feat(persona): add role-based review personas #55

First-time contributor

[NIT] The path/filepath import is not in alphabetical order relative to the other imports in the block (os, os/exec, strings, path/filepath). goimports / gofmt would sort this. Minor but the project convention is canonical formatting.

**[NIT]** The `path/filepath` import is not in alphabetical order relative to the other imports in the block (`os`, `os/exec`, `strings`, `path/filepath`). `goimports` / `gofmt` would sort this. Minor but the project convention is canonical formatting.

docs/DESIGN-51-personas.md Outdated

						
				@@ -0,0 +1,353 @@

				# Design: Role-based Review Personas (Issue #51)

sonnet-review-bot commented

First-time contributor

[NIT] The design doc still references YAML throughout (phase checklist, finding #2, struct tags use yaml: annotations) even after the revision section at the bottom switched to JSON. The checklist items reference security.yaml, architect.yaml, docs.yaml. These inconsistencies are confusing for future readers. The doc should be updated to consistently reflect the JSON decision.

**[NIT]** The design doc still references YAML throughout (phase checklist, finding #2, struct tags use `yaml:` annotations) even after the revision section at the bottom switched to JSON. The checklist items reference `security.yaml`, `architect.yaml`, `docs.yaml`. These inconsistencies are confusing for future readers. The doc should be updated to consistently reflect the JSON decision.

review/formatter.go Outdated

						
				@@ -56,0 +56,4 @@

				// FormatMarkdownWithDisplay formats a ReviewResult with separate display name and sentinel name.

				// displayName is used for the header title, sentinelName is used for the cleanup sentinel.

				// If displayName is empty, sentinelName is used for both.

sonnet-review-bot commented

First-time contributor

[MINOR] FormatMarkdownWithDisplay is almost a complete copy of FormatMarkdown. The two functions share ~90% of their logic (summary, findings table, recommendation, sentinel). This violates DRY and means future changes to the review format must be applied in two places. FormatMarkdown could simply delegate to FormatMarkdownWithDisplay(result, "", reviewerName) after capitalizing the name for display, or FormatMarkdownWithDisplay could be the single implementation that both call.

**[MINOR]** `FormatMarkdownWithDisplay` is almost a complete copy of `FormatMarkdown`. The two functions share ~90% of their logic (summary, findings table, recommendation, sentinel). This violates DRY and means future changes to the review format must be applied in two places. `FormatMarkdown` could simply delegate to `FormatMarkdownWithDisplay(result, "", reviewerName)` after capitalizing the name for display, or `FormatMarkdownWithDisplay` could be the single implementation that both call.

review/formatter.go Outdated

						
				@@ -56,0 +62,4 @@

					// Use display name for header, or fall back to sentinel name

					headerName := displayName

					if headerName == "" {

sonnet-review-bot commented

First-time contributor

[MINOR] The title capitalisation strings.ToUpper(headerName[:1]) + headerName[1:] is duplicated in both FormatMarkdown (line 12) and FormatMarkdownWithDisplay (line 65). This byte-slice indexing also breaks on multi-byte (non-ASCII) first characters. Use strings.ToUpper(string([]rune(headerName)[:1])) + string([]rune(headerName)[1:]) or unicode.ToUpper for correctness, and extract it into a helper.

**[MINOR]** The title capitalisation `strings.ToUpper(headerName[:1]) + headerName[1:]` is duplicated in both `FormatMarkdown` (line 12) and `FormatMarkdownWithDisplay` (line 65). This byte-slice indexing also breaks on multi-byte (non-ASCII) first characters. Use `strings.ToUpper(string([]rune(headerName)[:1])) + string([]rune(headerName)[1:])` or `unicode.ToUpper` for correctness, and extract it into a helper.

review/persona_prompt.go Outdated

						
				@@ -0,0 +83,4 @@

					sb.WriteString("- If the diff has no changes relevant to your focus areas, APPROVE with no findings.\n")

					// Custom output format if provided

					if p.OutputFormat != "" {

sonnet-review-bot commented

First-time contributor

[NIT] The output format JSON is constructed via a long sequence of individual sb.WriteString calls with manual newlines. This is verbose and fragile. A single multi-line string literal (raw string or const) would be cleaner and easier to maintain, following the pattern already used in BuildSystemBase.

**[NIT]** The output format JSON is constructed via a long sequence of individual `sb.WriteString` calls with manual newlines. This is verbose and fragile. A single multi-line string literal (raw string or `const`) would be cleaner and easier to maintain, following the pattern already used in `BuildSystemBase`.

review/persona_test.go Outdated

						
				@@ -0,0 +188,4 @@

					dir := t.TempDir()

					path := filepath.Join(dir, "invalid.json")

					if err := os.WriteFile(path, []byte("not json"), 0644); err != nil {

						t.Fatalf("failed to write test file: %v", err)

sonnet-review-bot commented

2026-05-10 15:36:27 +00:00

First-time contributor

[MINOR] The contains / containsHelper functions in persona_test.go are reinventing strings.Contains. The standard library already provides this. The custom implementation is error-prone (the contains wrapper has a subtle redundancy: it checks len(s) >= len(substr) and s == substr before calling containsHelper, which already handles the equality case in its loop). Just use strings.Contains directly.

**[MINOR]** The `contains` / `containsHelper` functions in persona_test.go are reinventing `strings.Contains`. The standard library already provides this. The custom implementation is error-prone (the `contains` wrapper has a subtle redundancy: it checks `len(s) >= len(substr)` and `s == substr` before calling `containsHelper`, which already handles the equality case in its loop). Just use `strings.Contains` directly.

security-review-bot requested review from security-review-bot 2026-05-10 15:36:27 +00:00

security-review-bot approved these changes 2026-05-10 15:36:27 +00:00

security-review-bot left a comment

Security Review

Summary

The changes add role-based personas and integrate them safely into prompt construction and the CLI. Path handling for persona and system prompt files includes defenses against traversal and symlink attacks. One minor concern is untrusted display names from repo-controlled persona files being injected into review Markdown without escaping.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`cmd/review-bot/main.go`	311	Untrusted persona display_name (from a repo-controlled persona-file) is passed directly to FormatMarkdownWithDisplay and rendered into review Markdown without escaping. If the hosting platform's sanitizer is bypassable, this could enable Markdown/HTML injection in the review header/footer. Consider sanitizing or escaping displayName (and restricting to a safe character set) before inclusion.

Recommendation

APPROVE — Overall, the implementation is sound and improves functionality without introducing major security risks. The newly added validateWorkspacePath correctly mitigates path traversal and symlink attacks when loading files from the workspace. To harden against potential content injection, ensure persona.DisplayName is sanitized or escaped before inserting into Markdown (or restrict it to alphanumerics, spaces, dashes/underscores). With that minor adjustment, the feature set looks secure and ready to merge.

Review by security

Evaluated against ca1e17de

# Security Review ## Summary The changes add role-based personas and integrate them safely into prompt construction and the CLI. Path handling for persona and system prompt files includes defenses against traversal and symlink attacks. One minor concern is untrusted display names from repo-controlled persona files being injected into review Markdown without escaping. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `cmd/review-bot/main.go` | 311 | Untrusted persona display_name (from a repo-controlled persona-file) is passed directly to FormatMarkdownWithDisplay and rendered into review Markdown without escaping. If the hosting platform's sanitizer is bypassable, this could enable Markdown/HTML injection in the review header/footer. Consider sanitizing or escaping displayName (and restricting to a safe character set) before inclusion. | ## Recommendation **APPROVE** — Overall, the implementation is sound and improves functionality without introducing major security risks. The newly added validateWorkspacePath correctly mitigates path traversal and symlink attacks when loading files from the workspace. To harden against potential content injection, ensure persona.DisplayName is sanitized or escaped before inserting into Markdown (or restrict it to alphanumerics, spaces, dashes/underscores). With that minor adjustment, the feature set looks secure and ready to merge. --- *Review by security*  --- *Evaluated against ca1e17de*

cmd/review-bot/main.go Outdated

						
				@@ -293,7 +311,12 @@ func main() {

					slog.Info("review parsed", "verdict", result.Verdict, "findings", len(result.Findings))

security-review-bot commented

[MINOR] Untrusted persona display_name (from a repo-controlled persona-file) is passed directly to FormatMarkdownWithDisplay and rendered into review Markdown without escaping. If the hosting platform's sanitizer is bypassable, this could enable Markdown/HTML injection in the review header/footer. Consider sanitizing or escaping displayName (and restricting to a safe character set) before inclusion.

**[MINOR]** Untrusted persona display_name (from a repo-controlled persona-file) is passed directly to FormatMarkdownWithDisplay and rendered into review Markdown without escaping. If the hosting platform's sanitizer is bypassable, this could enable Markdown/HTML injection in the review header/footer. Consider sanitizing or escaping displayName (and restricting to a safe character set) before inclusion.

gpt-review-bot approved these changes 2026-05-10 15:37:11 +00:00

gpt-review-bot left a comment

First-time contributor

~~Original review~~

Superseded — see current review for up-to-date findings.

Previous findings (commit ca1e17de)

Gpt Review

Summary

Solid implementation of role-based personas with clean integration into flags, action inputs, prompt assembly, and formatting. Tests and docs are comprehensive, and CI is passing.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`cmd/review-bot/main.go`	630	validateWorkspacePath uses a string HasPrefix check to ensure paths are within the workspace; this can be brittle across platforms and case-insensitive filesystems. Consider using filepath.Rel and verifying the resulting path does not start with ".." to robustly confirm containment.
2	[NIT]	`review/formatter.go`	60	Header title capitalization uses byte slicing (headerName[:1]) which can mis-handle non-ASCII names (multi-byte runes). Consider using unicode/utf8 to upper-case the first rune safely.
3	[MINOR]	`cmd/review-bot/main_test.go`	95	The TestValidateWorkspacePath case labeled "absolute path gets normalized to relative" expects an error substring "failed to resolve", but validateWorkspacePath returns an earlier "resolves outside workspace" error for absolute paths. The expectation and test comment are inconsistent with actual behavior and may cause confusion; align the expected error substring to the actual branch.

Recommendation

APPROVE — Overall the persona feature is well integrated and follows repository conventions. The path validation helper is a good security addition; consider switching to filepath.Rel for a more robust containment check. Adjust the header capitalization to handle Unicode reviewer or display names gracefully. Lastly, update the absolute-path test expectation and its comment in TestValidateWorkspacePath to match the function’s behavior. With these minor refinements, the changes are ready to merge.

Review by gpt

Evaluated against ca1e17de

~~Original review~~ **Superseded** — [see current review](https://gitea.weiker.me/rodin/review-bot/pulls/55#pullrequestreview-2091) for up-to-date findings. <details><summary>Previous findings (commit ca1e17de)</summary> # Gpt Review ## Summary Solid implementation of role-based personas with clean integration into flags, action inputs, prompt assembly, and formatting. Tests and docs are comprehensive, and CI is passing. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `cmd/review-bot/main.go` | 630 | validateWorkspacePath uses a string HasPrefix check to ensure paths are within the workspace; this can be brittle across platforms and case-insensitive filesystems. Consider using filepath.Rel and verifying the resulting path does not start with ".." to robustly confirm containment. | | 2 | [NIT] | `review/formatter.go` | 60 | Header title capitalization uses byte slicing (headerName[:1]) which can mis-handle non-ASCII names (multi-byte runes). Consider using unicode/utf8 to upper-case the first rune safely. | | 3 | [MINOR] | `cmd/review-bot/main_test.go` | 95 | The TestValidateWorkspacePath case labeled "absolute path gets normalized to relative" expects an error substring "failed to resolve", but validateWorkspacePath returns an earlier "resolves outside workspace" error for absolute paths. The expectation and test comment are inconsistent with actual behavior and may cause confusion; align the expected error substring to the actual branch. | ## Recommendation **APPROVE** — Overall the persona feature is well integrated and follows repository conventions. The path validation helper is a good security addition; consider switching to filepath.Rel for a more robust containment check. Adjust the header capitalization to handle Unicode reviewer or display names gracefully. Lastly, update the absolute-path test expectation and its comment in TestValidateWorkspacePath to match the function’s behavior. With these minor refinements, the changes are ready to merge. --- *Review by gpt*  --- *Evaluated against ca1e17de* </details>

cmd/review-bot/main.go Outdated

						
				@@ -590,0 +627,4 @@

					fullPath = filepath.Clean(fullPath)

					// Check path is within workspace

					if !strings.HasPrefix(fullPath, absWorkspace+string(filepath.Separator)) && fullPath != absWorkspace {

						return "", fmt.Errorf("%s resolves outside workspace: path=%s workspace=%s", pathName, fullPath, absWorkspace)

gpt-review-bot commented

2026-05-10 15:37:11 +00:00

First-time contributor

[MINOR] validateWorkspacePath uses a string HasPrefix check to ensure paths are within the workspace; this can be brittle across platforms and case-insensitive filesystems. Consider using filepath.Rel and verifying the resulting path does not start with ".." to robustly confirm containment.

