chore(ci): do not run ci on pushes to main or dev

[drazisil]

Summary by CodeRabbit

• Chores
  • Updated the CI workflow configuration to exclude push events from the main and dev branches, streamlining the development process and optimizing CI resource management.
  • Disabled automatic triggering of CodeQL analysis on pushes and pull requests targeting the main branch while maintaining the scheduled analysis.

[coderabbitai]

Caution

Review failed

The pull request is closed.

Walkthrough

Walkthrough

The recent updates to the GitHub Actions workflows modify the triggering conditions for CI processes by excluding the main and dev branches. This strategic adjustment aims to optimize resource usage and direct attention to other branches, while still allowing for scheduled analysis tasks to continue without interruption.

Changes

Files	Change Summary
.github/workflows/node.yml	Modified push event triggers to exclude main and dev branches from CI workflow initiation.
.github/workflows/codeql-analysis.yml	Commented out push and pull request triggers for the main branch, disabling immediate CodeQL analysis on changes to main.

Poem

🐰 In the garden where code does bloom,
The branches dance, dispelling gloom.
With main and dev now taking a rest,
Focused on branches that are at their best.
Hopping along, our CI's refined,
A streamlined flow for the clever and kind! 🌼✨

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[codecov]

The main change I see in this Git diff restricts the workflow run for push on certain branches. In this case it won't run on main or dev branch which can be problematic if you want to make sure the code builds successfully before merging into these branches.

[codecov]

The changes in the provided Git diff are primarily about limiting the trigger of the workflow to particular branches. However, this approach could potentially disable continuous integration(CI) on the 'main' and 'dev' branches. Adhering to common practices, we would want CI to run on every push action to any branches especially to 'main' and 'dev' branches. This is to ensure the code merged/pushed into these branches are always in a healthy state. Without CI on these branches, there might be serious risks for unnoticed errors.

[codecov]

The changes to the workflow configuration mostly look good. There is, however, a potential logic conflict as the workflow is set to trigger on all branches except for 'main' and 'dev' when a push is made. This might not be the desired behavior for the project. Also, there are no branches specified for pull_request and workflow_dispatch events, which could lead to unexpected behavior.

[coderabbitai]

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 646aa88 and d1715d8.

Files selected for processing (1)

• .github/workflows/node.yml (1 hunks)

Additional comments not posted (1)

.github/workflows/node.yml (1)

5-7: Verify the impact of excluding main and dev branches from CI triggers.

The changes exclude pushes to the main and dev branches from triggering the CI workflow. Ensure that this aligns with your CI/CD strategy and that no critical builds are missed as a result.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 33.20%. Comparing base (bf8bd2b) to head (e255a35).
Report is 1 commits behind head on dev.

✅ All tests successful. No failed tests found.

Additional details and impacted files

@@            Coverage Diff             @@
##              dev    #2027      +/-   ##
==========================================
+ Coverage   30.08%   33.20%   +3.11%     
==========================================
  Files         207      207              
  Lines        9033    13593    +4560     
  Branches      349      480     +131     
==========================================
+ Hits         2718     4513    +1795     
- Misses       6315     9080    +2765     

Flag	Coverage Δ		*Carryforward flag
cli	23.66% <ø> (ø)
connection	23.66% <ø> (ø)
core	100.00% <ø> (ø)		Carriedforward from f5afad9
database	30.76% <ø> (ø)
gateway	7.91% <ø> (-28.75%)	⬇️	Carriedforward from f5afad9
lobby	21.42% <ø> (-12.24%)	⬇️	Carriedforward from f5afad9
login	40.28% <ø> (-25.90%)	⬇️	Carriedforward from f5afad9
mcots	23.66% <ø> (ø)
nps	23.66% <ø> (ø)
patch	65.04% <ø> (ø)
persona	37.52% <ø> (-27.08%)	⬇️	Carriedforward from f5afad9
shard	47.71% <ø> (ø)
shared	23.75% <ø> (ø)
shared-packets	23.66% <ø> (ø)
transactions	56.16% <ø> (+15.01%)	⬆️	Carriedforward from f5afad9

*This pull request uses carry forward flags. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[codecov]

CodecovAI submitted a new review for a8e198f

[codecov]

CodecovAI submitted a new review for a8e198f

[codecov]

CodecovAI submitted a new review for f5afad9

[codecov]

Disabling CodeQL analysis on push to main might be a risk. This would mean no static code analysis would be performed to identify vulnerabilities when code is pushed onto the main branch.

[codecov]

Skipping push event actions on 'main' branch could lead to untested code getting into 'main', which is generally considered as production-ready or release branch. We should ensure all tests and actions are still performed on push to these 'main' branch to prevent any issues with the production code.

[codecov]

The 'merge_group:' key does not exist in GitHub action workflows. Carefully review the workflow yaml configurations for valid syntax.

[codecov]

CodecovAI submitted a new review for f5afad9

[codecov]

Commenting out 'push' events on line 9 and 10 suggests that the workflow will not run on push events. Ensuring regular code scans are run can be important for maintaining code quality; you may want to reconsider this change.

[codecov]

Commenting out lining 11 and 12 results in all branches triggering a workflow run when a pull request is made. Depending on your project's branch strategy this may be excessive and cause unnecessary use of action minutes.

[codecov]

On line 28, the 'branches' trigger is set to exclude 'main' and 'dev'. The reason should be clarified and relevant documentation updated accordingly.

[codecov]

On line 33, 'merge_group' is not a known event type in GitHub Actions. Please correct this to a valid trigger event type.

[coderabbitai]

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between d1715d8 and f5afad9.

Files selected for processing (2)

• .github/workflows/codeql-analysis.yml (1 hunks)
• .github/workflows/node.yml (1 hunks)

Files skipped from review due to trivial changes (1)

• .github/workflows/codeql-analysis.yml

Files skipped from review as they are similar to previous changes (1)

• .github/workflows/node.yml

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

[deepsource-io]

Here's the code health analysis summary for commits d0bdb42..e255a35. View details on DeepSource ↗.

Analysis Summary

Analyzer	Status	Summary	Link
JavaScript	✅ Success		View Check ↗

---

💡 If you’re a repository administrator, you can configure the quality gates from the settings.