0xsequence/master

[Dargon789]

Summary by Sourcery

Upgrade the React Query dependency, integrate security scanning and CI workflows, and add standardized GitHub issue templates

Enhancements:

• Upgrade @tanstack/react-query to v5.64.2

CI:

• Add GitHub Actions workflow for Fortify AST scanning
• Add CircleCI configuration with custom executor

Documentation:

• Add GitHub issue templates for bug reports, feature requests, and custom issues

[bolt-new-by-stackblitz]

Run & review this pull request in StackBlitz Codeflow.

[codesandbox]

Review or Edit in CodeSandbox

Open the branch in Web Editor • VS Code • Insiders

Open Preview

[vercel]

Deployment failed with the following error:

Resource is limited - try again in 5 hours (more than 100, code: "api-deployments-free-per-day").

Learn More: https://vercel.com/civilized-farms?upgradeToPro=build-rate-limit

[sourcery-ai]

Reviewer's Guide

This PR upgrades a core dependency and establishes foundational CI/CD and project governance infrastructure by adding a Fortify AST security scan workflow, a CircleCI config, and standard GitHub issue templates.

Class diagram for CI/CD configuration types

classDiagram
  class Fortify_AST_Scan_Workflow {
    +push
    +pull_request
    +schedule
    +workflow_dispatch
    +Fortify-AST-Scan_Job
  }
  class Fortify_AST_Scan_Job {
    +runs-on: ubuntu-latest
    +permissions: actions, contents, security-events
    +steps: checkout, setup-java, run-sast-scan
  }
  class CircleCI_Config {
    +version: 2.1
    +executors: my-custom-executor
    +jobs: web3-defi-game-project-
    +workflows: my-custom-workflow
  }
  class my_custom_executor {
    +docker: cimg/base:stable
    +auth: DOCKER_HUB_USER, DOCKER_HUB_PASSWORD
  }
  class web3_defi_game_project_Job {
    +executor: my-custom-executor
    +steps: checkout, run
  }
  Fortify_AST_Scan_Workflow --> Fortify_AST_Scan_Job
  CircleCI_Config --> my_custom_executor
  CircleCI_Config --> web3_defi_game_project_Job
  web3_defi_game_project_Job --> my_custom_executor

Loading

File-Level Changes

Change	Details	Files
Dependency version bump for React Query	Upgrade @tanstack/react-query from 5.45.1 to 5.64.2	wagmi-project/package.json
Add Fortify AST security scan workflow	Introduce GitHub Actions workflow to run Fortify SAST Configure triggers on push, pull_request, and scheduled cron Define steps for checkout, Java setup, and scan execution	.github/workflows/fortify.yml
Add CircleCI pipeline configuration	Define CircleCI config version 2.1 Set up custom executor and skeleton job definition	.circleci/config.yml
Add GitHub issue templates	Create bug_report.md template Create feature_request.md template Create custom.md template	.github/ISSUE_TEMPLATE/bug_report.md .github/ISSUE_TEMPLATE/feature_request.md .github/ISSUE_TEMPLATE/custom.md

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it. You can also reply to a
  review comment with @sourcery-ai issue to create an issue from it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time. You can also comment
  @sourcery-ai title on the pull request to (re-)generate the title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time exactly where you
  want it. You can also comment @sourcery-ai summary on the pull request to
  (re-)generate the summary at any time.
• Generate reviewer's guide: Comment @sourcery-ai guide on the pull
  request to (re-)generate the reviewer's guide at any time.
• Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
  pull request to resolve all Sourcery comments. Useful if you've already
  addressed all the comments and don't want to see them anymore.
• Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
  request to dismiss all existing Sourcery reviews. Especially useful if you
  want to start fresh with a new review - don't forget to comment
  @sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

[snyk-io]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[gemini-code-assist]

Summary of Changes

Hello @Dargon789, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request focuses on enhancing the project's infrastructure and developer experience. It introduces a continuous integration pipeline using CircleCI, standardizes issue reporting with new GitHub issue templates, updates the project's custom domain, and upgrades a key frontend dependency. These changes aim to improve development workflows, maintainability, and project identity.

Highlights

• Continuous Integration Setup: A new CircleCI configuration file has been added, establishing a basic CI pipeline for a 'web3-defi-game-project-' job, including Docker image usage and authentication.
• GitHub Issue Templates: Standardized issue templates for bug reports, feature requests, and custom issues have been introduced to streamline community contributions and problem reporting.
• Domain Name Update: The project's custom domain has been updated from 'wagmi-project-two.vercel.app' to 'sequence.app', indicating a potential rebranding or domain migration.
• Dependency Upgrade: The @tanstack/react-query dependency in the wagmi-project has been updated to a newer version, bringing in the latest features and bug fixes.

Ignored Files

• Ignored by pattern: .github/workflows/** (1)
  • .github/workflows/fortify.yml

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[sourcery-ai]

Hey there - I've reviewed your changes - here's some feedback:

• Double-check the branch names in your new Fortify workflow (currently set to “master”) to ensure they match your repo’s default branch.
• Pin the “viem” dependency to a specific version instead of using “latest” to guarantee reproducible builds.
• Consider consolidating to either GitHub Actions or CircleCI (rather than both) to reduce overlapping CI config and maintenance overhead.

Prompt for AI Agents

Please address the comments from this code review:

## Overall Comments
- Double-check the branch names in your new Fortify workflow (currently set to “master”) to ensure they match your repo’s default branch.
- Pin the “viem” dependency to a specific version instead of using “latest” to guarantee reproducible builds.
- Consider consolidating to either GitHub Actions or CircleCI (rather than both) to reduce overlapping CI config and maintenance overhead.

---

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

[gemini-code-assist]

Code Review

This pull request introduces CI/CD configuration via CircleCI, adds GitHub issue templates, and updates a dependency. My review focuses on improving the new CircleCI configuration to make it functional and maintainable, and enhancing the issue templates for better project management. The dependency update and CNAME change look fine.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
sequence-js-docs	Error			Oct 25, 2025 6:25pm
sequence-js-web	Error			Oct 25, 2025 6:25pm