**[MINOR]** validateWorkspacePath uses a string HasPrefix check to ensure paths are within the workspace; this can be brittle across platforms and case-insensitive filesystems. Consider using filepath.Rel and verifying the resulting path does not start with ".." to robustly confirm containment.

cmd/review-bot/main_test.go Outdated

						
				@@ -48,0 +92,4 @@

						{

							name:      "valid nested path",

							workspace: tmpDir,

							path:      "subdir/nested.json",

gpt-review-bot commented

2026-05-10 15:37:11 +00:00

First-time contributor

[MINOR] The TestValidateWorkspacePath case labeled "absolute path gets normalized to relative" expects an error substring "failed to resolve", but validateWorkspacePath returns an earlier "resolves outside workspace" error for absolute paths. The expectation and test comment are inconsistent with actual behavior and may cause confusion; align the expected error substring to the actual branch.

**[MINOR]** The TestValidateWorkspacePath case labeled "absolute path gets normalized to relative" expects an error substring "failed to resolve", but validateWorkspacePath returns an earlier "resolves outside workspace" error for absolute paths. The expectation and test comment are inconsistent with actual behavior and may cause confusion; align the expected error substring to the actual branch.

review/formatter.go Outdated

						
				@@ -56,0 +57,4 @@

				// FormatMarkdownWithDisplay formats a ReviewResult with separate display name and sentinel name.

				// displayName is used for the header title, sentinelName is used for the cleanup sentinel.

				// If displayName is empty, sentinelName is used for both.

				func FormatMarkdownWithDisplay(result *ReviewResult, displayName, sentinelName string) string {

gpt-review-bot commented

2026-05-10 15:37:11 +00:00

First-time contributor

[NIT] Header title capitalization uses byte slicing (headerName[:1]) which can mis-handle non-ASCII names (multi-byte runes). Consider using unicode/utf8 to upper-case the first rune safely.

**[NIT]** Header title capitalization uses byte slicing (headerName[:1]) which can mis-handle non-ASCII names (multi-byte runes). Consider using unicode/utf8 to upper-case the first rune safely.

rodin force-pushed issue-51 from ca1e17de16 to d33a45329c

2026-05-10 15:42:29 +00:00

Compare

sonnet-review-bot approved these changes 2026-05-10 15:43:19 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

This PR adds a well-designed role-based review persona feature. The implementation is clean, follows Go stdlib patterns, maintains zero external dependencies, and includes comprehensive tests. CI passed. A few minor issues worth noting but none are blockers.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`.gitea/actions/review/action.yml`	74	The YAML for the `system-prompt-file` input is malformed — the `persona` and `persona-file` inputs are inserted between the `system-prompt-file` key and its `description`/`required`/`default` fields. This means `system-prompt-file` loses its description/metadata in the action definition. The two new inputs should be placed after the complete `system-prompt-file` block, not in the middle of it.
2	[MINOR]	`review/persona.go`	7	`path/filepath` is imported and used in `LoadBuiltinPersona` to construct `filepath.Join("personas", filename)`. On Windows this would produce `personas\filename.json`, but `embed.FS` always uses forward slashes. This should use `"personas/" + filename` directly (or `path.Join` from the `path` package, not `filepath`). This is a correctness bug on non-Unix platforms, though it won't affect Linux CI runners.
3	[MINOR]	`review/persona_test.go`	194	The `contains` / `containsHelper` helpers duplicate functionality from `strings.Contains`. The test file is in the `review` package (not `review_test`), so it could just use `strings.Contains` directly — or at minimum import `strings`. Adding custom substring matching helpers in tests is unnecessary complexity and a maintenance burden.
4	[MINOR]	`cmd/review-bot/main.go`	94	There is a blank line immediately after the `os.Exit(1)` block (the required-fields validation) and before the persona-flags validation comment. This is a minor style issue (double blank line) that `gofmt` would not flag but deviates from the existing code style where single blank lines separate logical sections.
5	[NIT]	`review/formatter.go`	56	`FormatMarkdownWithDisplay` is nearly identical to `FormatMarkdown` — the only difference is the two-name parameter split. Consider refactoring `FormatMarkdown` to delegate to `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)` to avoid duplicating the findings table and recommendation rendering logic.
6	[NIT]	`review/persona_prompt.go`	85	`BuildSystemPromptWithPersona` exists as a helper but is never called from `main.go` — the main function manually assembles `systemBase` then appends `additionalPrompt`, patterns, and conventions separately via the budget system. This exported function is unused dead code in practice. Either wire it into the main flow or unexport/remove it.
7	[NIT]	`docs/DESIGN-51-personas.md`	1	The design doc still references YAML in several places (e.g. the Persona struct uses `yaml:` tags, the design says 'personas/*.yaml', the completion checklist asks 'Persona struct matches YAML schema exactly?') even though the design was revised to JSON. The doc is internally inconsistent. Since this is a docs file it doesn't affect correctness, but it will confuse future readers.

Recommendation

APPROVE — APPROVE — The implementation is correct, well-tested, follows established patterns (embed.FS, encoding/json, zero deps), and maintains backward compatibility. The YAML action.yml structural bug (Finding 1) and the filepath vs path bug (Finding 2) are the most actionable items. The filepath issue won't affect Linux CI but is technically wrong. All other findings are style/cleanup nits that can be addressed in a follow-up. The feature works as designed and CI passes.

Review by sonnet

Evaluated against d33a4532

# Sonnet Review ## Summary This PR adds a well-designed role-based review persona feature. The implementation is clean, follows Go stdlib patterns, maintains zero external dependencies, and includes comprehensive tests. CI passed. A few minor issues worth noting but none are blockers. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `.gitea/actions/review/action.yml` | 74 | The YAML for the `system-prompt-file` input is malformed — the `persona` and `persona-file` inputs are inserted between the `system-prompt-file` key and its `description`/`required`/`default` fields. This means `system-prompt-file` loses its description/metadata in the action definition. The two new inputs should be placed after the complete `system-prompt-file` block, not in the middle of it. | | 2 | [MINOR] | `review/persona.go` | 7 | `path/filepath` is imported and used in `LoadBuiltinPersona` to construct `filepath.Join("personas", filename)`. On Windows this would produce `personas\filename.json`, but `embed.FS` always uses forward slashes. This should use `"personas/" + filename` directly (or `path.Join` from the `path` package, not `filepath`). This is a correctness bug on non-Unix platforms, though it won't affect Linux CI runners. | | 3 | [MINOR] | `review/persona_test.go` | 194 | The `contains` / `containsHelper` helpers duplicate functionality from `strings.Contains`. The test file is in the `review` package (not `review_test`), so it could just use `strings.Contains` directly — or at minimum import `strings`. Adding custom substring matching helpers in tests is unnecessary complexity and a maintenance burden. | | 4 | [MINOR] | `cmd/review-bot/main.go` | 94 | There is a blank line immediately after the `os.Exit(1)` block (the required-fields validation) and before the persona-flags validation comment. This is a minor style issue (double blank line) that `gofmt` would not flag but deviates from the existing code style where single blank lines separate logical sections. | | 5 | [NIT] | `review/formatter.go` | 56 | `FormatMarkdownWithDisplay` is nearly identical to `FormatMarkdown` — the only difference is the two-name parameter split. Consider refactoring `FormatMarkdown` to delegate to `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)` to avoid duplicating the findings table and recommendation rendering logic. | | 6 | [NIT] | `review/persona_prompt.go` | 85 | `BuildSystemPromptWithPersona` exists as a helper but is never called from `main.go` — the main function manually assembles `systemBase` then appends `additionalPrompt`, patterns, and conventions separately via the budget system. This exported function is unused dead code in practice. Either wire it into the main flow or unexport/remove it. | | 7 | [NIT] | `docs/DESIGN-51-personas.md` | 1 | The design doc still references YAML in several places (e.g. the Persona struct uses `yaml:` tags, the design says 'personas/*.yaml', the completion checklist asks 'Persona struct matches YAML schema exactly?') even though the design was revised to JSON. The doc is internally inconsistent. Since this is a docs file it doesn't affect correctness, but it will confuse future readers. | ## Recommendation **APPROVE** — APPROVE — The implementation is correct, well-tested, follows established patterns (embed.FS, encoding/json, zero deps), and maintains backward compatibility. The YAML action.yml structural bug (Finding 1) and the filepath vs path bug (Finding 2) are the most actionable items. The filepath issue won't affect Linux CI but is technically wrong. All other findings are style/cleanup nits that can be addressed in a follow-up. The feature works as designed and CI passes. --- *Review by sonnet*  --- *Evaluated against d33a4532*

.gitea/actions/review/action.yml Outdated

						
				@@ -71,6 +71,14 @@ inputs:

				    required: false

				    default: 'true'

				  system-prompt-file:

				  persona:

sonnet-review-bot commented

First-time contributor

[MINOR] The YAML for the system-prompt-file input is malformed — the persona and persona-file inputs are inserted between the system-prompt-file key and its description/required/default fields. This means system-prompt-file loses its description/metadata in the action definition. The two new inputs should be placed after the complete system-prompt-file block, not in the middle of it.

**[MINOR]** The YAML for the `system-prompt-file` input is malformed — the `persona` and `persona-file` inputs are inserted between the `system-prompt-file` key and its `description`/`required`/`default` fields. This means `system-prompt-file` loses its description/metadata in the action definition. The two new inputs should be placed after the complete `system-prompt-file` block, not in the middle of it.

cmd/review-bot/main.go

						
				@@ -91,6 +93,33 @@ func main() {

						os.Exit(1)

					}

sonnet-review-bot commented

First-time contributor

[MINOR] There is a blank line immediately after the os.Exit(1) block (the required-fields validation) and before the persona-flags validation comment. This is a minor style issue (double blank line) that gofmt would not flag but deviates from the existing code style where single blank lines separate logical sections.

**[MINOR]** There is a blank line immediately after the `os.Exit(1)` block (the required-fields validation) and before the persona-flags validation comment. This is a minor style issue (double blank line) that `gofmt` would not flag but deviates from the existing code style where single blank lines separate logical sections.

docs/DESIGN-51-personas.md Outdated

						
				@@ -0,0 +1,353 @@

				# Design: Role-based Review Personas (Issue #51)

sonnet-review-bot commented

First-time contributor

[NIT] The design doc still references YAML in several places (e.g. the Persona struct uses yaml: tags, the design says 'personas/*.yaml', the completion checklist asks 'Persona struct matches YAML schema exactly?') even though the design was revised to JSON. The doc is internally inconsistent. Since this is a docs file it doesn't affect correctness, but it will confuse future readers.

**[NIT]** The design doc still references YAML in several places (e.g. the Persona struct uses `yaml:` tags, the design says 'personas/*.yaml', the completion checklist asks 'Persona struct matches YAML schema exactly?') even though the design was revised to JSON. The doc is internally inconsistent. Since this is a docs file it doesn't affect correctness, but it will confuse future readers.

review/formatter.go Outdated

						
				@@ -53,3 +53,48 @@ func GiteaEvent(verdict string) string {

						return "COMMENT"

					}

				}

sonnet-review-bot commented

First-time contributor

[NIT] FormatMarkdownWithDisplay is nearly identical to FormatMarkdown — the only difference is the two-name parameter split. Consider refactoring FormatMarkdown to delegate to FormatMarkdownWithDisplay(result, reviewerName, reviewerName) to avoid duplicating the findings table and recommendation rendering logic.

**[NIT]** `FormatMarkdownWithDisplay` is nearly identical to `FormatMarkdown` — the only difference is the two-name parameter split. Consider refactoring `FormatMarkdown` to delegate to `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)` to avoid duplicating the findings table and recommendation rendering logic.

review/persona.go Outdated

						
				@@ -0,0 +4,4 @@

					"embed"

					"encoding/json"

					"fmt"

					"os"

sonnet-review-bot commented

First-time contributor

[MINOR] path/filepath is imported and used in LoadBuiltinPersona to construct filepath.Join("personas", filename). On Windows this would produce personas\filename.json, but embed.FS always uses forward slashes. This should use "personas/" + filename directly (or path.Join from the path package, not filepath). This is a correctness bug on non-Unix platforms, though it won't affect Linux CI runners.

**[MINOR]** `path/filepath` is imported and used in `LoadBuiltinPersona` to construct `filepath.Join("personas", filename)`. On Windows this would produce `personas\filename.json`, but `embed.FS` always uses forward slashes. This should use `"personas/" + filename` directly (or `path.Join` from the `path` package, not `filepath`). This is a correctness bug on non-Unix platforms, though it won't affect Linux CI runners.

review/persona_prompt.go Outdated

						
				@@ -0,0 +82,4 @@

					sb.WriteString("- Line numbers should reference the new file line numbers from the diff headers.\n")

					sb.WriteString("- If the diff has no changes relevant to your focus areas, APPROVE with no findings.\n")

					// Custom output format if provided

sonnet-review-bot commented

First-time contributor

[NIT] BuildSystemPromptWithPersona exists as a helper but is never called from main.go — the main function manually assembles systemBase then appends additionalPrompt, patterns, and conventions separately via the budget system. This exported function is unused dead code in practice. Either wire it into the main flow or unexport/remove it.

**[NIT]** `BuildSystemPromptWithPersona` exists as a helper but is never called from `main.go` — the main function manually assembles `systemBase` then appends `additionalPrompt`, patterns, and conventions separately via the budget system. This exported function is unused dead code in practice. Either wire it into the main flow or unexport/remove it.

review/persona_test.go Outdated

						
				@@ -0,0 +191,4 @@

						t.Fatalf("failed to write test file: %v", err)

					}

					_, err := LoadPersona(path)

sonnet-review-bot commented

First-time contributor

[MINOR] The contains / containsHelper helpers duplicate functionality from strings.Contains. The test file is in the review package (not review_test), so it could just use strings.Contains directly — or at minimum import strings. Adding custom substring matching helpers in tests is unnecessary complexity and a maintenance burden.

**[MINOR]** The `contains` / `containsHelper` helpers duplicate functionality from `strings.Contains`. The test file is in the `review` package (not `review_test`), so it could just use `strings.Contains` directly — or at minimum import `strings`. Adding custom substring matching helpers in tests is unnecessary complexity and a maintenance burden.

rodin force-pushed issue-51 from d33a45329c to 4776b22194

2026-05-10 15:43:28 +00:00

Compare

sonnet-review-bot approved these changes 2026-05-10 15:44:17 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

This PR cleanly implements role-based review personas with good separation of concerns: JSON-based persona definitions, embedded built-ins, workspace path validation extracted into a reusable helper, and a separate FormatMarkdownWithDisplay function for persona display names. CI passes. The implementation is idiomatic Go, maintains zero external dependencies, and is fully backwards compatible.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`review/persona_test.go`	197	The `contains` and `containsHelper` helpers are reinventing `strings.Contains`. The project already imports `strings` elsewhere and the stdlib `strings.Contains` is available in test files. Using `strings.Contains` directly would be clearer and eliminate ~10 lines of custom code.
2	[MINOR]	`review/persona_prompt.go`	85	`BuildPersonaSystemPrompt` builds the JSON output format spec using ~20 individual `sb.WriteString` calls on string literals. This duplicates logic that already exists in `BuildSystemBase()` (or the base prompt builder). A shared constant or helper for the JSON output spec would reduce the risk of the persona and generic prompts diverging silently.
3	[NIT]	`review/formatter.go`	56	`FormatMarkdownWithDisplay` duplicates nearly all of `FormatMarkdown` — the only differences are the header/footer name split. Consider refactoring `FormatMarkdown` to call `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)` to keep the two in sync, or extract the shared table-building logic.
4	[NIT]	`cmd/review-bot/main_test.go`	7	The `path/filepath` import is not in alphabetical order relative to the other imports (`os`, `os/exec`, `strings`). `goimports` would place it before `os`. Minor style issue.
5	[NIT]	`docs/DESIGN-51-personas.md`	1	The design doc references YAML throughout (personas/*.yaml, gopkg.in/yaml.v3) before the revision section at the bottom switches to JSON. The doc would be cleaner if the YAML references in the early sections were updated to reflect the final JSON decision, rather than leaving the revision as an addendum. As a static doc this is low priority.

Recommendation

APPROVE — APPROVE — The implementation is correct, well-tested, and follows established project patterns (zero dependencies, table-driven tests, early returns, proper error wrapping). The minor findings are quality improvements but none block merging. The contains reimplementation in the test file is the most unnecessary piece of code, but it doesn't affect correctness.

Review by sonnet

Evaluated against 4776b221

# Sonnet Review ## Summary This PR cleanly implements role-based review personas with good separation of concerns: JSON-based persona definitions, embedded built-ins, workspace path validation extracted into a reusable helper, and a separate `FormatMarkdownWithDisplay` function for persona display names. CI passes. The implementation is idiomatic Go, maintains zero external dependencies, and is fully backwards compatible. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `review/persona_test.go` | 197 | The `contains` and `containsHelper` helpers are reinventing `strings.Contains`. The project already imports `strings` elsewhere and the stdlib `strings.Contains` is available in test files. Using `strings.Contains` directly would be clearer and eliminate ~10 lines of custom code. | | 2 | [MINOR] | `review/persona_prompt.go` | 85 | `BuildPersonaSystemPrompt` builds the JSON output format spec using ~20 individual `sb.WriteString` calls on string literals. This duplicates logic that already exists in `BuildSystemBase()` (or the base prompt builder). A shared constant or helper for the JSON output spec would reduce the risk of the persona and generic prompts diverging silently. | | 3 | [NIT] | `review/formatter.go` | 56 | `FormatMarkdownWithDisplay` duplicates nearly all of `FormatMarkdown` — the only differences are the header/footer name split. Consider refactoring `FormatMarkdown` to call `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)` to keep the two in sync, or extract the shared table-building logic. | | 4 | [NIT] | `cmd/review-bot/main_test.go` | 7 | The `path/filepath` import is not in alphabetical order relative to the other imports (`os`, `os/exec`, `strings`). `goimports` would place it before `os`. Minor style issue. | | 5 | [NIT] | `docs/DESIGN-51-personas.md` | 1 | The design doc references YAML throughout (personas/*.yaml, gopkg.in/yaml.v3) before the revision section at the bottom switches to JSON. The doc would be cleaner if the YAML references in the early sections were updated to reflect the final JSON decision, rather than leaving the revision as an addendum. As a static doc this is low priority. | ## Recommendation **APPROVE** — APPROVE — The implementation is correct, well-tested, and follows established project patterns (zero dependencies, table-driven tests, early returns, proper error wrapping). The minor findings are quality improvements but none block merging. The `contains` reimplementation in the test file is the most unnecessary piece of code, but it doesn't affect correctness. --- *Review by sonnet*  --- *Evaluated against 4776b221*

cmd/review-bot/main_test.go

						
				@@ -7,6 +7,7 @@ import (

					"os"

sonnet-review-bot commented

First-time contributor

[NIT] The path/filepath import is not in alphabetical order relative to the other imports (os, os/exec, strings). goimports would place it before os. Minor style issue.

**[NIT]** The `path/filepath` import is not in alphabetical order relative to the other imports (`os`, `os/exec`, `strings`). `goimports` would place it before `os`. Minor style issue.

docs/DESIGN-51-personas.md Outdated

						
				@@ -0,0 +1,353 @@

				# Design: Role-based Review Personas (Issue #51)

sonnet-review-bot commented

First-time contributor

[NIT] The design doc references YAML throughout (personas/*.yaml, gopkg.in/yaml.v3) before the revision section at the bottom switches to JSON. The doc would be cleaner if the YAML references in the early sections were updated to reflect the final JSON decision, rather than leaving the revision as an addendum. As a static doc this is low priority.

**[NIT]** The design doc references YAML throughout (personas/*.yaml, gopkg.in/yaml.v3) before the revision section at the bottom switches to JSON. The doc would be cleaner if the YAML references in the early sections were updated to reflect the final JSON decision, rather than leaving the revision as an addendum. As a static doc this is low priority.

review/formatter.go Outdated

						
				@@ -53,3 +53,48 @@ func GiteaEvent(verdict string) string {

						return "COMMENT"

					}

				}

sonnet-review-bot commented

First-time contributor

[NIT] FormatMarkdownWithDisplay duplicates nearly all of FormatMarkdown — the only differences are the header/footer name split. Consider refactoring FormatMarkdown to call FormatMarkdownWithDisplay(result, reviewerName, reviewerName) to keep the two in sync, or extract the shared table-building logic.

**[NIT]** `FormatMarkdownWithDisplay` duplicates nearly all of `FormatMarkdown` — the only differences are the header/footer name split. Consider refactoring `FormatMarkdown` to call `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)` to keep the two in sync, or extract the shared table-building logic.

review/persona_prompt.go Outdated

						
				@@ -0,0 +82,4 @@

					sb.WriteString("- Line numbers should reference the new file line numbers from the diff headers.\n")

					sb.WriteString("- If the diff has no changes relevant to your focus areas, APPROVE with no findings.\n")

					// Custom output format if provided

sonnet-review-bot commented

First-time contributor

[MINOR] BuildPersonaSystemPrompt builds the JSON output format spec using ~20 individual sb.WriteString calls on string literals. This duplicates logic that already exists in BuildSystemBase() (or the base prompt builder). A shared constant or helper for the JSON output spec would reduce the risk of the persona and generic prompts diverging silently.

**[MINOR]** `BuildPersonaSystemPrompt` builds the JSON output format spec using ~20 individual `sb.WriteString` calls on string literals. This duplicates logic that already exists in `BuildSystemBase()` (or the base prompt builder). A shared constant or helper for the JSON output spec would reduce the risk of the persona and generic prompts diverging silently.

review/persona_test.go Outdated

						
				@@ -0,0 +194,4 @@

					_, err := LoadPersona(path)

					if err == nil {

						t.Error("expected error for invalid JSON")

					}

sonnet-review-bot commented

First-time contributor

[MINOR] The contains and containsHelper helpers are reinventing strings.Contains. The project already imports strings elsewhere and the stdlib strings.Contains is available in test files. Using strings.Contains directly would be clearer and eliminate ~10 lines of custom code.

**[MINOR]** The `contains` and `containsHelper` helpers are reinventing `strings.Contains`. The project already imports `strings` elsewhere and the stdlib `strings.Contains` is available in test files. Using `strings.Contains` directly would be clearer and eliminate ~10 lines of custom code.

rodin force-pushed issue-51 from 4776b22194 to 9c7538cafa

2026-05-10 15:44:55 +00:00

Compare

rodin removed the self-reviewed label 2026-05-10 15:46:03 +00:00

sonnet-review-bot approved these changes 2026-05-10 15:46:07 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

This PR cleanly implements role-based review personas with good separation of concerns, comprehensive tests, and zero new dependencies (JSON over YAML is the right call). The implementation is well-structured, backwards-compatible, and follows the repository's patterns. A few minor issues worth noting but none are blockers.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`review/persona_test.go`	196	The `contains` and `containsHelper` helpers re-implement `strings.Contains` from scratch. This is unnecessary — `strings.Contains` is already in the standard library and is used everywhere else in the test files. This also violates the principle of using standard library functions.
2	[MINOR]	`review/formatter.go`	56	`FormatMarkdownWithDisplay` and `FormatMarkdown` share almost identical logic (only the header/footer differ). This duplication means any change to the findings table, summary format, etc. must be made in two places. Consider having `FormatMarkdown` delegate to `FormatMarkdownWithDisplay`, or extracting the shared body-building logic into a private helper.
3	[MINOR]	`review/persona.go`	3	`filepath` is imported but used only for `filepath.Join("personas", filename)` in `LoadBuiltinPersona`. Since `embed.FS` uses forward-slash paths on all platforms (per Go spec), using `"personas/" + filename` (plain string concatenation) would be both simpler and more correct — `filepath.Join` uses the OS separator on Windows, which would break the embed.FS lookup.
4	[NIT]	`cmd/review-bot/main_test.go`	9	Import `"path/filepath"` is not in alphabetical order with the other imports — it appears after `"strings"` instead of between `"os/exec"` and `"strings"`. `goimports` would fix this automatically.
5	[NIT]	`review/persona_prompt.go`	58	The `BuildPersonaSystemPrompt` function builds the JSON output format using many individual `sb.WriteString` calls for what is essentially a multi-line string constant. This is harder to read and maintain than a single `const` or backtick string. Consider using a `const` for the static instructions block.
6	[NIT]	`docs/DESIGN-51-personas.md`	1	The design doc still references YAML in several places (Persona struct with `yaml:` tags, `.review/personas/trading.yaml`, `security.yaml` phase items) after the JSON revision was made. These are internal doc inconsistencies but worth cleaning up for accuracy.

