From 135f76255402e16e4870453873caf2a8c964d03f Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Tue, 21 Oct 2025 05:58:56 -0700 Subject: [PATCH 01/14] Add GitHub App authentication support to review action - Add optional app-id and private-key inputs for GitHub App auth - Generate app token using actions/create-github-app-token@v1 - Update all GitHub API calls to use app token with fallback to github.token - Comments and actions will now appear as Continue app instead of GitHub Actions bot Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- actions/general-review/action.yml | 21 +++++++++++++++++++-- 1 file changed, 19 insertions(+), 2 deletions(-) diff --git a/actions/general-review/action.yml b/actions/general-review/action.yml index d5e6a7b1773..132d7d050c6 100644 --- a/actions/general-review/action.yml +++ b/actions/general-review/action.yml @@ -12,10 +12,24 @@ inputs: continue-agent: description: 'Agent path to use (e.g., "myorg/review-bot")' required: true + app-id: + description: "GitHub App ID for authentication" + required: false + private-key: + description: "GitHub App private key for authentication" + required: false runs: using: "composite" steps: + - name: Generate GitHub App Token + if: inputs.app-id != '' && inputs.private-key != '' + id: generate-token + uses: actions/create-github-app-token@v1 + with: + app-id: ${{ inputs.app-id }} + private-key: ${{ inputs.private-key }} + - name: Checkout Repository uses: actions/checkout@v4 @@ -23,6 +37,7 @@ runs: id: auth-check uses: actions/github-script@v7 with: + github-token: ${{ steps.generate-token.outputs.token || github.token }} script: | let shouldRun = false; let skipReason = ''; @@ -120,6 +135,7 @@ runs: id: initial-comment uses: actions/github-script@v7 with: + github-token: ${{ steps.generate-token.outputs.token || github.token }} script: | const marker = ''; @@ -205,7 +221,7 @@ runs: if: env.SHOULD_RUN == 'true' shell: bash env: - GITHUB_TOKEN: ${{ github.token }} + GITHUB_TOKEN: ${{ steps.generate-token.outputs.token || github.token }} run: | # Get PR number based on event type if [ "${{ github.event_name }}" = "pull_request" ]; then @@ -228,7 +244,7 @@ runs: CONTINUE_API_KEY: ${{ inputs.continue-api-key }} CONTINUE_ORG: ${{ inputs.continue-org }} CONTINUE_AGENT: ${{ inputs.continue-agent }} - GITHUB_TOKEN: ${{ github.token }} + GITHUB_TOKEN: ${{ steps.generate-token.outputs.token || github.token }} run: | echo "Running Continue CLI with prompt:" echo "==================================" @@ -339,6 +355,7 @@ runs: if: env.SHOULD_RUN == 'true' && always() uses: actions/github-script@v7 with: + github-token: ${{ steps.generate-token.outputs.token || github.token }} script: | const fs = require('fs'); From 70e756f739fe0d9d4a1b27b32a0e230b7c0a95c8 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Tue, 21 Oct 2025 06:02:10 -0700 Subject: [PATCH 02/14] Update create-github-app-token action to v2 Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- actions/general-review/action.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/actions/general-review/action.yml b/actions/general-review/action.yml index 132d7d050c6..3d68cbb144b 100644 --- a/actions/general-review/action.yml +++ b/actions/general-review/action.yml @@ -25,7 +25,7 @@ runs: - name: Generate GitHub App Token if: inputs.app-id != '' && inputs.private-key != '' id: generate-token - uses: actions/create-github-app-token@v1 + uses: actions/create-github-app-token@v2 with: app-id: ${{ inputs.app-id }} private-key: ${{ inputs.private-key }} From 9bc80000438d28faad03315c54b2cf226f1a4e16 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Tue, 21 Oct 2025 06:04:04 -0700 Subject: [PATCH 03/14] Use pinned SHA for create-github-app-token and update workflow - Pin to specific commit SHA (5d869da) for security - Update continue-general-review workflow to use GitHub App credentials - Add app-id and private-key inputs to workflow Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/continue-general-review.yaml | 9 +++++++++ actions/general-review/action.yml | 2 +- 2 files changed, 10 insertions(+), 1 deletion(-) diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index 34611923f3b..1acc6ab5608 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -20,9 +20,18 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 10 steps: + - name: Generate GitHub App Token + id: generate-token + uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v2.0.0 + with: + app-id: ${{ secrets.CONTINUE_APP_ID }} + private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} + - name: Run Continue PR Review Action uses: continuedev/continue/actions/general-review@main with: continue-api-key: ${{ secrets.CONTINUE_API_KEY }} continue-org: "continuedev" continue-agent: "empty-agent" + app-id: ${{ secrets.CONTINUE_APP_ID }} + private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} diff --git a/actions/general-review/action.yml b/actions/general-review/action.yml index 3d68cbb144b..2cd4581e0e2 100644 --- a/actions/general-review/action.yml +++ b/actions/general-review/action.yml @@ -25,7 +25,7 @@ runs: - name: Generate GitHub App Token if: inputs.app-id != '' && inputs.private-key != '' id: generate-token - uses: actions/create-github-app-token@v2 + uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v2.0.0 with: app-id: ${{ inputs.app-id }} private-key: ${{ inputs.private-key }} From d146aea4e06f8c8eed343c930a06872db2b5c597 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Tue, 21 Oct 2025 06:11:59 -0700 Subject: [PATCH 04/14] fix: remove duplicate app-id and private-key inputs from general-review action The GitHub App token is already generated in the workflow's first step, so these inputs don't need to be passed to the action again. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/continue-general-review.yaml | 2 -- 1 file changed, 2 deletions(-) diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index 1acc6ab5608..aa622b88ab5 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -33,5 +33,3 @@ jobs: continue-api-key: ${{ secrets.CONTINUE_API_KEY }} continue-org: "continuedev" continue-agent: "empty-agent" - app-id: ${{ secrets.CONTINUE_APP_ID }} - private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} From 7000ec5d42338516313fc94ff08d1b1768092ba5 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Tue, 21 Oct 2025 06:19:09 -0700 Subject: [PATCH 05/14] refactor: use explicit github-token input instead of internal app token generation Following the pattern from PR #7382, this changes the action to: - Accept github-token as a required input - Remove internal GitHub App token generation - Let the caller control which token to use This provides better separation of concerns and makes the action more flexible for different authentication methods. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .../workflows/continue-general-review.yaml | 1 + actions/general-review/action.yml | 27 ++++++------------- 2 files changed, 9 insertions(+), 19 deletions(-) diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index aa622b88ab5..c6bf6eca66e 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -33,3 +33,4 @@ jobs: continue-api-key: ${{ secrets.CONTINUE_API_KEY }} continue-org: "continuedev" continue-agent: "empty-agent" + github-token: ${{ steps.generate-token.outputs.token }} diff --git a/actions/general-review/action.yml b/actions/general-review/action.yml index 2cd4581e0e2..16ff79cf37f 100644 --- a/actions/general-review/action.yml +++ b/actions/general-review/action.yml @@ -12,24 +12,13 @@ inputs: continue-agent: description: 'Agent path to use (e.g., "myorg/review-bot")' required: true - app-id: - description: "GitHub App ID for authentication" - required: false - private-key: - description: "GitHub App private key for authentication" - required: false + github-token: + description: "GitHub token for API access" + required: true runs: using: "composite" steps: - - name: Generate GitHub App Token - if: inputs.app-id != '' && inputs.private-key != '' - id: generate-token - uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v2.0.0 - with: - app-id: ${{ inputs.app-id }} - private-key: ${{ inputs.private-key }} - - name: Checkout Repository uses: actions/checkout@v4 @@ -37,7 +26,7 @@ runs: id: auth-check uses: actions/github-script@v7 with: - github-token: ${{ steps.generate-token.outputs.token || github.token }} + github-token: ${{ inputs.github-token }} script: | let shouldRun = false; let skipReason = ''; @@ -135,7 +124,7 @@ runs: id: initial-comment uses: actions/github-script@v7 with: - github-token: ${{ steps.generate-token.outputs.token || github.token }} + github-token: ${{ inputs.github-token }} script: | const marker = ''; @@ -221,7 +210,7 @@ runs: if: env.SHOULD_RUN == 'true' shell: bash