply all of the following code review suggestions:

• web/src/components/missions/MissionBrowser.tsx (line 672): const [owner, repo, ...subParts] = repoPath.split('/') const subPath =...
• web/src/components/missions/MissionBrowser.tsx (line 674): const ghArray = Array.isArray(ghEntries) ? ghEntries : [] const entrie...
• web/src/components/missions/MissionBrowser.tsx (line 713): const binaryString = atob(ghFile.content.replace(/\n/g, '')) const b...
• web/src/components/missions/MissionBrowser.tsx (line 709): const encodedOwner = encodeURIComponent(owner) const encodedRepo = enc...

Also address these general comments:

• web/src/components/missions/MissionBrowser.tsx (line 717): The download_url fallback uses a direct fetch() to raw.githubusercontent.com with no timeout, no status check, and

Push all fixes in a single commit. Run cd web && npm run build && npm run lint before committing.

---

Auto-generated by copilot-review-apply workflow.