Recommendation

APPROVE — The implementation is solid and ready to merge. The filepath.Join issue with embed.FS (MINOR) is the most substantive concern — on Windows this would produce a backslash path that embed.FS cannot find, making built-in personas fail. All other findings are style/duplication issues. The core design decisions are sound: JSON over YAML keeps zero dependencies, the persona/system-prompt-file distinction is well-documented, backwards compatibility is preserved, and the workspace path validation was correctly refactored into a shared helper.

Review by sonnet

Evaluated against 9c7538ca

# Sonnet Review ## Summary This PR cleanly implements role-based review personas with good separation of concerns, comprehensive tests, and zero new dependencies (JSON over YAML is the right call). The implementation is well-structured, backwards-compatible, and follows the repository's patterns. A few minor issues worth noting but none are blockers. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `review/persona_test.go` | 196 | The `contains` and `containsHelper` helpers re-implement `strings.Contains` from scratch. This is unnecessary — `strings.Contains` is already in the standard library and is used everywhere else in the test files. This also violates the principle of using standard library functions. | | 2 | [MINOR] | `review/formatter.go` | 56 | `FormatMarkdownWithDisplay` and `FormatMarkdown` share almost identical logic (only the header/footer differ). This duplication means any change to the findings table, summary format, etc. must be made in two places. Consider having `FormatMarkdown` delegate to `FormatMarkdownWithDisplay`, or extracting the shared body-building logic into a private helper. | | 3 | [MINOR] | `review/persona.go` | 3 | `filepath` is imported but used only for `filepath.Join("personas", filename)` in `LoadBuiltinPersona`. Since `embed.FS` uses forward-slash paths on all platforms (per Go spec), using `"personas/" + filename` (plain string concatenation) would be both simpler and more correct — `filepath.Join` uses the OS separator on Windows, which would break the embed.FS lookup. | | 4 | [NIT] | `cmd/review-bot/main_test.go` | 9 | Import `"path/filepath"` is not in alphabetical order with the other imports — it appears after `"strings"` instead of between `"os/exec"` and `"strings"`. `goimports` would fix this automatically. | | 5 | [NIT] | `review/persona_prompt.go` | 58 | The `BuildPersonaSystemPrompt` function builds the JSON output format using many individual `sb.WriteString` calls for what is essentially a multi-line string constant. This is harder to read and maintain than a single `const` or backtick string. Consider using a `const` for the static instructions block. | | 6 | [NIT] | `docs/DESIGN-51-personas.md` | 1 | The design doc still references YAML in several places (Persona struct with `yaml:` tags, `.review/personas/trading.yaml`, `security.yaml` phase items) after the JSON revision was made. These are internal doc inconsistencies but worth cleaning up for accuracy. | ## Recommendation **APPROVE** — The implementation is solid and ready to merge. The `filepath.Join` issue with `embed.FS` (MINOR) is the most substantive concern — on Windows this would produce a backslash path that `embed.FS` cannot find, making built-in personas fail. All other findings are style/duplication issues. The core design decisions are sound: JSON over YAML keeps zero dependencies, the persona/system-prompt-file distinction is well-documented, backwards compatibility is preserved, and the workspace path validation was correctly refactored into a shared helper. --- *Review by sonnet*  --- *Evaluated against 9c7538ca*

cmd/review-bot/main_test.go Outdated

						
				@@ -7,6 +7,7 @@ import (

					"os"

					"os/exec"

					"strings"

sonnet-review-bot commented

First-time contributor

[NIT] Import "path/filepath" is not in alphabetical order with the other imports — it appears after "strings" instead of between "os/exec" and "strings". goimports would fix this automatically.

**[NIT]** Import `"path/filepath"` is not in alphabetical order with the other imports — it appears after `"strings"` instead of between `"os/exec"` and `"strings"`. `goimports` would fix this automatically.

docs/DESIGN-51-personas.md Outdated

						
				@@ -0,0 +1,353 @@

				# Design: Role-based Review Personas (Issue #51)

sonnet-review-bot commented

First-time contributor

[NIT] The design doc still references YAML in several places (Persona struct with yaml: tags, .review/personas/trading.yaml, security.yaml phase items) after the JSON revision was made. These are internal doc inconsistencies but worth cleaning up for accuracy.

**[NIT]** The design doc still references YAML in several places (Persona struct with `yaml:` tags, `.review/personas/trading.yaml`, `security.yaml` phase items) after the JSON revision was made. These are internal doc inconsistencies but worth cleaning up for accuracy.

review/formatter.go Outdated

						
				@@ -53,3 +53,48 @@ func GiteaEvent(verdict string) string {

						return "COMMENT"

					}

				}

sonnet-review-bot commented

First-time contributor

[MINOR] FormatMarkdownWithDisplay and FormatMarkdown share almost identical logic (only the header/footer differ). This duplication means any change to the findings table, summary format, etc. must be made in two places. Consider having FormatMarkdown delegate to FormatMarkdownWithDisplay, or extracting the shared body-building logic into a private helper.

**[MINOR]** `FormatMarkdownWithDisplay` and `FormatMarkdown` share almost identical logic (only the header/footer differ). This duplication means any change to the findings table, summary format, etc. must be made in two places. Consider having `FormatMarkdown` delegate to `FormatMarkdownWithDisplay`, or extracting the shared body-building logic into a private helper.

review/persona.go Outdated

						
				@@ -0,0 +1,98 @@

				package review

				import (

sonnet-review-bot commented

First-time contributor

[MINOR] filepath is imported but used only for filepath.Join("personas", filename) in LoadBuiltinPersona. Since embed.FS uses forward-slash paths on all platforms (per Go spec), using "personas/" + filename (plain string concatenation) would be both simpler and more correct — filepath.Join uses the OS separator on Windows, which would break the embed.FS lookup.

**[MINOR]** `filepath` is imported but used only for `filepath.Join("personas", filename)` in `LoadBuiltinPersona`. Since `embed.FS` uses forward-slash paths on all platforms (per Go spec), using `"personas/" + filename` (plain string concatenation) would be both simpler and more correct — `filepath.Join` uses the OS separator on Windows, which would break the embed.FS lookup.

review/persona_prompt.go Outdated

						
				@@ -0,0 +55,4 @@

					sb.WriteString("CONTEXT:\n")

					sb.WriteString("- You will receive the full content of modified files for reference, followed by the diff showing what changed.\n")

					sb.WriteString("- The diff shows ONLY what was added/removed. The full file content provides complete context.\n")

					sb.WriteString("- Focus your review on the CHANGES (the diff), using the full files for context.\n\n")

sonnet-review-bot commented

First-time contributor

[NIT] The BuildPersonaSystemPrompt function builds the JSON output format using many individual sb.WriteString calls for what is essentially a multi-line string constant. This is harder to read and maintain than a single const or backtick string. Consider using a const for the static instructions block.

**[NIT]** The `BuildPersonaSystemPrompt` function builds the JSON output format using many individual `sb.WriteString` calls for what is essentially a multi-line string constant. This is harder to read and maintain than a single `const` or backtick string. Consider using a `const` for the static instructions block.

review/persona_test.go Outdated

						
				@@ -0,0 +193,4 @@

					_, err := LoadPersona(path)

					if err == nil {

						t.Error("expected error for invalid JSON")

sonnet-review-bot commented

2026-05-10 15:47:08 +00:00

First-time contributor

[MINOR] The contains and containsHelper helpers re-implement strings.Contains from scratch. This is unnecessary — strings.Contains is already in the standard library and is used everywhere else in the test files. This also violates the principle of using standard library functions.

**[MINOR]** The `contains` and `containsHelper` helpers re-implement `strings.Contains` from scratch. This is unnecessary — `strings.Contains` is already in the standard library and is used everywhere else in the test files. This also violates the principle of using standard library functions.

security-review-bot requested review from security-review-bot 2026-05-10 15:47:08 +00:00

security-review-bot approved these changes 2026-05-10 15:47:08 +00:00

security-review-bot left a comment

Security Review

Summary

Persona support is added with careful path validation for local files and embedded built-ins. No exploitable vulnerabilities are apparent; CI passed and the changes improve security posture by adding safe path handling. A couple of minor hardening opportunities exist around unescaped display strings and path checks.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`review/formatter.go`	66	Persona display_name is used directly in the markdown header/footer without escaping. While the cleanup sentinel uses the validated reviewer-name, a custom persona file could inject markdown mentions or formatting into the posted review. Consider sanitizing or constraining display_name (e.g., limit characters or escape markdown) to reduce potential content/mention abuse.
2	[MINOR]	`cmd/review-bot/main.go`	610	validateWorkspacePath relies on string prefix checks for containment. Although it also resolves symlinks and uses a path separator guard, on case-insensitive filesystems and certain UNC/volume edge cases, prefix checks can be brittle. Consider using filepath.Rel to compute the relative path and ensuring it does not start with ".." and that the volume/drive matches, for stronger cross-platform guarantees.

Recommendation

APPROVE — Overall, the persona feature and related prompt assembly are implemented safely, with good defense against path traversal and symlink escapes when reading local files. Approve the PR. For defense-in-depth, consider sanitizing persona display_name before rendering it in review markdown to avoid potential mention/format injection, and strengthen validateWorkspacePath by using filepath.Rel-based checks (and drive/volume matching on Windows) instead of HasPrefix to make the containment check more robust across platforms.

Review by security

Evaluated against 9c7538ca

# Security Review ## Summary Persona support is added with careful path validation for local files and embedded built-ins. No exploitable vulnerabilities are apparent; CI passed and the changes improve security posture by adding safe path handling. A couple of minor hardening opportunities exist around unescaped display strings and path checks. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `review/formatter.go` | 66 | Persona display_name is used directly in the markdown header/footer without escaping. While the cleanup sentinel uses the validated reviewer-name, a custom persona file could inject markdown mentions or formatting into the posted review. Consider sanitizing or constraining display_name (e.g., limit characters or escape markdown) to reduce potential content/mention abuse. | | 2 | [MINOR] | `cmd/review-bot/main.go` | 610 | validateWorkspacePath relies on string prefix checks for containment. Although it also resolves symlinks and uses a path separator guard, on case-insensitive filesystems and certain UNC/volume edge cases, prefix checks can be brittle. Consider using filepath.Rel to compute the relative path and ensuring it does not start with ".." and that the volume/drive matches, for stronger cross-platform guarantees. | ## Recommendation **APPROVE** — Overall, the persona feature and related prompt assembly are implemented safely, with good defense against path traversal and symlink escapes when reading local files. Approve the PR. For defense-in-depth, consider sanitizing persona display_name before rendering it in review markdown to avoid potential mention/format injection, and strengthen validateWorkspacePath by using filepath.Rel-based checks (and drive/volume matching on Windows) instead of HasPrefix to make the containment check more robust across platforms. --- *Review by security*  --- *Evaluated against 9c7538ca*

cmd/review-bot/main.go

						
				@@ -587,6 +610,36 @@ func validateReviewerName(name string) error {

					return nil

security-review-bot commented

[MINOR] validateWorkspacePath relies on string prefix checks for containment. Although it also resolves symlinks and uses a path separator guard, on case-insensitive filesystems and certain UNC/volume edge cases, prefix checks can be brittle. Consider using filepath.Rel to compute the relative path and ensuring it does not start with ".." and that the volume/drive matches, for stronger cross-platform guarantees.

