Add issue assistant workflow for automated triage #138
Conversation
Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
Refactor wiki integration and AI response handling in issue assistant workflow. Improved logging and error handling. Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
|
@microsoft-github-policy-service agree |
|
@chrisnielsen-MS, lets wait on this one, I need to add all the secrets that workflow in PR is relies on. Also, workflow will use cheapest model GPT-4.1 that is literally free for us 0x usage on tokens, it is enough for us. |
This workflow refreshes the wiki cache daily and allows manual triggering. It clones the wiki repository, builds a context file from various markdown files, and commits changes if there are updates. Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
Implement security validation module for MSDO Issue Assistant, including prompt injection detection, suspicious content detection, rate limiting, and input sanitization. Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
Updated issue assistant workflow to include bot-loop protection and improved error handling for API calls. Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
There was a problem hiding this comment.
Pull request overview
Adds an automated issue-triage assistant workflow that uses GitHub Models, with a companion workflow to cache wiki content into the repo for retrieval during triage.
Changes:
- Add
issue-assistant.ymlworkflow to validate issue/comment input and post an AI-assisted triage comment. - Add
refresh-wiki-cache.ymlworkflow to build and commit a cached.github/wiki-context.mdfrom the repo wiki. - Add
.github/issue-assistant/src/security.jsmodule implementing prompt-injection detection, sanitization, and rate limiting.
Reviewed changes
Copilot reviewed 3 out of 3 changed files in this pull request and generated 10 comments.
| File | Description |
|---|---|
.github/workflows/refresh-wiki-cache.yml |
Scheduled/manual workflow to clone the repo wiki, generate .github/wiki-context.md, and commit it back to the repo. |
.github/workflows/issue-assistant.yml |
Issue/issue_comment workflow that loads the cached wiki context, calls GitHub Models, validates the response, and posts a comment. |
.github/issue-assistant/src/security.js |
Shared security/validation logic used by the issue assistant workflow (sanitization, injection detection, rate limiting, issue type detection). |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
chrisnielsen-MS
left a comment
chrisnielsen-MS
left a comment
There was a problem hiding this comment.
This looks exciting! The AI made some good suggestions for making some specific scripts more robust, those look worth following up on. I also left a comment about the inline comments becoming a little messy mixing together comments that explain logic with comments that are explaining fixes applied to the logic -- the metadata about what was fixed/changed should probably be removed.
Removed extensive comments and added safety measures for regex flags. Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
Added security validation module documentation and design overview. Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com>
No description provided.