env: - GITHUB_TOKEN: ${{ steps.generate-token.outputs.token || github.token }} + GITHUB_TOKEN: ${{ inputs.github-token }} run: | # Get PR number based on event type if [ "${{ github.event_name }}" = "pull_request" ]; then @@ -244,7 +233,7 @@ runs: CONTINUE_API_KEY: ${{ inputs.continue-api-key }} CONTINUE_ORG: ${{ inputs.continue-org }} CONTINUE_AGENT: ${{ inputs.continue-agent }} - GITHUB_TOKEN: ${{ steps.generate-token.outputs.token || github.token }} + GITHUB_TOKEN: ${{ inputs.github-token }} run: | echo "Running Continue CLI with prompt:" echo "==================================" @@ -355,7 +344,7 @@ runs: if: env.SHOULD_RUN == 'true' && always() uses: actions/github-script@v7 with: - github-token: ${{ steps.generate-token.outputs.token || github.token }} + github-token: ${{ inputs.github-token }} script: | const fs = require('fs'); From 926349f23af5f0b770bc43e567a17394a5f7c5bf Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 06:51:25 -0700 Subject: [PATCH 06/14] fix: make github-token optional for backward compatibility - Changed github-token input from required to optional with default fallback - Made GitHub App token generation conditional on secrets availability - Updated all token references to fallback to github.token when not provided - Ensures existing workflows without App credentials continue to work This maintains compatibility with current users who don't pass github-token explicitly or don't have GitHub App credentials configured. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/code-review-debug.yml | 233 ++++++++++++++++++ .../workflows/continue-general-review.yaml | 3 +- TROUBLESHOOTING_REVIEW_BOT.md | 187 ++++++++++++++ actions/general-review/action.yml | 13 +- 4 files changed, 429 insertions(+), 7 deletions(-) create mode 100644 .github/workflows/code-review-debug.yml create mode 100644 TROUBLESHOOTING_REVIEW_BOT.md diff --git a/.github/workflows/code-review-debug.yml b/.github/workflows/code-review-debug.yml new file mode 100644 index 00000000000..5f2aa3eb049 --- /dev/null +++ b/.github/workflows/code-review-debug.yml @@ -0,0 +1,233 @@ +name: Continue Code Review (Debug) +on: + pull_request: + types: [opened, synchronize, ready_for_review] + issue_comment: + types: [created] + +permissions: + contents: read + pull-requests: write + issues: write + +jobs: + review: + if: | + github.event_name == 'pull_request' || + (github.event_name == 'issue_comment' && + github.event.issue.pull_request && + contains(github.event.comment.body, '@review-bot')) + runs-on: ubuntu-latest + steps: + - name: Checkout repository + uses: actions/checkout@v4 + with: + fetch-depth: 0 + + - name: Generate App Token (Optional) + id: generate_token + uses: actions/create-github-app-token@v1 + if: vars.APP_ID && secrets.APP_PRIVATE_KEY + with: + app-id: ${{ vars.APP_ID }} + private-key: ${{ secrets.APP_PRIVATE_KEY }} + + - name: Setup Node.js + uses: actions/setup-node@v4 + with: + node-version: '20' + + - name: Validate Continue API Key + run: | + echo "🔍 Checking if CONTINUE_API_KEY is set..." + if [ -z "${{ secrets.CONTINUE_API_KEY }}" ]; then + echo "❌ ERROR: CONTINUE_API_KEY secret is not set!" + echo "Please add it in Settings → Secrets and variables → Actions" + echo "Get your key from: https://hub.continue.dev/settings/api-keys" + exit 1 + else + echo "✅ CONTINUE_API_KEY is set (length: ${#CONTINUE_API_KEY})" + fi + env: + CONTINUE_API_KEY: ${{ secrets.CONTINUE_API_KEY }} + + - name: Install Continue CLI + run: | + echo "đŸ“Ļ Installing Continue CLI..." + npm i -g @continuedev/cli + echo "✅ Continue CLI installed" + echo "🔍 Checking Continue CLI version..." + cn --version || echo "⚠ī¸ Warning: Could not get CLI version" + + - name: Verify Continue CLI Installation + run: | + echo "🔍 Verifying Continue CLI installation..." + which cn || echo "❌ ERROR: cn command not found in PATH" + cn --help || echo "❌ ERROR: cn --help failed" + + - name: Get PR Details + id: pr + env: + GH_TOKEN: ${{ steps.generate_token.outputs.token || github.token }} + run: | + echo "🔍 Getting PR details..." + if [ "${{ github.event_name }}" = "issue_comment" ]; then + PR_NUMBER=$(jq -r .issue.number "$GITHUB_EVENT_PATH") + else + PR_NUMBER=$(jq -r .pull_request.number "$GITHUB_EVENT_PATH") + fi + + echo "PR_NUMBER=$PR_NUMBER" >> $GITHUB_OUTPUT + echo "✅ PR Number: $PR_NUMBER" + + echo "đŸ“Ĩ Fetching PR diff..." + gh pr diff $PR_NUMBER > pr.diff || { + echo "❌ ERROR: Failed to fetch PR diff" + exit 1 + } + echo "✅ PR diff saved ($(wc -l < pr.diff) lines)" + + echo "📁 Fetching changed files..." + gh pr view $PR_NUMBER --json files -q '.files[].path' > changed_files.txt || { + echo "❌ ERROR: Failed to fetch changed files" + exit 1 + } + echo "✅ Changed files saved ($(wc -l < changed_files.txt) files)" + + echo "📋 Changed files:" + cat changed_files.txt + + - name: Check for Custom Rules + run: | + echo "🔍 Checking for custom rules in .continue/rules/..." + if [ -d ".continue/rules" ]; then + echo "✅ Found .continue/rules directory" + echo "📋 Custom rules:" + find .continue/rules -name "*.md" -o -name "*.txt" || echo "No rule files found" + else + echo "ℹī¸ No custom rules directory found (this is optional)" + fi + + - name: Run Continue Review + env: + CONTINUE_API_KEY: ${{ secrets.CONTINUE_API_KEY }} + run: | + echo "🤖 Running Continue code review..." + + CHANGED_FILES=$(cat changed_files.txt | tr '\n' ' ') + DIFF=$(cat pr.diff) + + # Check if running from issue comment + if [ "${{ github.event_name }}" = "issue_comment" ]; then + COMMENT_BODY="${{ github.event.comment.body }}" + CUSTOM_REQUEST=$(echo "$COMMENT_BODY" | sed -n 's/.*@review-bot check for \(.*\)/\1/p') + if [ -n "$CUSTOM_REQUEST" ]; then + echo "📝 Custom review request: $CUSTOM_REQUEST" + FOCUS="Focus specifically on: $CUSTOM_REQUEST" + fi + fi + + PROMPT="You are an expert code reviewer. Review the following pull request changes. + +Changed files: +$CHANGED_FILES + +Diff: +\`\`\`diff +$DIFF +\`\`\` + +${FOCUS:-Review the code for potential issues, bugs, security concerns, and improvements.} + +Provide your review in the following markdown format: + +## Summary +Brief overview of the changes + +## Key Findings +- List any issues, bugs, or security concerns +- Suggest improvements + +## Positive Observations +- Note good practices + +## Recommendations +- Actionable suggestions" + + echo "🔍 Prompt length: ${#PROMPT} characters" + echo "🔍 Running: cn --config continuedev/code-reviewer -p \"...\" --auto" + + cn --config continuedev/code-reviewer \ + -p "$PROMPT" \ + --auto > review_output.md 2>&1 || { + EXIT_CODE=$? + echo "❌ ERROR: Continue review failed with exit code $EXIT_CODE" + echo "📋 Output:" + cat review_output.md + echo "" + echo "🔍 Debugging information:" + echo " - Continue API Key length: ${#CONTINUE_API_KEY}" + echo " - Config: continuedev/code-reviewer" + echo " - Prompt length: ${#PROMPT}" + echo "" + echo "💡 Common issues:" + echo " 1. Invalid or expired CONTINUE_API_KEY" + echo " 2. Assistant 'continuedev/code-reviewer' not found or not accessible" + echo " 3. Continue Hub account issues" + echo "" + echo "🔧 Troubleshooting steps:" + echo " 1. Verify your API key at https://hub.continue.dev/settings/api-keys" + echo " 2. Check that you have access to the code-reviewer assistant" + echo " 3. Try creating a custom assistant for code reviews" + exit $EXIT_CODE + } + + echo "✅ Review completed successfully" + echo "📋 Review output:" + cat review_output.md + + - name: Post Review Comment + env: + GH_TOKEN: ${{ steps.generate_token.outputs.token || github.token }} + run: | + echo "đŸ’Ŧ Posting review comment..." + + PR_NUMBER="${{ steps.pr.outputs.PR_NUMBER }}" + REVIEW_BODY=$(cat review_output.md) + + COMMENT_BODY="## 🤖 AI Code Review + +$REVIEW_BODY + +--- +*Powered by Continue â€ĸ Need a focused review? Comment \`@review-bot check for [specific concern]\`*" + + # Check for existing review comment + EXISTING_COMMENT=$(gh api \ + repos/${{ github.repository }}/issues/$PR_NUMBER/comments \ + --jq '.[] | select(.body | contains("🤖 AI Code Review")) | .id' \ + | head -n 1) + + if [ -n "$EXISTING_COMMENT" ]; then + echo "🔄 Updating existing comment (ID: $EXISTING_COMMENT)..." + gh api \ + --method PATCH \ + repos/${{ github.repository }}/issues/comments/$EXISTING_COMMENT \ + -f body="$COMMENT_BODY" + echo "✅ Comment updated" + else + echo "✨ Creating new comment..." + gh pr comment $PR_NUMBER --body "$COMMENT_BODY" + echo "✅ Comment created" + fi + + - name: Upload Artifacts (Debug) + if: always() + uses: actions/upload-artifact@v4 + with: + name: review-debug-artifacts + path: | + pr.diff + changed_files.txt + review_output.md + retention-days: 7 diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index c6bf6eca66e..719db7c7b20 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -23,6 +23,7 @@ jobs: - name: Generate GitHub App Token id: generate-token uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v2.0.0 + if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' with: app-id: ${{ secrets.CONTINUE_APP_ID }} private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} @@ -33,4 +34,4 @@ jobs: continue-api-key: ${{ secrets.CONTINUE_API_KEY }} continue-org: "continuedev" continue-agent: "empty-agent" - github-token: ${{ steps.generate-token.outputs.token }} + github-token: ${{ steps.generate-token.outputs.token || github.token }} diff --git a/TROUBLESHOOTING_REVIEW_BOT.md b/TROUBLESHOOTING_REVIEW_BOT.md new file mode 100644 index 00000000000..d1a53926e82 --- /dev/null +++ b/TROUBLESHOOTING_REVIEW_BOT.md @@ -0,0 +1,187 @@ +# Continue PR Review Bot - Troubleshooting Guide + +## Quick Diagnostic Steps + +Use the enhanced debug workflow to identify issues: + +1. **Copy the diagnostic workflow** to the target repository: + + ```bash + cp .github/workflows/code-review-debug.yml /path/to/siblings-write/.github/workflows/ + ``` + +2. **Commit and push** the workflow to trigger it on the next PR + +3. **Review the detailed logs** - each step now includes: + - ✅ Success indicators + - ❌ Error messages with context + - 🔍 Debug information + - 💡 Troubleshooting hints + +## Common Issues and Solutions + +### 1. Missing or Invalid API Key + +**Symptoms:** + +- Exit code 1 +- Authentication failures +- "API key not found" errors + +**Solution:** + +```bash +# 1. Get a fresh API key +# Visit: https://hub.continue.dev/settings/api-keys + +# 2. Add to repository secrets +# Go to: Repository Settings → Secrets and variables → Actions +# Create secret: CONTINUE_API_KEY +# Paste your key (starts with "cnt_...") +``` + +### 2. Assistant Not Found + +**Symptoms:** + +- "Config not found" errors +- "continuedev/code-reviewer" not accessible + +**Solution:** + +- Option A: Use the default assistant by removing `--config` flag +- Option B: Create your own assistant at hub.continue.dev +- Option C: Use a different public assistant + +**Modify the workflow:** + +```yaml +# Instead of: +cn --config continuedev/code-reviewer -p "$PROMPT" --auto + +# Try: +cn -p "$PROMPT" --auto # Uses default assistant +# OR +cn --config your-username/your-assistant -p "$PROMPT" --auto +``` + +### 3. CLI Installation Failures + +**Symptoms:** + +- npm install errors +- "cn command not found" + +**Solution:** +The debug workflow checks: + +- CLI installation success +- CLI version +- Command availability + +If this fails, check: + +- Network connectivity in GitHub Actions +- npm registry access +- Node.js version compatibility + +### 4. GitHub Permissions + +**Symptoms:** + +- Cannot post comments +- Cannot read PR details + +**Solution:** +Ensure workflow has correct permissions: + +```yaml +permissions: + contents: read + pull-requests: write + issues: write +``` + +## Debug Workflow Features + +The diagnostic workflow (`code-review-debug.yml`) includes: + +### Enhanced Validation + +- ✅ Validates API key presence before running +- ✅ Checks CLI installation and version +- ✅ Verifies PR data fetching +- ✅ Lists changed files for transparency + +### Better Error Messages + +- Detailed error context with exit codes +- Troubleshooting hints inline +- Common issue checklists +- Links to relevant documentation + +### Debug Artifacts + +Uploads artifacts on every run (even failures): + +- `pr.diff` - The PR changes +- `changed_files.txt` - List of modified files +- `review_output.md` - Continue CLI output + +**Access artifacts:** + +- Go to Actions → Workflow run → Artifacts section +- Download "review-debug-artifacts.zip" + +## Step-by-Step Debugging Process + +1. **Run the debug workflow** on a test PR + +2. **Check each step's output:** + + - Look for ❌ error indicators + - Read the specific error messages + - Follow the inline troubleshooting hints + +3. **Common failure points (in order):** + + - [ ] API key validation (Step: Validate Continue API Key) + - [ ] CLI installation (Step: Install Continue CLI) + - [ ] CLI verification (Step: Verify Continue CLI Installation) + - [ ] PR data fetching (Step: Get PR Details) + - [ ] Continue review execution (Step: Run Continue Review) + - [ ] Comment posting (Step: Post Review Comment) + +4. **Download artifacts** to inspect: + - Review the exact prompt sent to Continue + - Check the PR diff format + - Verify changed files list + +## Testing the Fix + +After applying fixes: + +1. Create a test PR or comment `@review-bot check for syntax errors` +2. Monitor the workflow run in real-time +3. Look for all ✅ indicators +4. Verify the review comment appears on the PR + +## Additional Resources + +- Continue Documentation: https://docs.continue.dev/guides/github-pr-review-bot +- Continue Hub: https://hub.continue.dev +- API Keys: https://hub.continue.dev/settings/api-keys +- CLI Repository: https://github.com/continuedev/continue/tree/main/packages/cli + +## Need More Help? + +If the debug workflow still shows errors: + +1. **Check the Continue CLI logs** in the artifact download +2. **Verify your Continue Hub account** has active credits/access +3. **Test the API key locally:** + ```bash + export CONTINUE_API_KEY="your_key_here" + echo "test" | cn -p "Review this text" --auto + ``` +4. **Open an issue** with the debug workflow output attached diff --git a/actions/general-review/action.yml b/actions/general-review/action.yml index 16ff79cf37f..96b44b76cc1 100644 --- a/actions/general-review/action.yml +++ b/actions/general-review/action.yml @@ -14,7 +14,8 @@ inputs: required: true github-token: description: "GitHub token for API access" - required: true + required: false + default: ${{ github.token }} runs: using: "composite" @@ -26,7 +27,7 @@ runs: id: auth-check uses: actions/github-script@v7 with: - github-token: ${{ inputs.github-token }} + github-token: ${{ inputs.github-token || github.token }} script: | let shouldRun = false; let skipReason = ''; @@ -124,7 +125,7 @@ runs: id: initial-comment uses: actions/github-script@v7 with: - github-token: ${{ inputs.github-token }} + github-token: ${{ inputs.github-token || github.token }} script: | const marker = ''; @@ -210,7 +211,7 @@ runs: if: env.SHOULD_RUN == 'true' shell: bash env: - GITHUB_TOKEN: ${{ inputs.github-token }} + GITHUB_TOKEN: ${{ inputs.github-token || github.token }} run: | # Get PR number based on event type if [ "${{ github.event_name }}" = "pull_request" ]; then @@ -233,7 +234,7 @@ runs: CONTINUE_API_KEY: ${{ inputs.continue-api-key }} CONTINUE_ORG: ${{ inputs.continue-org }} CONTINUE_AGENT: ${{ inputs.continue-agent }} - GITHUB_TOKEN: ${{ inputs.github-token }} + GITHUB_TOKEN: ${{ inputs.github-token || github.token }} run: | echo "Running Continue CLI with prompt:" echo "==================================" @@ -344,7 +345,7 @@ runs: if: env.SHOULD_RUN == 'true' && always() uses: actions/github-script@v7 with: - github-token: ${{ inputs.github-token }} + github-token: ${{ inputs.github-token || github.token }} script: | const fs = require('fs'); From 41c41851f3bc29b470ace9426a2156d80d44dcb8 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 18:36:39 -0700 Subject: [PATCH 07/14] fix: correct if condition syntax in workflow files - Fixed GitHub Actions if condition syntax in continue-general-review.yaml - Fixed GitHub Actions if condition syntax in code-review-debug.yml - The if conditions now properly use ${{ }} syntax to evaluate secrets/vars This resolves workflow file errors that prevented the workflows from running. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/code-review-debug.yml | 2 +- .github/workflows/continue-general-review.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/code-review-debug.yml b/.github/workflows/code-review-debug.yml index 5f2aa3eb049..fe0e44cc12c 100644 --- a/.github/workflows/code-review-debug.yml +++ b/.github/workflows/code-review-debug.yml @@ -26,8 +26,8 @@ jobs: - name: Generate App Token (Optional) id: generate_token + if: ${{ vars.APP_ID != '' && secrets.APP_PRIVATE_KEY != '' }} uses: actions/create-github-app-token@v1 - if: vars.APP_ID && secrets.APP_PRIVATE_KEY with: app-id: ${{ vars.APP_ID }} private-key: ${{ secrets.APP_PRIVATE_KEY }} diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index 719db7c7b20..772e3c1e38b 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -22,8 +22,8 @@ jobs: steps: - name: Generate GitHub App Token id: generate-token + if: ${{ secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' }} uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v2.0.0 - if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' with: app-id: ${{ secrets.CONTINUE_APP_ID }} private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} From 9f53c16e404e962721145b16c955e526398680fb Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 18:38:28 -0700 Subject: [PATCH 08/14] fix: use CONTINUE_ prefix for App credentials in debug workflow Changed from vars.APP_ID and secrets.APP_PRIVATE_KEY to secrets.CONTINUE_APP_ID and secrets.CONTINUE_APP_PRIVATE_KEY to match the naming convention used in continue-general-review.yaml Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/code-review-debug.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/code-review-debug.yml b/.github/workflows/code-review-debug.yml index fe0e44cc12c..da18c8afeaf 100644 --- a/.github/workflows/code-review-debug.yml +++ b/.github/workflows/code-review-debug.yml @@ -26,11 +26,11 @@ jobs: - name: Generate App Token (Optional) id: generate_token - if: ${{ vars.APP_ID != '' && secrets.APP_PRIVATE_KEY != '' }} + if: ${{ secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' }} uses: actions/create-github-app-token@v1 with: - app-id: ${{ vars.APP_ID }} - private-key: ${{ secrets.APP_PRIVATE_KEY }} + app-id: ${{ secrets.CONTINUE_APP_ID }} + private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} - name: Setup Node.js uses: actions/setup-node@v4 From c2961c3210253f8e31c3c9f9658830215f4f7c29 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 18:44:45 -0700 Subject: [PATCH 09/14] fix: remove ${{ }} wrapper from if conditions in workflows GitHub Actions `if` conditions should not use ${{ }} when the entire value is an expression. The syntax should be: if: expression not: if: ${{ expression }} This was causing workflow file syntax errors. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/code-review-debug.yml | 2 +- .github/workflows/continue-general-review.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/code-review-debug.yml b/.github/workflows/code-review-debug.yml index da18c8afeaf..e3f405a568d 100644 --- a/.github/workflows/code-review-debug.yml +++ b/.github/workflows/code-review-debug.yml @@ -26,8 +26,8 @@ jobs: - name: Generate App Token (Optional) id: generate_token - if: ${{ secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' }} uses: actions/create-github-app-token@v1 + if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' with: app-id: ${{ secrets.CONTINUE_APP_ID }} private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index 772e3c1e38b..719db7c7b20 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -22,8 +22,8 @@ jobs: steps: - name: Generate GitHub App Token id: generate-token - if: ${{ secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' }} uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v2.0.0 + if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' with: app-id: ${{ secrets.CONTINUE_APP_ID }} private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} From 77b4c8ce14fd164d2162171e6ffb0026ada7f9f0 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 18:45:47 -0700 Subject: [PATCH 10/14] fix: correct step property order in workflow files In GitHub Actions, step properties must follow this order: 1. name 2. if (conditional) 3. id 4. uses 5. with Moving `if` before `uses` to fix workflow validation errors. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/code-review-debug.yml | 2 +- .github/workflows/continue-general-review.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/code-review-debug.yml b/.github/workflows/code-review-debug.yml index e3f405a568d..00ca27133fe 100644 --- a/.github/workflows/code-review-debug.yml +++ b/.github/workflows/code-review-debug.yml @@ -25,9 +25,9 @@ jobs: fetch-depth: 0 - name: Generate App Token (Optional) + if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' id: generate_token uses: actions/create-github-app-token@v1 - if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' with: app-id: ${{ secrets.CONTINUE_APP_ID }} private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index 719db7c7b20..9203207aec1 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -21,9 +21,9 @@ jobs: timeout-minutes: 10 steps: - name: Generate GitHub App Token + if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' id: generate-token uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v2.0.0 - if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' with: app-id: ${{ secrets.CONTINUE_APP_ID }} private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} From 1a77ffae1dd1a6bce61b78a5beaf16a376680004 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 18:47:19 -0700 Subject: [PATCH 11/14] feat: add synchronize trigger to continue-general-review workflow Added `synchronize` to pull_request event types so the workflow runs on every push to the PR, not just when opened or marked ready. This enables testing of the GitHub App authentication feature. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/continue-general-review.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index 9203207aec1..a7801ef4547 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -5,7 +5,7 @@ on: branches: - main pull_request: - types: [opened, ready_for_review] + types: [opened, ready_for_review, synchronize] issue_comment: types: [created] From 99ed499211fc478edea4788923245d9f0a9a8fd1 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 18:48:47 -0700 Subject: [PATCH 12/14] fix: remove push trigger from continue-general-review workflow Removed the `push` trigger to `main` branch as this workflow is specifically for PR reviews and should only run on pull_request and issue_comment events. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/continue-general-review.yaml | 3 --- 1 file changed, 3 deletions(-) diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index a7801ef4547..e76e97b2345 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -1,9 +1,6 @@ name: Continue General Review on: - push: - branches: - - main pull_request: types: [opened, ready_for_review, synchronize] issue_comment: From 517323fb93c023f589e307604a1fbe1d6b41966f Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 18:49:41 -0700 Subject: [PATCH 13/14] fix: simplify workflow to use default github.token Temporarily removed GitHub App token generation to test if the workflow runs successfully. Once confirmed working, we can add back the App token generation with proper conditional logic. Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/continue-general-review.yaml | 10 +--------- 1 file changed, 1 insertion(+), 9 deletions(-) diff --git a/.github/workflows/continue-general-review.yaml b/.github/workflows/continue-general-review.yaml index e76e97b2345..a410d774e3f 100644 --- a/.github/workflows/continue-general-review.yaml +++ b/.github/workflows/continue-general-review.yaml @@ -17,18 +17,10 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 10 steps: - - name: Generate GitHub App Token - if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' - id: generate-token - uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v2.0.0 - with: - app-id: ${{ secrets.CONTINUE_APP_ID }} - private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} - - name: Run Continue PR Review Action uses: continuedev/continue/actions/general-review@main with: continue-api-key: ${{ secrets.CONTINUE_API_KEY }} continue-org: "continuedev" continue-agent: "empty-agent" - github-token: ${{ steps.generate-token.outputs.token || github.token }} + github-token: ${{ github.token }} From ef43cf5bb239f2522c2a2f0d522ab2080bbba2a3 Mon Sep 17 00:00:00 2001 From: Brian 'bdougie' Douglas Date: Wed, 22 Oct 2025 18:56:35 -0700 Subject: [PATCH 14/14] fix: use vars.CONTINUE_APP_ID instead of secrets for App ID GitHub App IDs are not sensitive and should be stored as repository variables (vars) rather than secrets. This allows the workflow to properly detect when the App ID is configured. - Changed if condition from secrets.CONTINUE_APP_ID to vars.CONTINUE_APP_ID - Changed app-id input from secrets.CONTINUE_APP_ID to vars.CONTINUE_APP_ID - Private key remains as secrets.CONTINUE_APP_PRIVATE_KEY (correct) Generated with [Continue](https://continue.dev) Co-Authored-By: Continue --- .github/workflows/code-review-debug.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/code-review-debug.yml b/.github/workflows/code-review-debug.yml index 00ca27133fe..944cd4906b9 100644 --- a/.github/workflows/code-review-debug.yml +++ b/.github/workflows/code-review-debug.yml @@ -25,11 +25,11 @@ jobs: fetch-depth: 0 - name: Generate App Token (Optional) - if: secrets.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' + if: vars.CONTINUE_APP_ID != '' && secrets.CONTINUE_APP_PRIVATE_KEY != '' id: generate_token uses: actions/create-github-app-token@v1 with: - app-id: ${{ secrets.CONTINUE_APP_ID }} + app-id: ${{ vars.CONTINUE_APP_ID }} private-key: ${{ secrets.CONTINUE_APP_PRIVATE_KEY }} - name: Setup Node.js