**[MINOR]** validateWorkspacePath relies on string prefix checks for containment. Although it also resolves symlinks and uses a path separator guard, on case-insensitive filesystems and certain UNC/volume edge cases, prefix checks can be brittle. Consider using filepath.Rel to compute the relative path and ensuring it does not start with ".." and that the volume/drive matches, for stronger cross-platform guarantees.

review/formatter.go Outdated

						
				@@ -56,0 +63,4 @@

					// Use display name for header, or fall back to sentinel name

					headerName := displayName

					if headerName == "" {

						headerName = sentinelName

security-review-bot commented

2026-05-10 15:47:08 +00:00

[MINOR] Persona display_name is used directly in the markdown header/footer without escaping. While the cleanup sentinel uses the validated reviewer-name, a custom persona file could inject markdown mentions or formatting into the posted review. Consider sanitizing or constraining display_name (e.g., limit characters or escape markdown) to reduce potential content/mention abuse.

**[MINOR]** Persona display_name is used directly in the markdown header/footer without escaping. While the cleanup sentinel uses the validated reviewer-name, a custom persona file could inject markdown mentions or formatting into the posted review. Consider sanitizing or constraining display_name (e.g., limit characters or escape markdown) to reduce potential content/mention abuse.

gpt-review-bot requested changes 2026-05-10 15:47:23 +00:00

gpt-review-bot left a comment

First-time contributor

Gpt Review

Summary

Overall the persona feature is well integrated, with clean flag handling, secure path validation, embedded built-in personas, and comprehensive tests. However, there's a blocking test expectation mismatch in TestValidateWorkspacePath that will fail on typical systems, and a minor Unicode-safety issue in header capitalization.

Findings

#	Severity	File	Line	Finding
1	[MAJOR]	`cmd/review-bot/main_test.go`	46	TestValidateWorkspacePath case "absolute path gets normalized to relative" expects an error containing "failed to resolve", but validateWorkspacePath returns an error "resolves outside workspace" for an absolute path like /etc/passwd. Update the test to match the actual error message (or adjust validateWorkspacePath to return a consistent error in this scenario).
2	[MINOR]	`review/formatter.go`	1	Header title capitalization uses headerName[:1] which is not Unicode-safe and can split multi-byte runes if display_name contains non-ASCII characters. Consider using utf8.DecodeRuneInString and unicode.ToUpper for the first rune.
3	[NIT]	`review/formatter.go`	1	FormatMarkdownWithDisplay largely duplicates FormatMarkdown. Consider refactoring common rendering logic to reduce duplication and maintenance overhead.

Recommendation

REQUEST_CHANGES — Address the failing test expectation in TestValidateWorkspacePath by aligning the expected error substring with the actual behavior of validateWorkspacePath for absolute paths (e.g., expect "resolves outside workspace"). This will prevent test failures on typical Unix environments where /etc/passwd exists. Additionally, consider making header capitalization Unicode-safe in FormatMarkdownWithDisplay and refactoring duplicated formatting code for maintainability. With these fixes, the PR should be ready to merge.

Review by gpt

Evaluated against 9c7538ca

# Gpt Review ## Summary Overall the persona feature is well integrated, with clean flag handling, secure path validation, embedded built-in personas, and comprehensive tests. However, there's a blocking test expectation mismatch in TestValidateWorkspacePath that will fail on typical systems, and a minor Unicode-safety issue in header capitalization. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MAJOR] | `cmd/review-bot/main_test.go` | 46 | TestValidateWorkspacePath case "absolute path gets normalized to relative" expects an error containing "failed to resolve", but validateWorkspacePath returns an error "resolves outside workspace" for an absolute path like /etc/passwd. Update the test to match the actual error message (or adjust validateWorkspacePath to return a consistent error in this scenario). | | 2 | [MINOR] | `review/formatter.go` | 1 | Header title capitalization uses headerName[:1] which is not Unicode-safe and can split multi-byte runes if display_name contains non-ASCII characters. Consider using utf8.DecodeRuneInString and unicode.ToUpper for the first rune. | | 3 | [NIT] | `review/formatter.go` | 1 | FormatMarkdownWithDisplay largely duplicates FormatMarkdown. Consider refactoring common rendering logic to reduce duplication and maintenance overhead. | ## Recommendation **REQUEST_CHANGES** — Address the failing test expectation in TestValidateWorkspacePath by aligning the expected error substring with the actual behavior of validateWorkspacePath for absolute paths (e.g., expect "resolves outside workspace"). This will prevent test failures on typical Unix environments where /etc/passwd exists. Additionally, consider making header capitalization Unicode-safe in FormatMarkdownWithDisplay and refactoring duplicated formatting code for maintainability. With these fixes, the PR should be ready to merge. --- *Review by gpt*  --- *Evaluated against 9c7538ca*

cmd/review-bot/main_test.go

						
				@@ -45,6 +46,113 @@ func TestValidateReviewerName(t *testing.T) {

					}

gpt-review-bot commented

2026-05-10 15:47:23 +00:00

First-time contributor

[MAJOR] TestValidateWorkspacePath case "absolute path gets normalized to relative" expects an error containing "failed to resolve", but validateWorkspacePath returns an error "resolves outside workspace" for an absolute path like /etc/passwd. Update the test to match the actual error message (or adjust validateWorkspacePath to return a consistent error in this scenario).

**[MAJOR]** TestValidateWorkspacePath case "absolute path gets normalized to relative" expects an error containing "failed to resolve", but validateWorkspacePath returns an error "resolves outside workspace" for an absolute path like /etc/passwd. Update the test to match the actual error message (or adjust validateWorkspacePath to return a consistent error in this scenario).

rodin force-pushed issue-51 from 9c7538cafa to 83441bfbac

2026-05-10 15:47:53 +00:00

Compare

sonnet-review-bot approved these changes 2026-05-10 15:48:43 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

A well-designed feature addition implementing role-based review personas. The code is idiomatic Go, follows the repository's zero-dependency convention, has comprehensive test coverage, and the refactoring of validateWorkspacePath into a reusable helper is a nice improvement. CI passes.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`review/persona_test.go`	196	The `contains` and `containsHelper` helpers are reimplementing `strings.Contains`, which is already available in the standard library. The helpers add no value and the custom implementation has a subtle bug: `containsHelper` is only called when `len(s) > 0`, but the outer `contains` check `len(s) >= len(substr)` already handles the empty-substr case. Just use `strings.Contains` directly — it handles all edge cases correctly and is idiomatic Go.
2	[MINOR]	`review/formatter.go`	56	`FormatMarkdownWithDisplay` duplicates nearly all of the logic in `FormatMarkdown`. The only difference is the `headerName`/`sentinelName` split. `FormatMarkdown` could simply delegate to `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)`, eliminating ~35 lines of duplication. Duplicated formatting logic is a maintenance hazard — a future change (e.g., adding a new section) must be applied in two places.
3	[MINOR]	`review/persona_prompt.go`	70	The `BuildPersonaSystemPrompt` function has 30+ consecutive `sb.WriteString(...)` calls for the hardcoded JSON output format schema. This duplicates the output format specification that already lives in the base `BuildSystemBase()` function. If the JSON schema changes (e.g., adding a new field), both functions must be updated. Consider extracting the shared output format section into a package-level constant or helper function to keep the schema definition in one place.
4	[NIT]	`review/persona.go`	5	`path/filepath` is imported but only used for `filepath.Join("personas", filename)` in `LoadBuiltinPersona`. Since the path separator for embedded FS is always `/` (regardless of OS), `embed.FS` paths must use forward slashes per the `io/fs` spec. Using `filepath.Join` here works on Linux/macOS but would produce `personas\security` on Windows if that ever becomes a build target. Using `"personas/" + filename` directly would be safer and removes the need for the `path/filepath` import.
5	[NIT]	`docs/DESIGN-51-personas.md`	1	The design document still references YAML as the persona format in multiple places (e.g., the `Persona struct` Go code block uses `yaml:` struct tags, the persona file format sections show YAML examples). The design revision section at the bottom explains the switch to JSON, but the earlier sections weren't updated. This creates confusion for anyone reading the doc top-to-bottom. Consider updating or striking through the YAML sections, or noting "see Design Revision below" at the first YAML mention.
6	[NIT]	`cmd/review-bot/main_test.go`	7	The `path/filepath` import was added but placed out of order — the Go convention (and `goimports`) groups stdlib imports alphabetically. It should appear between `"os/exec"` and `"strings"`, not after `"strings"`. Minor but `goimports` would reorder this.

Recommendation

APPROVE — APPROVE — This is a clean, well-structured feature. The design decision to use JSON instead of YAML preserves the zero-dependency constraint correctly. The validateWorkspacePath refactoring is a genuine improvement. The minor findings (duplication in formatter, custom contains helper, filepath.Join on embed.FS paths) are worth addressing but don't block merging. The stale design doc is a documentation-only issue.

Review by sonnet

Evaluated against 83441bfb

# Sonnet Review ## Summary A well-designed feature addition implementing role-based review personas. The code is idiomatic Go, follows the repository's zero-dependency convention, has comprehensive test coverage, and the refactoring of `validateWorkspacePath` into a reusable helper is a nice improvement. CI passes. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `review/persona_test.go` | 196 | The `contains` and `containsHelper` helpers are reimplementing `strings.Contains`, which is already available in the standard library. The helpers add no value and the custom implementation has a subtle bug: `containsHelper` is only called when `len(s) > 0`, but the outer `contains` check `len(s) >= len(substr)` already handles the empty-substr case. Just use `strings.Contains` directly — it handles all edge cases correctly and is idiomatic Go. | | 2 | [MINOR] | `review/formatter.go` | 56 | `FormatMarkdownWithDisplay` duplicates nearly all of the logic in `FormatMarkdown`. The only difference is the `headerName`/`sentinelName` split. `FormatMarkdown` could simply delegate to `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)`, eliminating ~35 lines of duplication. Duplicated formatting logic is a maintenance hazard — a future change (e.g., adding a new section) must be applied in two places. | | 3 | [MINOR] | `review/persona_prompt.go` | 70 | The `BuildPersonaSystemPrompt` function has 30+ consecutive `sb.WriteString(...)` calls for the hardcoded JSON output format schema. This duplicates the output format specification that already lives in the base `BuildSystemBase()` function. If the JSON schema changes (e.g., adding a new field), both functions must be updated. Consider extracting the shared output format section into a package-level constant or helper function to keep the schema definition in one place. | | 4 | [NIT] | `review/persona.go` | 5 | `path/filepath` is imported but only used for `filepath.Join("personas", filename)` in `LoadBuiltinPersona`. Since the path separator for embedded FS is always `/` (regardless of OS), `embed.FS` paths must use forward slashes per the `io/fs` spec. Using `filepath.Join` here works on Linux/macOS but would produce `personas\security` on Windows if that ever becomes a build target. Using `"personas/" + filename` directly would be safer and removes the need for the `path/filepath` import. | | 5 | [NIT] | `docs/DESIGN-51-personas.md` | 1 | The design document still references YAML as the persona format in multiple places (e.g., the `Persona struct` Go code block uses `yaml:` struct tags, the persona file format sections show YAML examples). The design revision section at the bottom explains the switch to JSON, but the earlier sections weren't updated. This creates confusion for anyone reading the doc top-to-bottom. Consider updating or striking through the YAML sections, or noting "see Design Revision below" at the first YAML mention. | | 6 | [NIT] | `cmd/review-bot/main_test.go` | 7 | The `path/filepath` import was added but placed out of order — the Go convention (and `goimports`) groups stdlib imports alphabetically. It should appear between `"os/exec"` and `"strings"`, not after `"strings"`. Minor but `goimports` would reorder this. | ## Recommendation **APPROVE** — APPROVE — This is a clean, well-structured feature. The design decision to use JSON instead of YAML preserves the zero-dependency constraint correctly. The `validateWorkspacePath` refactoring is a genuine improvement. The minor findings (duplication in formatter, custom `contains` helper, filepath.Join on embed.FS paths) are worth addressing but don't block merging. The stale design doc is a documentation-only issue. --- *Review by sonnet*  --- *Evaluated against 83441bfb*

cmd/review-bot/main_test.go

						
				@@ -7,6 +7,7 @@ import (

					"os"

sonnet-review-bot commented

First-time contributor

[NIT] The path/filepath import was added but placed out of order — the Go convention (and goimports) groups stdlib imports alphabetically. It should appear between "os/exec" and "strings", not after "strings". Minor but goimports would reorder this.

