ROX-31146: Reduce spam of Konflux PRs, releasers can approve by msugakov · Pull Request #17968 · stackrox/stackrox

msugakov · 2025-11-26T14:19:44Z

Description

Same as stackrox/scanner#2438 and stackrox/collector#2693 but applied to StackRox.
We don't have auto-approve workflow here but we still need @rhacs-bot to be the codeowner. Otherwise no-notification magic won't work. Perhaps we'll add auto-approve in the future.

User-facing documentation

CHANGELOG.md is updated OR update is not needed
documentation PR is created and is linked above OR is not needed

Testing and quality

the change is production ready: the change is GA, or otherwise the functionality is gated by a feature flag
CI results are inspected

Automated testing

No change.

How I validated my change

Tested on the Scanner repo before. Also tested the updated command on a fork.

sourcery-ai

Hey there - I've reviewed your changes - here's some feedback:

Since this workflow relies on RHACS_BOT_GITHUB_TOKEN, consider adding a guard like if: github.event.pull_request.head.repo.full_name == github.repository at the job level to avoid unnecessary failures on PRs from forks where the secret is unavailable.
To make the intent clearer and avoid accidental triggering in other review-request scenarios, you could explicitly check the action type in the job condition (e.g. if: github.event.action == 'review_requested' && github.event.requested_team.name == 'konflux-maintainers-no-email' && github.event.pull_request.user.login != 'red-hat-konflux[bot]').

Prompt for AI Agents

Please address the comments from this code review:

## Overall Comments
- Since this workflow relies on `RHACS_BOT_GITHUB_TOKEN`, consider adding a guard like `if: github.event.pull_request.head.repo.full_name == github.repository` at the job level to avoid unnecessary failures on PRs from forks where the secret is unavailable.
- To make the intent clearer and avoid accidental triggering in other review-request scenarios, you could explicitly check the action type in the job condition (e.g. `if: github.event.action == 'review_requested' && github.event.requested_team.name == 'konflux-maintainers-no-email' && github.event.pull_request.user.login != 'red-hat-konflux[bot]'`).

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

rhacs-bot · 2025-11-26T14:55:36Z

Images are ready for the commit at 2d5bcee.

To use with deploy scripts, first export MAIN_IMAGE_TAG=4.10.x-444-g2d5bcee94a.

codecov · 2025-11-26T15:01:13Z

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 49.45%. Comparing base (197fcee) to head (2d5bcee).
⚠️ Report is 42 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff             @@
##           master   #17968      +/-   ##
==========================================
- Coverage   49.48%   49.45%   -0.04%     
==========================================
  Files        2697     2699       +2     
  Lines      198048   198270     +222     
==========================================
+ Hits        98010    98060      +50     
- Misses      92402    92605     +203     
+ Partials     7636     7605      -31

Flag	Coverage Δ
go-unit-tests	`49.45% <ø> (-0.04%)`	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

.github/workflows/tag-more-reviewers.yaml

msugakov · 2025-12-02T17:56:47Z

Tested gh pr edit approach:

https://github.com/stackrox/mishas-operator-index-fork/actions/runs/19868379156/job/56937179337?pr=1

https://github.com/stackrox/mishas-operator-index-fork/pull/1

Note: both links will stop working as I plan to delete that test repo.

From stackrox/collector#2693

Credits to Tomek stackrox/stackrox#17968 (comment)

msugakov added 2 commits November 26, 2025 15:16

Update codeowners

6fbef80

Add workflow for tagging konflux-maintainers for review

74dedf8

msugakov requested a review from a team as a code owner November 26, 2025 14:19

msugakov requested a review from tommartensen November 26, 2025 14:20

github-actions bot added area/ci ai-review labels Nov 26, 2025

sourcery-ai bot reviewed Nov 26, 2025

View reviewed changes

msugakov requested a review from vjwilson November 26, 2025 14:20

tommartensen approved these changes Nov 26, 2025

View reviewed changes

janisz reviewed Nov 26, 2025

View reviewed changes

.github/workflows/tag-more-reviewers.yaml Show resolved Hide resolved

janisz reviewed Nov 26, 2025

View reviewed changes

.github/workflows/tag-more-reviewers.yaml Outdated Show resolved Hide resolved

janisz reviewed Nov 26, 2025

View reviewed changes

.github/workflows/tag-more-reviewers.yaml Outdated Show resolved Hide resolved

msugakov mentioned this pull request Nov 28, 2025

ROX-31146: Reduce spam of Konflux PRs, releasers can approve stackrox/collector#2693

Merged

1 task

Get rid of exec, switch to gh pr edit

2fdfa9b

msugakov requested a review from janisz December 2, 2025 17:57

Updated CODEOWNERS comment

2d5bcee

From stackrox/collector#2693

janisz approved these changes Dec 3, 2025

View reviewed changes

msugakov merged commit 4bb9327 into master Dec 3, 2025
107 of 112 checks passed

msugakov deleted the misha/ROX-31146-reduce-konflux-spam branch December 3, 2025 09:58

msugakov added a commit to stackrox/collector that referenced this pull request Dec 3, 2025

Switch to a simpler way to tag reviewers with gh cli

7097341

Credits to Tomek stackrox/stackrox#17968 (comment)

msugakov mentioned this pull request Dec 3, 2025

ROX-31146: Make Konflux/MintMaker review tagging consistent stackrox/scanner#2458

Merged

msugakov added a commit that referenced this pull request Dec 3, 2025

ROX-31146: Reduce spam of Konflux PRs, releasers can approve (#17968)

0a488f3

msugakov mentioned this pull request Dec 3, 2025

ROX-31146: Reduce Konflux PRs spam, releasers can approve / 4.9 #18038

Merged

msugakov added a commit that referenced this pull request Dec 3, 2025

ROX-31146: Reduce spam of Konflux PRs, releasers can approve (#17968)

1603645

msugakov mentioned this pull request Dec 3, 2025

ROX-31146: Reduce Konflux PRs spam, releasers can approve / 4.8 #18039

Merged

msugakov added a commit that referenced this pull request Dec 3, 2025

ROX-31146: Reduce spam of Konflux PRs, releasers can approve (#17968)

96641b8

msugakov mentioned this pull request Dec 3, 2025

ROX-31146: Reduce Konflux PRs spam, releasers can approve / 4.7 #18040

Merged

ajheflin pushed a commit that referenced this pull request Dec 3, 2025

ROX-31146: Reduce spam of Konflux PRs, releasers can approve (#17968)

535b6a5

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ROX-31146: Reduce spam of Konflux PRs, releasers can approve#17968

ROX-31146: Reduce spam of Konflux PRs, releasers can approve#17968
msugakov merged 4 commits intomasterfrom
misha/ROX-31146-reduce-konflux-spam

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Conversation

Uh oh!

Description

User-facing documentation

Testing and quality

Automated testing

How I validated my change

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Codecov Report

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants