Skip to content

fix: post AI review comments inline to actual files instead of single giant comment #27

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
adslaton wants to merge 4 commits into from
Closed

fix: post AI review comments inline to actual files instead of single giant comment #27

adslaton wants to merge 4 commits into from

Conversation

@adslaton
Copy link
Contributor

@adslaton adslaton commented Aug 8, 2025

Summary

This PR fixes the AI review system to post comments inline to the actual files and lines where issues are found, instead of posting one giant comment with all suggestions.

Changes Made

  • Updated postSuggestionsToGitHub() to post ALL suggestions as inline comments (not just high-confidence ones)
  • Created generateAllInlineComments() method to handle all confidence levels (≥50%)
  • Increased resolvable suggestion limit from 5 to 8 for better coverage
  • Added fallback handling for failed inline comments with graceful degradation
  • Simplified summary comment to avoid duplication with inline comments
  • Standardized line_number field handling across services
  • Added helper methods: getConfidenceLabel(), inferLineNumber()
  • Updated tests to match new inline comment behavior

Benefits

Better UX: Suggestions appear exactly where they belong in the code
Contextual feedback: Reviewers see suggestions while reading relevant code
GitHub integration: Uses GitHub's native inline comment and resolvable suggestion features
Reduced noise: No more giant comment blocks to scroll through
Maintained functionality: All existing features still work with robust fallbacks

Before vs After

Before

  • Single giant comment with all suggestions listed
  • Users had to scroll through large comment blocks
  • Suggestions were disconnected from their code context

After

  • Individual inline comments on specific files and lines
  • Suggestions appear contextually while reviewing code
  • High-confidence suggestions (≥95%) become resolvable with one-click application
  • Fallback to regular comments if inline posting fails

Test Plan

  • All existing tests pass
  • Updated tests for new inline comment behavior
  • Linting and security scans pass
  • Demo functionality verified

Risk Assessment

Low Risk - The changes maintain backward compatibility and include robust fallback mechanisms. If inline comments fail, the system gracefully falls back to regular comments.

🤖 Generated with Claude Code

@actions-user @claude
fix: post AI review comments inline to actual files instead of single…
473f3d9 
… giant comment

- Update postSuggestionsToGitHub() to post ALL suggestions as inline comments
- Create generateAllInlineComments() method to handle all confidence levels (≥50%)
- Increase resolvable suggestion limit from 5 to 8
- Add fallback handling for failed inline comments
- Simplify summary comment to avoid duplication with inline comments
- Standardize line_number field handling across services
- Add helper methods: getConfidenceLabel(), inferLineNumber()
- Update tests to match new inline comment behavior

Benefits:
- Better UX: suggestions appear exactly where they belong in code
- Contextual feedback: reviewers see suggestions while reading relevant code
- Uses GitHub's native inline comment and resolvable suggestion features
- Reduces noise from giant comment blocks
- Maintains all existing functionality with robust fallbacks

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>
@github-actions
Copy link

github-actions bot commented Aug 8, 2025
edited
Loading

🔒 Security Scan Results

🚨 npm audit - Vulnerable Dependencies (3 found)

  • low: external-editor

    • Versions: >=1.1.1
    • Via: tmp

  • low: inquirer

    • Versions: 3.0.0 - 9.3.7
    • Via: external-editor

  • Error parsing npm audit results

⚠️ audit-ci Security Check

No results file generated.

✅ ESLint Security Analysis

No security issues found.

Summary: Found 3 total security issues that need attention.

🏷️ Automated Fix: The label will be added to trigger AI-assisted security fixes.

📦 Full Reports: Download the artifact for complete JSON reports.

@github-actions github-actions bot added the ai-fix-security Automatically added when security scans fail label Aug 8, 2025
@adslaton adslaton self-assigned this Aug 8, 2025
@actions-user
fix: correct emergency-controls workflow trigger syntax
1b7066f 
The 'on' keyword should not be quoted in YAML workflow files.
This was causing GitHub Actions to incorrectly trigger the
emergency-controls workflow on push events instead of only
on manual workflow_dispatch.
@actions-user
fix: prevent emergency-controls workflow from running on push events
6268a33 
Add explicit check for workflow_dispatch event type to ensure
emergency controls only run when manually triggered, never on
push or pull_request events.
@actions-user
fix: resolve emergency-controls workflow timeout-minutes syntax error
2d3fe0e 
- Remove invalid use of env context in timeout-minutes (not available at job level)
- Use hardcoded value of 10 minutes instead of fromJSON(env.EMERGENCY_TIMEOUT_MINUTES)
- Remove unused env section from workflow file

Fixes GitHub Actions error: 'Unrecognized named-value: env' in timeout-minutes
@adslaton adslaton added the ai-review-needed Manual trigger to request AI review of PR label Aug 8, 2025
@adslaton adslaton closed this Aug 8, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@adslaton adslaton

Labels

ai-fix-security Automatically added when security scans fail ai-review-needed Manual trigger to request AI review of PR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@adslaton @actions-user