**[NIT]** The `path/filepath` import was added but placed out of order — the Go convention (and `goimports`) groups stdlib imports alphabetically. It should appear between `"os/exec"` and `"strings"`, not after `"strings"`. Minor but `goimports` would reorder this.

docs/DESIGN-51-personas.md Outdated

						
				@@ -0,0 +1,353 @@

				# Design: Role-based Review Personas (Issue #51)

sonnet-review-bot commented

First-time contributor

[NIT] The design document still references YAML as the persona format in multiple places (e.g., the Persona struct Go code block uses yaml: struct tags, the persona file format sections show YAML examples). The design revision section at the bottom explains the switch to JSON, but the earlier sections weren't updated. This creates confusion for anyone reading the doc top-to-bottom. Consider updating or striking through the YAML sections, or noting "see Design Revision below" at the first YAML mention.

**[NIT]** The design document still references YAML as the persona format in multiple places (e.g., the `Persona struct` Go code block uses `yaml:` struct tags, the persona file format sections show YAML examples). The design revision section at the bottom explains the switch to JSON, but the earlier sections weren't updated. This creates confusion for anyone reading the doc top-to-bottom. Consider updating or striking through the YAML sections, or noting "see Design Revision below" at the first YAML mention.

review/formatter.go Outdated

						
				@@ -53,3 +53,48 @@ func GiteaEvent(verdict string) string {

						return "COMMENT"

					}

				}

sonnet-review-bot commented

First-time contributor

[MINOR] FormatMarkdownWithDisplay duplicates nearly all of the logic in FormatMarkdown. The only difference is the headerName/sentinelName split. FormatMarkdown could simply delegate to FormatMarkdownWithDisplay(result, reviewerName, reviewerName), eliminating ~35 lines of duplication. Duplicated formatting logic is a maintenance hazard — a future change (e.g., adding a new section) must be applied in two places.

**[MINOR]** `FormatMarkdownWithDisplay` duplicates nearly all of the logic in `FormatMarkdown`. The only difference is the `headerName`/`sentinelName` split. `FormatMarkdown` could simply delegate to `FormatMarkdownWithDisplay(result, reviewerName, reviewerName)`, eliminating ~35 lines of duplication. Duplicated formatting logic is a maintenance hazard — a future change (e.g., adding a new section) must be applied in two places.

review/persona.go Outdated

						
				@@ -0,0 +2,4 @@

				import (

					"embed"

					"encoding/json"

sonnet-review-bot commented

First-time contributor

[NIT] path/filepath is imported but only used for filepath.Join("personas", filename) in LoadBuiltinPersona. Since the path separator for embedded FS is always / (regardless of OS), embed.FS paths must use forward slashes per the io/fs spec. Using filepath.Join here works on Linux/macOS but would produce personas\security on Windows if that ever becomes a build target. Using "personas/" + filename directly would be safer and removes the need for the path/filepath import.

**[NIT]** `path/filepath` is imported but only used for `filepath.Join("personas", filename)` in `LoadBuiltinPersona`. Since the path separator for embedded FS is always `/` (regardless of OS), `embed.FS` paths must use forward slashes per the `io/fs` spec. Using `filepath.Join` here works on Linux/macOS but would produce `personas\security` on Windows if that ever becomes a build target. Using `"personas/" + filename` directly would be safer and removes the need for the `path/filepath` import.

review/persona_prompt.go Outdated

						
				@@ -0,0 +67,4 @@

					sb.WriteString("  \"findings\": [\n")

					sb.WriteString("    {\n")

					sb.WriteString("      \"severity\": \"MAJOR\" or \"MINOR\" or \"NIT\",\n")

					sb.WriteString("      \"file\": \"path/to/file\",\n")

sonnet-review-bot commented

First-time contributor

[MINOR] The BuildPersonaSystemPrompt function has 30+ consecutive sb.WriteString(...) calls for the hardcoded JSON output format schema. This duplicates the output format specification that already lives in the base BuildSystemBase() function. If the JSON schema changes (e.g., adding a new field), both functions must be updated. Consider extracting the shared output format section into a package-level constant or helper function to keep the schema definition in one place.

**[MINOR]** The `BuildPersonaSystemPrompt` function has 30+ consecutive `sb.WriteString(...)` calls for the hardcoded JSON output format schema. This duplicates the output format specification that already lives in the base `BuildSystemBase()` function. If the JSON schema changes (e.g., adding a new field), both functions must be updated. Consider extracting the shared output format section into a package-level constant or helper function to keep the schema definition in one place.

review/persona_test.go Outdated

						
				@@ -0,0 +193,4 @@

					_, err := LoadPersona(path)

					if err == nil {

						t.Error("expected error for invalid JSON")

sonnet-review-bot commented

2026-05-10 15:49:08 +00:00

First-time contributor

[MINOR] The contains and containsHelper helpers are reimplementing strings.Contains, which is already available in the standard library. The helpers add no value and the custom implementation has a subtle bug: containsHelper is only called when len(s) > 0, but the outer contains check len(s) >= len(substr) already handles the empty-substr case. Just use strings.Contains directly — it handles all edge cases correctly and is idiomatic Go.

**[MINOR]** The `contains` and `containsHelper` helpers are reimplementing `strings.Contains`, which is already available in the standard library. The helpers add no value and the custom implementation has a subtle bug: `containsHelper` is only called when `len(s) > 0`, but the outer `contains` check `len(s) >= len(substr)` already handles the empty-substr case. Just use `strings.Contains` directly — it handles all edge cases correctly and is idiomatic Go.

gpt-review-bot approved these changes 2026-05-10 15:49:08 +00:00

gpt-review-bot left a comment

First-time contributor

Gpt Review

Summary

Solid implementation of role-based personas with clean CLI/action wiring, secure file path validation, embedded built-ins, and comprehensive tests. The changes are cohesive, backward compatible, and CI passed.

Findings

#	Severity	File	Line	Finding
1	[NIT]	`review/persona.go`	19	Persona.ModelPref (model_preference) is defined but not used anywhere. Consider either wiring it into model selection or removing it to avoid confusion.
2	[NIT]	`review/persona_prompt.go`	1	BuildPersonaSystemPrompt re-specifies the output schema that likely mirrors BuildSystemBase; consider refactoring to share a common formatter for the JSON output specification to avoid future drift.
3	[NIT]	`.gitea/actions/review/action.yml`	1	Added persona inputs are fine, but consider documenting expected values inline (e.g., valid built-in names) or validating them early to provide faster feedback in CI logs.

Recommendation

APPROVE — Overall, this is a well-designed and well-tested feature addition. The persona system integrates cleanly with the existing prompt/budget pipeline, the action and CLI flags are mutually exclusive and validated, path handling is secure via workspace-bound resolution, and the embedded built-in personas are convenient and covered by tests. Consider addressing the small nits: either use Persona.ModelPref (e.g., log a warning or influence model choice) or remove it to reduce ambiguity, and consider centralizing the common JSON output schema between persona and default prompts to minimize duplication. Otherwise, this is good to merge.

Review by gpt

Evaluated against 83441bfb

# Gpt Review ## Summary Solid implementation of role-based personas with clean CLI/action wiring, secure file path validation, embedded built-ins, and comprehensive tests. The changes are cohesive, backward compatible, and CI passed. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [NIT] | `review/persona.go` | 19 | Persona.ModelPref (model_preference) is defined but not used anywhere. Consider either wiring it into model selection or removing it to avoid confusion. | | 2 | [NIT] | `review/persona_prompt.go` | 1 | BuildPersonaSystemPrompt re-specifies the output schema that likely mirrors BuildSystemBase; consider refactoring to share a common formatter for the JSON output specification to avoid future drift. | | 3 | [NIT] | `.gitea/actions/review/action.yml` | 1 | Added persona inputs are fine, but consider documenting expected values inline (e.g., valid built-in names) or validating them early to provide faster feedback in CI logs. | ## Recommendation **APPROVE** — Overall, this is a well-designed and well-tested feature addition. The persona system integrates cleanly with the existing prompt/budget pipeline, the action and CLI flags are mutually exclusive and validated, path handling is secure via workspace-bound resolution, and the embedded built-in personas are convenient and covered by tests. Consider addressing the small nits: either use Persona.ModelPref (e.g., log a warning or influence model choice) or remove it to reduce ambiguity, and consider centralizing the common JSON output schema between persona and default prompts to minimize duplication. Otherwise, this is good to merge. --- *Review by gpt*  --- *Evaluated against 83441bfb*

review/persona.go Outdated

						
				@@ -0,0 +16,4 @@

				type Persona struct {

					Name         string   `json:"name"`

					DisplayName  string   `json:"display_name"`

					ModelPref    string   `json:"model_preference,omitempty"`

gpt-review-bot commented

First-time contributor

[NIT] Persona.ModelPref (model_preference) is defined but not used anywhere. Consider either wiring it into model selection or removing it to avoid confusion.

**[NIT]** Persona.ModelPref (model_preference) is defined but not used anywhere. Consider either wiring it into model selection or removing it to avoid confusion.

review/persona_prompt.go Outdated

						
				@@ -0,0 +1,118 @@

				package review

gpt-review-bot commented

2026-05-10 15:49:08 +00:00

First-time contributor

[NIT] BuildPersonaSystemPrompt re-specifies the output schema that likely mirrors BuildSystemBase; consider refactoring to share a common formatter for the JSON output specification to avoid future drift.

**[NIT]** BuildPersonaSystemPrompt re-specifies the output schema that likely mirrors BuildSystemBase; consider refactoring to share a common formatter for the JSON output specification to avoid future drift.

security-review-bot requested review from security-review-bot 2026-05-10 15:49:50 +00:00

security-review-bot approved these changes 2026-05-10 15:49:50 +00:00

security-review-bot left a comment

Security Review

Summary

The persona feature is implemented cleanly with sensible security boundaries. Paths for persona and prompt files are validated against the workspace with symlink checks, and built-in personas are embedded to avoid remote fetches. No exploitable vulnerabilities were found.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`cmd/review-bot/main.go`	628	Workspace boundary check relies on strings.HasPrefix for path containment. While mitigated by filepath.Clean and EvalSymlinks, using filepath.Rel (and verifying it does not start with "..") would be a more robust, cross-platform defense-in-depth against subtle path normalization edge cases.
2	[NIT]	`review/formatter.go`	19	Persona display name is inserted into the Markdown header and footer without sanitization. Although Gitea typically sanitizes HTML and this is repository-controlled input, consider documenting that display_name should avoid raw HTML or adding minimal sanitization to reduce the risk of rendering surprises.

Recommendation

APPROVE — Approve this change. The new persona system uses embedded JSON for built-in roles and validates local file inputs with a clear workspace-bound and symlink-safe check. No injection, auth, or secret-handling issues were identified. As defense-in-depth, consider switching the path containment check to use filepath.Rel to avoid relying on prefix comparisons, and optionally document or sanitize persona display names to prevent unexpected Markdown/HTML rendering. Otherwise, the implementation is sound and CI has passed.

Review by security

Evaluated against 83441bfb

# Security Review ## Summary The persona feature is implemented cleanly with sensible security boundaries. Paths for persona and prompt files are validated against the workspace with symlink checks, and built-in personas are embedded to avoid remote fetches. No exploitable vulnerabilities were found. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `cmd/review-bot/main.go` | 628 | Workspace boundary check relies on strings.HasPrefix for path containment. While mitigated by filepath.Clean and EvalSymlinks, using filepath.Rel (and verifying it does not start with "..") would be a more robust, cross-platform defense-in-depth against subtle path normalization edge cases. | | 2 | [NIT] | `review/formatter.go` | 19 | Persona display name is inserted into the Markdown header and footer without sanitization. Although Gitea typically sanitizes HTML and this is repository-controlled input, consider documenting that display_name should avoid raw HTML or adding minimal sanitization to reduce the risk of rendering surprises. | ## Recommendation **APPROVE** — Approve this change. The new persona system uses embedded JSON for built-in roles and validates local file inputs with a clear workspace-bound and symlink-safe check. No injection, auth, or secret-handling issues were identified. As defense-in-depth, consider switching the path containment check to use filepath.Rel to avoid relying on prefix comparisons, and optionally document or sanitize persona display names to prevent unexpected Markdown/HTML rendering. Otherwise, the implementation is sound and CI has passed. --- *Review by security*  --- *Evaluated against 83441bfb*

cmd/review-bot/main.go Outdated

						
				@@ -590,0 +625,4 @@

					// Join and clean the path

					fullPath := filepath.Join(absWorkspace, path)

					fullPath = filepath.Clean(fullPath)

					// Check path is within workspace

security-review-bot commented

2026-05-10 15:49:50 +00:00

[MINOR] Workspace boundary check relies on strings.HasPrefix for path containment. While mitigated by filepath.Clean and EvalSymlinks, using filepath.Rel (and verifying it does not start with "..") would be a more robust, cross-platform defense-in-depth against subtle path normalization edge cases.

