ci: soften contribution intake gates

2026-06-03 20:27:14 -07:00
parent 98edba3683
commit 42d27c0095
7 changed files with 112 additions and 45 deletions
@@ -1,4 +1,4 @@
-name: Contribution gate - issues
+name: Contribution intake - issues

 on:
  issues:
@@ -8,16 +8,11 @@ permissions:
  contents: read
  issues: write

-env:
-  # Keep new gates observable first. Switch to "enforce" only after maintainers
-  # have seeded active contributors and reviewed the dry-run signal.
-  CONTRIBUTION_GATE_MODE: dry-run
-
 jobs:
  gate:
    runs-on: ubuntu-latest
    steps:
-      - name: Gate unapproved external issues
+      - name: Welcome new external issue reporters
        uses: actions/github-script@v7
        with:
          script: |
@@ -25,12 +20,6 @@ jobs:
            const owner = context.repo.owner;
            const repo = context.repo.repo;
            const privileged = new Set(['OWNER', 'MEMBER', 'COLLABORATOR']);
-            const gateMode = (process.env.CONTRIBUTION_GATE_MODE || 'dry-run').trim().toLowerCase();
-            const enforceGate = gateMode === 'enforce';
-
-            if (!['dry-run', 'enforce'].includes(gateMode)) {
-              core.warning(`Unknown CONTRIBUTION_GATE_MODE "${gateMode}"; defaulting to dry-run.`);
-            }

            if (privileged.has(issue.author_association)) return;
            if (issue.user.login === 'github-actions[bot]') return;
@@ -71,29 +60,25 @@ jobs:
              return;
            }

-            const gateMessage = enforceGate
-              ? 'This repository currently uses a maintainer-managed contribution gate, so issues from contributors who are not listed in `.github/APPROVED_CONTRIBUTORS` are closed automatically.'
-              : 'This repository is currently observing a maintainer-managed contribution gate in dry-run mode, so this issue is staying open. When enforcement is enabled, issues from contributors who are not listed in `.github/APPROVED_CONTRIBUTORS` will be closed automatically.';
+            const marker = '<!-- codewhale-issue-intake -->';
+            const { data: comments } = await github.rest.issues.listComments({
+              owner,
+              repo,
+              issue_number: issue.number,
+              per_page: 100,
+            });
+            if (comments.some(comment => (comment.body || '').includes(marker))) return;

            await github.rest.issues.createComment({
              owner,
              repo,
              issue_number: issue.number,
              body: [
+                marker,
                `Thanks @${issue.user.login} for the report.`,
                '',
-                gateMessage,
+                'This issue is staying open for maintainer triage. CodeWhale gets better because people bring us real edge cases from real machines, providers, regions, and workflows.',
                '',
-                'Please read `CONTRIBUTING.md` for the expected issue shape. A maintainer can grant issue access by commenting `/lgtmi` on an issue.',
+                'If you can add a reproduction, logs, version output, screenshots, or the provider/model involved, that makes it much easier for us to verify and harvest the fix. Maintainers may comment `/lgtmi` to mark recurring issue reporters as approved so this intake note is skipped next time.',
              ].join('\n'),
            });
-
-            if (!enforceGate) return;
-
-            await github.rest.issues.update({
-              owner,
-              repo,
-              issue_number: issue.number,
-              state: 'closed',
-              state_reason: 'not_planned',
-            });
@@ -73,8 +73,8 @@ jobs:
            }

            const gateMessage = enforceGate
-              ? 'This repository currently uses a maintainer-managed contribution gate, so pull requests from contributors who are not listed in `.github/APPROVED_CONTRIBUTORS` are closed automatically.'
-              : 'This repository is currently observing a maintainer-managed contribution gate in dry-run mode, so this pull request is staying open. When enforcement is enabled, pull requests from contributors who are not listed in `.github/APPROVED_CONTRIBUTORS` will be closed automatically.';
+              ? 'This repository currently limits automated PR intake to contributors listed in `.github/APPROVED_CONTRIBUTORS`. This is a maintainer-safety control for code review and CI load, not a judgment on the contribution. A maintainer can reopen or grant access with `/lgtm` after review.'
+              : 'This repository is observing a maintainer-managed PR intake gate in dry-run mode, so this pull request is staying open. This note helps maintainers prepare the allowlist before any enforcement is considered.';

            await github.rest.issues.createComment({
              owner,
@@ -85,7 +85,7 @@ jobs:
                '',
                gateMessage,
                '',
-                'Please read `CONTRIBUTING.md` for the expected contribution shape. A maintainer can grant PR access by commenting `/lgtm` on a pull request.',
+                'Please read `CONTRIBUTING.md` for the expected contribution shape. A maintainer can grant recurring PR access by commenting `/lgtm` on a pull request.',
              ].join('\n'),
            });