Add DevBuild identity CI marker check#936
Conversation
Co-authored-by: Copilot App <223556219+Copilot@users.noreply.github.com>
|
Codex review: needs maintainer review before merge. Reviewed July 6, 2026, 11:41 PM ET / 03:41 UTC. Summary Reproducibility: yes. for the linked CI gap: source inspection shows current main writes the DevBuild marker but the workflow does not assert it. For this PR, the diff directly adds that missing assertion. Review metrics: 1 noteworthy metric.
Root-cause cluster Members:
Proposal only: this assessment does not dispatch repair, suppress jobs, mutate sibling items, close, or merge anything. Merge readiness Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch. Rank-up moves:
Risk before merge
Maintainer options:
Next step before merge
Security Review detailsBest possible solution: Land the narrow workflow guard after the current CI run proves the new DevBuild marker step passes in GitHub Actions. Do we have a high-confidence way to reproduce the issue? Yes for the linked CI gap: source inspection shows current main writes the DevBuild marker but the workflow does not assert it. For this PR, the diff directly adds that missing assertion. Is this the best way to solve the issue? Yes. This is the narrowest maintainable fix for the linked request: reuse the existing build marker contract and fail CI when the explicit DevBuild build does not produce AGENTS.md: found and applied where relevant. Codex review notes: model internal, reasoning high; reviewed against b3a2b4ee75e2. Label changesLabel changes:
Label justifications:
Evidence reviewedWhat I checked:
Likely related people:
What the crustacean ranks mean
Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics. How this review workflow works
|
Summary
-p:DevBuild=true.app-identity.txtmarker containsdev, so dev identity remains opt-in and covered.Closes #934.
Validation
.\build.ps1— passed.dotnet test .\tests\OpenClaw.Shared.Tests\OpenClaw.Shared.Tests.csproj --no-restore— 2703 passed / 31 skipped.dotnet test .\tests\OpenClaw.Tray.Tests\OpenClaw.Tray.Tests.csproj --no-restore— 1584 passed.dotnet build .\src\OpenClaw.Tray.WinUI -c Debug -r win-x64 -p:DevBuild=true --no-restoreplus marker assertion —app-identity.txt: dev.git --no-pager diff --check— passed.Real behavior proof
The new CI command was run locally and verified the DevBuild output marker at
src\OpenClaw.Tray.WinUI\bin\Debug\net10.0-windows10.0.22621.0\win-x64\app-identity.txtcontainsdev.Notes
This does not change product behavior. It only adds CI coverage for the already-explicit DevBuild identity path.