**[MINOR]** Workspace boundary check relies on strings.HasPrefix for path containment. While mitigated by filepath.Clean and EvalSymlinks, using filepath.Rel (and verifying it does not start with "..") would be a more robust, cross-platform defense-in-depth against subtle path normalization edge cases.

rodin force-pushed issue-51 from 83441bfbac to 3d50707332

2026-05-10 15:54:40 +00:00

Compare

sonnet-review-bot requested changes 2026-05-10 16:09:36 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

The PR adds a useful persona feature but critically violates the project's stated convention of 'Go standard library only — no external dependencies' by introducing gopkg.in/yaml.v3. The design document even acknowledges this conflict and resolves to use JSON, but the implementation proceeds to use YAML anyway. This is the primary blocker; all other issues are secondary.

Findings

#	Severity	File	Line	Finding
1	[MAJOR]	`go.mod`	5	Introduces gopkg.in/yaml.v3 as a dependency. The repository conventions explicitly state 'Go standard library only — no external dependencies.' The design document (DESIGN-51-personas.md) even documents this conflict under 'Design Revision: JSON Instead of YAML' and resolves to use JSON to maintain zero dependencies — but the implementation ignores that resolution and uses YAML anyway. The persona loading code must be changed to use only JSON, or the YAML dependency must be removed.
2	[MAJOR]	`review/persona.go`	12	Imports gopkg.in/yaml.v3 in violation of the zero-external-dependencies convention. The parsePersona function should use only encoding/json. Built-in personas stored as .yaml files should either be converted to .json or parsed with a minimal hand-rolled YAML subset — though the simplest fix consistent with the design document's own resolution is to store built-in personas as .json and remove the yaml.v3 import entirely.
3	[MINOR]	`review/persona.go`	96	parsePersona uses filepath.Ext(source) to detect JSON vs YAML, but for built-in personas the source is 'builtin:security' (no file extension), so it falls through to the YAML path. This works today only because yaml.v3 is a superset of JSON, but it's fragile: if YAML is replaced with JSON-only, built-in persona sources would need to be renamed (e.g., 'builtin:security.yaml') or the detection logic changed. The dispatch logic is unclear about its contract.
4	[MINOR]	`review/persona.go`	78	ListBuiltinPersonas silently returns nil when ReadDir fails. The caller (LoadBuiltinPersona error message) would then say 'available: ' with no names, which is confusing. Consider logging or returning an error, or at minimum ensuring the error path doesn't produce a misleading 'available: ' suffix in the error message.
5	[MINOR]	`review/persona_prompt.go`	94	BuildSystemPromptWithPersona has the conventions and patterns arguments in the wrong order relative to BuildSystemBase's documented usage in the budget assembly (where patterns come before conventions in the prompt). More importantly, the argument order is (persona, conventions, patterns) but the caller in main.go assembles the prompt manually rather than using this function — making BuildSystemPromptWithPersona a dead export that duplicates logic without being used. Either use it in main.go or remove it.
6	[MINOR]	`cmd/review-bot/main.go`	75	The --persona-file flag description says 'Path to persona JSON file' but the implementation also accepts YAML. The description should say 'Path to persona JSON or YAML file' (or after the dependency fix, just 'JSON file').
7	[NIT]	`review/persona.go`	89	Trailing whitespace on line 89 (blank line with spaces inside parsePersona before the ext detection block). Minor style issue.
8	[NIT]	`review/persona_prompt.go`	68	The JSON output format is written as a series of sb.WriteString calls with manually formatted JSON. This is the same pattern used in BuildSystemBase and is consistent, but the inline JSON template is duplicated between BuildPersonaSystemPrompt and BuildSystemBase. A shared constant or helper would reduce drift risk if the output schema ever changes.
9	[NIT]	`cmd/review-bot/main_test.go`	157	Double blank line after the closing brace of TestValidateWorkspacePath before the makeReview helper. Minor style inconsistency.
10	[NIT]	`README.md`	407	The README custom persona example shows YAML format and says 'JSON format is also supported for backwards compatibility' — but this is a new feature with no prior format, so there's no backwards compatibility concern. After removing the yaml.v3 dependency and going JSON-only per the design document's own resolution, this sentence should be removed or changed to accurately describe which format is canonical.

Recommendation

REQUEST_CHANGES — REQUEST_CHANGES. The blocking issue is the introduction of gopkg.in/yaml.v3 in direct violation of the project's 'Go standard library only — no external dependencies' convention. Ironically, the design document that ships with this PR explicitly documents this conflict and resolves to use JSON instead of YAML — but the implementation ignores that resolution. The fix is straightforward: convert the built-in persona files from .yaml to .json, update the embed glob to *.json, remove the yaml.v3 import, and use only encoding/json. Once the dependency is removed, also clean up: (1) the --persona-file description to accurately state the supported format, (2) the README note about 'backwards compatibility' which doesn't apply, and (3) consider whether BuildSystemPromptWithPersona should be used in main.go or removed. The overall feature design is sound and the code quality is good — this is a well-structured addition that just needs the dependency violation corrected.

Review by sonnet

Evaluated against 3d507073

# Sonnet Review ## Summary The PR adds a useful persona feature but critically violates the project's stated convention of 'Go standard library only — no external dependencies' by introducing gopkg.in/yaml.v3. The design document even acknowledges this conflict and resolves to use JSON, but the implementation proceeds to use YAML anyway. This is the primary blocker; all other issues are secondary. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MAJOR] | `go.mod` | 5 | Introduces gopkg.in/yaml.v3 as a dependency. The repository conventions explicitly state 'Go standard library only — no external dependencies.' The design document (DESIGN-51-personas.md) even documents this conflict under 'Design Revision: JSON Instead of YAML' and resolves to use JSON to maintain zero dependencies — but the implementation ignores that resolution and uses YAML anyway. The persona loading code must be changed to use only JSON, or the YAML dependency must be removed. | | 2 | [MAJOR] | `review/persona.go` | 12 | Imports gopkg.in/yaml.v3 in violation of the zero-external-dependencies convention. The parsePersona function should use only encoding/json. Built-in personas stored as .yaml files should either be converted to .json or parsed with a minimal hand-rolled YAML subset — though the simplest fix consistent with the design document's own resolution is to store built-in personas as .json and remove the yaml.v3 import entirely. | | 3 | [MINOR] | `review/persona.go` | 96 | parsePersona uses filepath.Ext(source) to detect JSON vs YAML, but for built-in personas the source is 'builtin:security' (no file extension), so it falls through to the YAML path. This works today only because yaml.v3 is a superset of JSON, but it's fragile: if YAML is replaced with JSON-only, built-in persona sources would need to be renamed (e.g., 'builtin:security.yaml') or the detection logic changed. The dispatch logic is unclear about its contract. | | 4 | [MINOR] | `review/persona.go` | 78 | ListBuiltinPersonas silently returns nil when ReadDir fails. The caller (LoadBuiltinPersona error message) would then say 'available: ' with no names, which is confusing. Consider logging or returning an error, or at minimum ensuring the error path doesn't produce a misleading 'available: ' suffix in the error message. | | 5 | [MINOR] | `review/persona_prompt.go` | 94 | BuildSystemPromptWithPersona has the conventions and patterns arguments in the wrong order relative to BuildSystemBase's documented usage in the budget assembly (where patterns come before conventions in the prompt). More importantly, the argument order is (persona, conventions, patterns) but the caller in main.go assembles the prompt manually rather than using this function — making BuildSystemPromptWithPersona a dead export that duplicates logic without being used. Either use it in main.go or remove it. | | 6 | [MINOR] | `cmd/review-bot/main.go` | 75 | The --persona-file flag description says 'Path to persona JSON file' but the implementation also accepts YAML. The description should say 'Path to persona JSON or YAML file' (or after the dependency fix, just 'JSON file'). | | 7 | [NIT] | `review/persona.go` | 89 | Trailing whitespace on line 89 (blank line with spaces inside parsePersona before the ext detection block). Minor style issue. | | 8 | [NIT] | `review/persona_prompt.go` | 68 | The JSON output format is written as a series of sb.WriteString calls with manually formatted JSON. This is the same pattern used in BuildSystemBase and is consistent, but the inline JSON template is duplicated between BuildPersonaSystemPrompt and BuildSystemBase. A shared constant or helper would reduce drift risk if the output schema ever changes. | | 9 | [NIT] | `cmd/review-bot/main_test.go` | 157 | Double blank line after the closing brace of TestValidateWorkspacePath before the makeReview helper. Minor style inconsistency. | | 10 | [NIT] | `README.md` | 407 | The README custom persona example shows YAML format and says 'JSON format is also supported for backwards compatibility' — but this is a new feature with no prior format, so there's no backwards compatibility concern. After removing the yaml.v3 dependency and going JSON-only per the design document's own resolution, this sentence should be removed or changed to accurately describe which format is canonical. | ## Recommendation **REQUEST_CHANGES** — REQUEST_CHANGES. The blocking issue is the introduction of gopkg.in/yaml.v3 in direct violation of the project's 'Go standard library only — no external dependencies' convention. Ironically, the design document that ships with this PR explicitly documents this conflict and resolves to use JSON instead of YAML — but the implementation ignores that resolution. The fix is straightforward: convert the built-in persona files from .yaml to .json, update the embed glob to *.json, remove the yaml.v3 import, and use only encoding/json. Once the dependency is removed, also clean up: (1) the --persona-file description to accurately state the supported format, (2) the README note about 'backwards compatibility' which doesn't apply, and (3) consider whether BuildSystemPromptWithPersona should be used in main.go or removed. The overall feature design is sound and the code quality is good — this is a well-structured addition that just needs the dependency violation corrected. --- *Review by sonnet*  --- *Evaluated against 3d507073*

README.md Outdated

						
				@@ -332,0 +404,4 @@

				  - Decimal precision for money

				ignore:

				  - Code style

sonnet-review-bot commented

First-time contributor

[NIT] The README custom persona example shows YAML format and says 'JSON format is also supported for backwards compatibility' — but this is a new feature with no prior format, so there's no backwards compatibility concern. After removing the yaml.v3 dependency and going JSON-only per the design document's own resolution, this sentence should be removed or changed to accurately describe which format is canonical.

**[NIT]** The README custom persona example shows YAML format and says 'JSON format is also supported for backwards compatibility' — but this is a new feature with no prior format, so there's no backwards compatibility concern. After removing the yaml.v3 dependency and going JSON-only per the design document's own resolution, this sentence should be removed or changed to accurately describe which format is canonical.

cmd/review-bot/main.go

						
				@@ -72,2 +72,4 @@

					llmProvider := flag.String("llm-provider", envOrDefault("LLM_PROVIDER", "openai"), "LLM API provider: openai or anthropic")

					personaName := flag.String("persona", envOrDefault("PERSONA", ""), "Built-in persona name (security, architect, docs)")

					personaFile := flag.String("persona-file", envOrDefault("PERSONA_FILE", ""), "Path to persona JSON file")

sonnet-review-bot commented

First-time contributor

[MINOR] The --persona-file flag description says 'Path to persona JSON file' but the implementation also accepts YAML. The description should say 'Path to persona JSON or YAML file' (or after the dependency fix, just 'JSON file').

**[MINOR]** The --persona-file flag description says 'Path to persona JSON file' but the implementation also accepts YAML. The description should say 'Path to persona JSON or YAML file' (or after the dependency fix, just 'JSON file').

cmd/review-bot/main_test.go

						
				@@ -48,2 +154,4 @@

				func makeReview(id int64, login, state string, stale bool, body string) gitea.Review {

					r := gitea.Review{

sonnet-review-bot commented

First-time contributor

[NIT] Double blank line after the closing brace of TestValidateWorkspacePath before the makeReview helper. Minor style inconsistency.

