Files
pnpm/.github/workflows/triage-issues.yml
dependabot[bot] fd20a6ee8a chore(deps): bump the github-actions group across 1 directory with 11 updates (#12785)
Bumps the github-actions group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `6.0.3` | `7.0.0` |
| [bencherdev/bencher](https://github.com/bencherdev/bencher) | `0.6.7` | `0.6.8` |
| [actions/cache/restore](https://github.com/actions/cache) | `5.0.5` | `6.1.0` |
| [actions/cache/save](https://github.com/actions/cache) | `5.0.5` | `6.1.0` |
| [taiki-e/install-action](https://github.com/taiki-e/install-action) | `2.82.0` | `2.82.5` |
| [actions/cache](https://github.com/actions/cache) | `5.0.5` | `6.1.0` |
| [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) | `4.1.0` | `4.1.1` |
| [softprops/action-gh-release](https://github.com/softprops/action-gh-release) | `3.0.0` | `3.0.1` |
| [warpdotdev/oz-agent-action](https://github.com/warpdotdev/oz-agent-action) | `1.0.19` | `1.0.21` |
| [cbrgm/mastodon-github-action](https://github.com/cbrgm/mastodon-github-action) | `2.2.1` | `2.2.2` |
| [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action) | `0.5.6` | `0.5.7` |



Updates `actions/checkout` from 6.0.3 to 7.0.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v6.0.3...9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0)

Updates `bencherdev/bencher` from 0.6.7 to 0.6.8
- [Release notes](https://github.com/bencherdev/bencher/releases)
- [Commits](ec56bb69a7...5f9d4cf890)

Updates `actions/cache/restore` from 5.0.5 to 6.1.0
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](27d5ce7f10...55cc834586)

Updates `actions/cache/save` from 5.0.5 to 6.1.0
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](27d5ce7f10...55cc834586)

Updates `taiki-e/install-action` from 2.82.0 to 2.82.5
- [Release notes](https://github.com/taiki-e/install-action/releases)
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md)
- [Commits](b8cecb8356...bffeee26d4)

Updates `actions/cache` from 5.0.5 to 6.1.0
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](27d5ce7f10...55cc834586)

Updates `actions/attest-build-provenance` from 4.1.0 to 4.1.1
- [Release notes](https://github.com/actions/attest-build-provenance/releases)
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md)
- [Commits](a2bbfa2537...0f67c3f485)

Updates `softprops/action-gh-release` from 3.0.0 to 3.0.1
- [Release notes](https://github.com/softprops/action-gh-release/releases)
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md)
- [Commits](b430933298...718ea10b13)

Updates `warpdotdev/oz-agent-action` from 1.0.19 to 1.0.21
- [Release notes](https://github.com/warpdotdev/oz-agent-action/releases)
- [Commits](501d24fbf4...1922f22c00)

Updates `cbrgm/mastodon-github-action` from 2.2.1 to 2.2.2
- [Release notes](https://github.com/cbrgm/mastodon-github-action/releases)
- [Commits](244bbe72e6...ac2d8e8c99)

Updates `zizmorcore/zizmor-action` from 0.5.6 to 0.5.7
- [Release notes](https://github.com/zizmorcore/zizmor-action/releases)
- [Commits](5f14fd08f7...192e21d79a)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: bencherdev/bencher
  dependency-version: 0.6.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/cache/restore
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/cache/save
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: taiki-e/install-action
  dependency-version: 2.82.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/cache
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/attest-build-provenance
  dependency-version: 4.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: softprops/action-gh-release
  dependency-version: 3.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: warpdotdev/oz-agent-action
  dependency-version: 1.0.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: cbrgm/mastodon-github-action
  dependency-version: 2.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: zizmorcore/zizmor-action
  dependency-version: 0.5.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-08 01:12:37 +02:00

70 lines
3.0 KiB
YAML

name: Triage New Issues
# Runs an Oz cloud agent with the repo's "triage" skill whenever a new issue is
# opened, classifying it into exactly one implementation-readiness state and
# applying the matching pnpm `state:` label.
#
# Setup:
# - The WARP_API_KEY repository secret must hold a team-scoped Oz API key.
# - The Oz by Warp GitHub App must have access to this repository and the org
# must be enabled in Warp's Admin Panel.
# - The triage skill lives at .agents/skills/triage/ and is resolved by the
# action's `skill` input below.
on:
issues:
types: [opened]
# Avoid duplicate triage runs if the same issue fires overlapping events.
concurrency:
group: triage-issue-${{ github.event.issue.number }}
cancel-in-progress: true
jobs:
triage:
name: Triage issue
runs-on: ubuntu-latest
# Skip automated issues (Renovate, Dependabot, bots) — they are not user
# reports and each triage run consumes Warp credits.
if: github.event.issue.user.type != 'Bot'
permissions:
contents: read # let the agent inspect the checked-out codebase
issues: write # let the agent apply labels and comment
steps:
- name: Checkout repository
uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
with:
persist-credentials: false
- name: Triage with Oz agent
uses: warpdotdev/oz-agent-action@1922f22c008c6263607a398f31c80299349a1fa6 # v1.0.21
id: triage
env:
# Authenticates the `gh` CLI the agent uses to read/label/comment.
GH_TOKEN: ${{ github.token }}
with:
# Uses .agents/skills/triage/SKILL.md as the base prompt.
skill: triage
name: "Triage issue #${{ github.event.issue.number }}"
# Only inject GitHub-generated, non-freeform values to avoid prompt
# injection; the agent fetches title/body/comments itself via `gh`.
prompt: |
Triage the GitHub issue that was just opened in this repository.
- Repository: ${{ github.repository }}
- Issue number: #${{ github.event.issue.number }}
- Issue URL: ${{ github.event.issue.html_url }}
Follow the triage skill: use the `gh` CLI to fetch the full issue
(title, body, comments, existing labels) and related open issues,
inspect this checked-out codebase, then choose exactly one
implementation-readiness state and apply the matching pnpm `state:`
label as defined in the skill's pnpm label mapping. Post status
comments as directed by the triage skill, using only an Oz run or Oz
session URL as the follow-along link. Do not use the GitHub Actions
workflow URL as the follow-along link. After labeling, post your
triage result as a comment on the issue using
`gh issue comment #${{ github.event.issue.number }}`.
warp_api_key: ${{ secrets.WARP_API_KEY }}
profile: ${{ vars.WARP_AGENT_PROFILE || '' }}