Skip to content

chore: update repository references after transfer#4

Merged
trunk-io[bot] merged 6 commits into
mainfrom
chore/update-post-transfer-references
Jul 5, 2026
Merged

chore: update repository references after transfer#4
trunk-io[bot] merged 6 commits into
mainfrom
chore/update-post-transfer-references

Conversation

@jwilger

@jwilger jwilger commented Jul 5, 2026

Copy link
Copy Markdown
Owner

Updates post-transfer repository references and moves workflow runtime secret access
to the shared 1Password Github Secrets vault.

This only changes repositories that were part of the slipstream-eng migration
inventory.

Secret-loading changes:

  • keep OP_SERVICE_ACCOUNT_TOKEN as the only GitHub Actions bootstrap secret
  • load runtime values with 1password/load-secrets-action@v4
  • use op://Github Secrets/... references for cargo/Hex publish tokens,
    the GitHub release automation PAT, and the release signing SSH key
  • remove Codecov and OpenAI/Anthropic/Claude token usage from CI
  • use npm trusted publishing/OIDC instead of NPM_TOKEN
  • keep built-in GITHUB_TOKEN usage unchanged

Runner migration:

  • replace self-hosted-gregor with ubuntu-latest where the transferred
    personal-account repos no longer have an eligible shared runner
  • add the repo-standard Determinate Systems Nix installer/cache actions before
    nix develop steps where needed

Verification run where applicable:

  • git diff --check
  • YAML parse check with Python yaml.safe_load
  • actionlint

Notes:

  • Historical generated changelog links were left alone.
  • Forgejo product/runtime references were left alone unless they pointed at
    migrated source repositories.
  • The remaining 1Password runtime secrets are populated: Cargo, Hex, GitHub
    release automation PAT, and release signing key.
  • GH_RELEASE_AUTOMATION_TOKEN is a fine-grained PAT. Required repository
    permissions: Contents read/write, Pull requests read/write, Issues read/write
    for release-please repos, Metadata read-only. Do not grant Actions/Workflows
    unless release automation must edit workflow files; do not grant
    Administration unless protected tag rules block release tag creation.
  • npm packages must be configured in npm as trusted publishers for their
    GitHub repository and publish workflow before tokenless npm publishing works.

@coderabbitai

coderabbitai Bot commented Jul 5, 2026

Copy link
Copy Markdown

Warning

Review limit reached

You’ve reached a temporary PR review limit under our Fair Usage Limits Policy.

Your recent review volume is higher than typical usage, so adaptive limits are currently applied.

Next review available in: 12 minutes

Enable usage-based reviews in Billing to review now. Otherwise, wait until the next included review is available.
You're only billed for reviews past your plan's rate limits ($0.25/file).

How can I continue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

To avoid repeated limits, reduce automatic review volume by pausing incremental auto-reviews earlier, using label-based review opt-in, excluding WIP or generated PR titles, or requesting reviews manually when the PR is ready. If your team needs uninterrupted high-volume reviews, an organization admin can enable usage-based reviews.

How do review limits work?

CodeRabbit enforces per-developer PR review limits for each organization. Most developers receive the normal plan review availability.

For paid Pro and Pro+ PR reviews, CodeRabbit uses adaptive limits for sustained high-volume activity. When a developer's recent PR review activity reaches the 95th percentile or higher among CodeRabbit users, additional reviews become available more gradually as earlier reviews age out of the rolling window.

Please refer docs for additional details.

Review details
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: e9809a25-a030-4093-a6ac-085e80885be4

📥 Commits

Reviewing files that changed from the base of the PR and between e9fbcbb and 15626ad.

📒 Files selected for processing (13)
  • .claude/rules/forgejo-issues.md
  • .github/workflows/release-plz.yml
  • AGENTS.md
  • CLAUDE.md
  • CONTRIBUTING.md
  • Cargo.toml
  • README.md
  • SECURITY.md
  • docs/RELEASE_PROCESS.md
  • docs/manual/06-security/05-compliance.md
  • eventcore-demo/src/lib.rs
  • eventcore-sqlite/README.md
  • eventcore/src/lib.rs
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch chore/update-post-transfer-references

Comment @coderabbitai help to get the list of available commands.

@jwilger

jwilger commented Jul 5, 2026

Copy link
Copy Markdown
Owner Author

@coderabbitai review

@coderabbitai

coderabbitai Bot commented Jul 5, 2026

Copy link
Copy Markdown
✅ Action performed

Review finished.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

@jwilger

jwilger commented Jul 5, 2026

Copy link
Copy Markdown
Owner Author

@coderabbitai full review

@coderabbitai

coderabbitai Bot commented Jul 5, 2026

Copy link
Copy Markdown
✅ Action performed

Full review finished.

@jwilger

jwilger commented Jul 5, 2026

Copy link
Copy Markdown
Owner Author

@coderabbitai full review

@coderabbitai

coderabbitai Bot commented Jul 5, 2026

Copy link
Copy Markdown

Rate Limit Exceeded

@jwilger have exceeded the limit for the number of chat messages per hour. Please wait 32 minutes and 23 seconds before sending another message.

@jwilger

jwilger commented Jul 5, 2026

Copy link
Copy Markdown
Owner Author

@coderabbitai approve

@coderabbitai

coderabbitai Bot commented Jul 5, 2026

Copy link
Copy Markdown
✅ Action performed

Comments resolved and changes approved.

@jwilger

jwilger commented Jul 5, 2026

Copy link
Copy Markdown
Owner Author

/trunk merge

@trunk-io

trunk-io Bot commented Jul 5, 2026

Copy link
Copy Markdown

😎 Merged successfully - details.

@trunk-io
trunk-io Bot merged commit adead8c into main Jul 5, 2026
9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant