space/gitea-codex
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
787f3b31ae609a3b12ee80bb30c893835972d56b
gitea-codex/TODO.md
Space-Banane 94607ff0da
Some checks failed
ci / test (push) Failing after 7s
Details
ci / publish (push) Has been skipped
Details
Mark model configurability todo item complete
2026-05-22 19:30:21 +02:00

1.4 KiB
Raw Blame History

TODO

Open Items By Priority

P0 (Critical)

  • True isolated runner flow: clone/fetch/checkout PR branch inside the ephemeral container itself, not on host before prompt generation.
  • Remove host-side fallback path for review execution or gate it behind explicit ALLOW_HOST_FALLBACK to avoid silently bypassing isolation.
  • Add integration test that proves runner container receives repo+PR context and executes review for the exact PR head SHA.

P1 (Important)

  • WEBHOOK_MODE is currently informational only; add runtime validation/check endpoint that confirms expected webhook scope (repo or global) is actually configured in Gitea by host admin.
  • Make review model configurable via env (for example OPENAI_REVIEW_MODEL) instead of hardcoding gpt-5.
  • Add retries/backoff for codex exec bootstrap (npm install -g @openai/codex) to reduce transient network/setup failures.
  • Add end-to-end test path against live Gitea + MariaDB + docker runner (webhook -> queue -> runner -> PR comment update).

P2 (Nice to have)

  • Add explicit env docs for reverse-proxy deployment (BASE_PUBLIC_URL, trusted headers).
  • Add per-repo command policy in .codex-review.yml for enabling/disabling commands (review, fix, explain, rerun).
  • Add structured log redaction tests to ensure PAT/keys never appear in logs/comments.
Reference in New Issue View Git Blame Copy Permalink