Skip to content

feat(linter): warn on social action approval gaps#1

Open
kriptoburak wants to merge 2 commits into
ollieb89:mainfrom
kriptoburak:codex/social-action-approval-lint
Open

feat(linter): warn on social action approval gaps#1
kriptoburak wants to merge 2 commits into
ollieb89:mainfrom
kriptoburak:codex/social-action-approval-lint

Conversation

@kriptoburak

Copy link
Copy Markdown

Summary

  • Adds a warning when a SKILL.md appears to drive social, browser, or publishing actions without an explicit approval or no-submit boundary.
  • Adds a regression test for the new warning.
  • Fixes the ClawHub spelling in README and SPEC.

Validation

  • npm test -- --runInBand
  • npm run lint
  • git diff --check

Notes

npm ci reported existing dependency audit findings before the tests ran; this PR does not change dependencies.

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 45b25f954e

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Comment thread src/linter.ts Outdated
Comment on lines +116 to +117
if (SOCIAL_ACTION_RE.test(actionText) && !APPROVAL_BOUNDARY_RE.test(actionText)) {
addIssue('warning', 'action-approval-boundary-missing', 'Skill appears to drive social or browser actions but does not mention an explicit approval or no-submit boundary');

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Commit the rebuilt dist linter

The new rule is only added in src, but the shipped entry points still execute the committed build output: action.yml runs dist/index.js, and package.json points both main and bin at dist. In this commit dist/linter.js still has no action-approval-boundary-missing or SOCIAL_ACTION_RE, so GitHub Action/npm CLI users never see the new warning and fail-on: warnings will not behave as documented until the rebuilt dist files are committed.

Useful? React with 👍 / 👎.

@kriptoburak

Copy link
Copy Markdown
Author

Pushed e8f86d2 to flag negated social approval wording and rebuilt dist/linter.js for the GitHub Action entrypoint. Validation: npm test, npm run build, git diff --check.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant