Skip to content

Update PR reviewer to use fixed docker image tag on v0.32#6060

Merged
peterzhuamazon merged 2 commits intoopensearch-project:mainfrom
peterzhuamazon:update-reviewer-tag
Mar 30, 2026
Merged

Update PR reviewer to use fixed docker image tag on v0.32#6060
peterzhuamazon merged 2 commits intoopensearch-project:mainfrom
peterzhuamazon:update-reviewer-tag

Conversation

@peterzhuamazon
Copy link
Copy Markdown
Member

@peterzhuamazon peterzhuamazon commented Mar 30, 2026

Description

Update PR reviewer to use fixed docker image tag on v0.32

Issues Resolved

"Error during LLM inference: litellm.APIConnectionError: BedrockException - {\"Message\":\"Invalid API Key format: Must start with pre-defined prefix\"}\n"

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@peterzhuamazon
Update PR reviewer to use fixed docker image tag on v0.32
e592e95 
Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>
@peterzhuamazon peterzhuamazon self-assigned this Mar 30, 2026
@peterzhuamazon peterzhuamazon added the enhancement New Enhancement label Mar 30, 2026
@peterzhuamazon peterzhuamazon moved this from Backlog to In review in OpenSearch Engineering Effectiveness Mar 30, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Mar 30, 2026

PR Code Analyzer ❗

AI-powered 'Code-Diff-Analyzer' found issues on commit e592e95.

PathLineSeverityDescription
.github/workflows/code-diff-reviewer.yml73highGitHub Action source switched from official 'qodo-ai/pr-agent@v0.32' to a personal fork 'peterzhuamazon/pr-agent@v0.32-fix-docker'. This action runs with GITHUB_TOKEN and in a job that has already assumed AWS credentials, making a compromised or malicious fork a viable supply chain attack vector. The justification references a legitimate upstream PR, but the use of an unverified personal fork in CI/CD with elevated permissions warrants scrutiny. The fork owner and the contents of the custom tag 'v0.32-fix-docker' should be independently verified before merging.

The table above displays the top 10 most important findings.

Total: 1 | Critical: 0 | High: 1 | Medium: 0 | Low: 0

Pull Requests Author(s): Please update your Pull Request according to the report above.

Repository Maintainer(s): You can bypass diff analyzer by adding label skip-diff-analyzer after reviewing the changes carefully, then re-run failed actions. To re-enable the analyzer, remove the label, then re-run all actions.

⚠️ Note: The Code-Diff-Analyzer helps protect against potentially harmful code patterns. Please ensure you have thoroughly reviewed the changes beforehand.

Thanks.

@peterzhuamazon
Copy link
Copy Markdown
Member Author

peterzhuamazon commented Mar 30, 2026

This is expected as we need to fix version of docker instead of using nightly builds from main.

@peterzhuamazon peterzhuamazon added the skip-diff-analyzer Maintainer to skip code-diff-analyzer check, after reviewing issues in AI analysis. label Mar 30, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Mar 30, 2026

Failed to generate code suggestions for PR

@peterzhuamazon
Fix to commitid peterzhuamazon/pr-agent@4708eba to be safer
447be50 
Signed-off-by: Peter Zhu <zhujiaxi@amazon.com>
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Mar 30, 2026

Failed to generate code suggestions for PR

@codecov
Copy link
Copy Markdown

codecov bot commented Mar 30, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 96.59%. Comparing base (e0c39f0) to head (447be50).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #6060   +/-   ##
=======================================
  Coverage   96.59%   96.59%           
=======================================
  Files         405      405           
  Lines       18756    18756           
=======================================
  Hits        18117    18117           
  Misses        639      639

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@peterzhuamazon peterzhuamazon merged commit f4237b9 into opensearch-project:main Mar 30, 2026
17 checks passed
@github-project-automation github-project-automation bot moved this from 👀 In Review to ✅ Done in Engineering Effectiveness Board Mar 30, 2026
@peterzhuamazon peterzhuamazon deleted the update-reviewer-tag branch March 30, 2026 21:05
@peterzhuamazon peterzhuamazon mentioned this pull request Mar 31, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cwperks cwperks cwperks approved these changes

@gaiksaya gaiksaya Awaiting requested review from gaiksaya gaiksaya is a code owner

@rishabh6788 rishabh6788 Awaiting requested review from rishabh6788 rishabh6788 is a code owner

@zelinh zelinh Awaiting requested review from zelinh zelinh is a code owner

@prudhvigodithi prudhvigodithi Awaiting requested review from prudhvigodithi prudhvigodithi is a code owner

@Divyaasm Divyaasm Awaiting requested review from Divyaasm Divyaasm is a code owner

@tianleh tianleh Awaiting requested review from tianleh tianleh is a code owner

Assignees

@peterzhuamazon peterzhuamazon

Labels

cicd distinguished-contributor enhancement New Enhancement release skip-diff-analyzer Maintainer to skip code-diff-analyzer check, after reviewing issues in AI analysis.

Projects

Engineering Effectiveness Board
Status: ✅ Done
OpenSearch Engineering Effectiveness
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@peterzhuamazon @cwperks