feat: harden CI autopilot worker runtime#1966
Conversation
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: d77ed0b53a
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
| schedule: | ||
| - cron: "*/15 * * * *" |
There was a problem hiding this comment.
Adding this schedule activates the monitor every 15 minutes even when RUNNER_PAT is absent. In that default configuration, GH_TOKEN falls back to github.token, the runner-list request can fail due to insufficient runner-administration permission, and lines 26–27 convert that failure to unknown; the notification step then opens an issue and adds another comment on every scheduled run under the misleading Runner offline title. Gate scheduled notifications on a configured credential or handle unknown as a configuration error without repeated offline alerts.
Useful? React with 👍 / 👎.
2 participants
Completes the enterprise audit hardening backlog: clean runner workspace, immutable Actions, worker input validation, enforced tests, Python bootstrap alignment, scheduled health checks, configurable notifications, and truthful runtime documentation.