**[NIT]** Double blank line after the closing brace of TestValidateWorkspacePath before the makeReview helper. Minor style inconsistency.

go.mod Outdated

						
				@@ -2,2 +2,4 @@

				go 1.26.2

				require gopkg.in/yaml.v3 v3.0.1 // indirect

sonnet-review-bot commented

First-time contributor

[MAJOR] Introduces gopkg.in/yaml.v3 as a dependency. The repository conventions explicitly state 'Go standard library only — no external dependencies.' The design document (DESIGN-51-personas.md) even documents this conflict under 'Design Revision: JSON Instead of YAML' and resolves to use JSON to maintain zero dependencies — but the implementation ignores that resolution and uses YAML anyway. The persona loading code must be changed to use only JSON, or the YAML dependency must be removed.

**[MAJOR]** Introduces gopkg.in/yaml.v3 as a dependency. The repository conventions explicitly state 'Go standard library only — no external dependencies.' The design document (DESIGN-51-personas.md) even documents this conflict under 'Design Revision: JSON Instead of YAML' and resolves to use JSON to maintain zero dependencies — but the implementation ignores that resolution and uses YAML anyway. The persona loading code must be changed to use only JSON, or the YAML dependency must be removed.

review/persona.go Outdated

						
				@@ -0,0 +9,4 @@

					"strings"

					"gopkg.in/yaml.v3"

				)

sonnet-review-bot commented

First-time contributor

[MAJOR] Imports gopkg.in/yaml.v3 in violation of the zero-external-dependencies convention. The parsePersona function should use only encoding/json. Built-in personas stored as .yaml files should either be converted to .json or parsed with a minimal hand-rolled YAML subset — though the simplest fix consistent with the design document's own resolution is to store built-in personas as .json and remove the yaml.v3 import entirely.

**[MAJOR]** Imports gopkg.in/yaml.v3 in violation of the zero-external-dependencies convention. The parsePersona function should use only encoding/json. Built-in personas stored as .yaml files should either be converted to .json or parsed with a minimal hand-rolled YAML subset — though the simplest fix consistent with the design document's own resolution is to store built-in personas as .json and remove the yaml.v3 import entirely.

review/persona.go Outdated

						
				@@ -0,0 +75,4 @@

						}

					}

					return names

				}

sonnet-review-bot commented

First-time contributor

[MINOR] ListBuiltinPersonas silently returns nil when ReadDir fails. The caller (LoadBuiltinPersona error message) would then say 'available: ' with no names, which is confusing. Consider logging or returning an error, or at minimum ensuring the error path doesn't produce a misleading 'available: ' suffix in the error message.

**[MINOR]** ListBuiltinPersonas silently returns nil when ReadDir fails. The caller (LoadBuiltinPersona error message) would then say 'available: ' with no names, which is confusing. Consider logging or returning an error, or at minimum ensuring the error path doesn't produce a misleading 'available: ' suffix in the error message.

review/persona.go Outdated

						
				@@ -0,0 +86,4 @@

						if err := json.Unmarshal(data, &p); err != nil {

							return nil, fmt.Errorf("parse persona %s: %w", source, err)

						}

					} else {

sonnet-review-bot commented

First-time contributor

[NIT] Trailing whitespace on line 89 (blank line with spaces inside parsePersona before the ext detection block). Minor style issue.

**[NIT]** Trailing whitespace on line 89 (blank line with spaces inside parsePersona before the ext detection block). Minor style issue.

review/persona.go Outdated

						
				@@ -0,0 +93,4 @@

						}

					}

					if err := validatePersona(&p, source); err != nil {

sonnet-review-bot commented

First-time contributor

[MINOR] parsePersona uses filepath.Ext(source) to detect JSON vs YAML, but for built-in personas the source is 'builtin:security' (no file extension), so it falls through to the YAML path. This works today only because yaml.v3 is a superset of JSON, but it's fragile: if YAML is replaced with JSON-only, built-in persona sources would need to be renamed (e.g., 'builtin:security.yaml') or the detection logic changed. The dispatch logic is unclear about its contract.

**[MINOR]** parsePersona uses filepath.Ext(source) to detect JSON vs YAML, but for built-in personas the source is 'builtin:security' (no file extension), so it falls through to the YAML path. This works today only because yaml.v3 is a superset of JSON, but it's fragile: if YAML is replaced with JSON-only, built-in persona sources would need to be renamed (e.g., 'builtin:security.yaml') or the detection logic changed. The dispatch logic is unclear about its contract.

review/persona_prompt.go Outdated

						
				@@ -0,0 +65,4 @@

					sb.WriteString("  \"verdict\": \"APPROVE\" or \"REQUEST_CHANGES\",\n")

					sb.WriteString("  \"summary\": \"Brief overall assessment (1-3 sentences)\",\n")

					sb.WriteString("  \"findings\": [\n")

					sb.WriteString("    {\n")

sonnet-review-bot commented

First-time contributor

[NIT] The JSON output format is written as a series of sb.WriteString calls with manually formatted JSON. This is the same pattern used in BuildSystemBase and is consistent, but the inline JSON template is duplicated between BuildPersonaSystemPrompt and BuildSystemBase. A shared constant or helper would reduce drift risk if the output schema ever changes.

**[NIT]** The JSON output format is written as a series of sb.WriteString calls with manually formatted JSON. This is the same pattern used in BuildSystemBase and is consistent, but the inline JSON template is duplicated between BuildPersonaSystemPrompt and BuildSystemBase. A shared constant or helper would reduce drift risk if the output schema ever changes.

review/persona_prompt.go Outdated

						
				@@ -0,0 +91,4 @@

					return sb.String()

				}

				// BuildSystemPromptWithPersona constructs the full system prompt, using either

sonnet-review-bot commented

First-time contributor

[MINOR] BuildSystemPromptWithPersona has the conventions and patterns arguments in the wrong order relative to BuildSystemBase's documented usage in the budget assembly (where patterns come before conventions in the prompt). More importantly, the argument order is (persona, conventions, patterns) but the caller in main.go assembles the prompt manually rather than using this function — making BuildSystemPromptWithPersona a dead export that duplicates logic without being used. Either use it in main.go or remove it.

**[MINOR]** BuildSystemPromptWithPersona has the conventions and patterns arguments in the wrong order relative to BuildSystemBase's documented usage in the budget assembly (where patterns come before conventions in the prompt). More importantly, the argument order is (persona, conventions, patterns) but the caller in main.go assembles the prompt manually rather than using this function — making BuildSystemPromptWithPersona a dead export that duplicates logic without being used. Either use it in main.go or remove it.

gpt-review-bot requested changes 2026-05-10 16:10:36 +00:00

gpt-review-bot left a comment

First-time contributor

Gpt Review

Summary

The persona feature is well integrated (flags, prompt selection, formatting, tests) and CI passes, but the change introduces an external YAML dependency which violates the repository’s zero-dependency convention. There are also minor documentation inconsistencies and a small portability concern in workspace path validation.

Findings

#	Severity	File	Line	Finding
1	[MAJOR]	`go.mod`	5	Introduces external dependency gopkg.in/yaml.v3, which violates the repository convention of using Go standard library only (zero dependencies).
2	[MAJOR]	`review/persona.go`	17	Imports gopkg.in/yaml.v3 and parses YAML personas, conflicting with the project’s zero-dependency requirement. Either remove YAML support or replace with JSON-only parsing.
3	[MINOR]	`.gitea/actions/review/action.yml`	86	The persona-file input description states "Path to persona JSON file" but the implementation supports both YAML and JSON. Update the description to reflect YAML/JSON support for consistency.
4	[MINOR]	`docs/DESIGN-51-personas.md`	300	The design document states a "Design Revision: JSON Instead of YAML" to preserve zero dependencies, but the implementation retains YAML parsing and adds a YAML dependency. Align docs and code (prefer JSON-only) to match project conventions.
5	[MINOR]	`cmd/review-bot/main.go`	610	validateWorkspacePath uses strings.HasPrefix for path containment checks, which can be brittle on case-insensitive filesystems. Prefer using filepath.Rel and ensuring the result does not start with ".." for more robust containment checks.

Recommendation

REQUEST_CHANGES — The personas feature is thoughtfully implemented and well tested, but it conflicts with the repository’s "Go standard library only — no external dependencies" rule. To proceed:

Remove the YAML dependency:
- Convert built-in personas to embedded JSON files and update //go:embed accordingly.
- Drop gopkg.in/yaml.v3 from go.mod and remove YAML parsing paths.
- Restrict LoadPersona to JSON files only (or support YAML only if you can implement a zero-dep parser, which is not recommended here). Update README/action descriptions to reflect the final supported format consistently.
Documentation consistency:
- Update .gitea/actions/review/action.yml persona-file input description to mention the correct supported format(s) (after (1), likely JSON-only).
- Ensure docs/DESIGN-51-personas.md and README consistently state the supported persona format.
Path validation hardening (optional but recommended):
- Replace the strings.HasPrefix containment check in validateWorkspacePath with filepath.Rel and ensure the relative path does not start with "..". This is more robust across platforms and case sensitivity.

Once YAML is removed and docs are aligned, the feature will comply with project conventions and can be approved.

Review by gpt

Evaluated against 3d507073

# Gpt Review ## Summary The persona feature is well integrated (flags, prompt selection, formatting, tests) and CI passes, but the change introduces an external YAML dependency which violates the repository’s zero-dependency convention. There are also minor documentation inconsistencies and a small portability concern in workspace path validation. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MAJOR] | `go.mod` | 5 | Introduces external dependency gopkg.in/yaml.v3, which violates the repository convention of using Go standard library only (zero dependencies). | | 2 | [MAJOR] | `review/persona.go` | 17 | Imports gopkg.in/yaml.v3 and parses YAML personas, conflicting with the project’s zero-dependency requirement. Either remove YAML support or replace with JSON-only parsing. | | 3 | [MINOR] | `.gitea/actions/review/action.yml` | 86 | The persona-file input description states "Path to persona JSON file" but the implementation supports both YAML and JSON. Update the description to reflect YAML/JSON support for consistency. | | 4 | [MINOR] | `docs/DESIGN-51-personas.md` | 300 | The design document states a "Design Revision: JSON Instead of YAML" to preserve zero dependencies, but the implementation retains YAML parsing and adds a YAML dependency. Align docs and code (prefer JSON-only) to match project conventions. | | 5 | [MINOR] | `cmd/review-bot/main.go` | 610 | validateWorkspacePath uses strings.HasPrefix for path containment checks, which can be brittle on case-insensitive filesystems. Prefer using filepath.Rel and ensuring the result does not start with ".." for more robust containment checks. | ## Recommendation **REQUEST_CHANGES** — The personas feature is thoughtfully implemented and well tested, but it conflicts with the repository’s "Go standard library only — no external dependencies" rule. To proceed: 1) Remove the YAML dependency: - Convert built-in personas to embedded JSON files and update //go:embed accordingly. - Drop gopkg.in/yaml.v3 from go.mod and remove YAML parsing paths. - Restrict LoadPersona to JSON files only (or support YAML only if you can implement a zero-dep parser, which is not recommended here). Update README/action descriptions to reflect the final supported format consistently. 2) Documentation consistency: - Update .gitea/actions/review/action.yml persona-file input description to mention the correct supported format(s) (after (1), likely JSON-only). - Ensure docs/DESIGN-51-personas.md and README consistently state the supported persona format. 3) Path validation hardening (optional but recommended): - Replace the strings.HasPrefix containment check in validateWorkspacePath with filepath.Rel and ensure the relative path does not start with "..". This is more robust across platforms and case sensitivity. Once YAML is removed and docs are aligned, the feature will comply with project conventions and can be approved. --- *Review by gpt*  --- *Evaluated against 3d507073*

.gitea/actions/review/action.yml

						
				@@ -77,2 +83,4 @@

				    required: false

				    default: ''

				runs:

gpt-review-bot commented

First-time contributor

[MINOR] The persona-file input description states "Path to persona JSON file" but the implementation supports both YAML and JSON. Update the description to reflect YAML/JSON support for consistency.

**[MINOR]** The persona-file input description states "Path to persona JSON file" but the implementation supports both YAML and JSON. Update the description to reflect YAML/JSON support for consistency.

cmd/review-bot/main.go

						
				@@ -587,6 +610,36 @@ func validateReviewerName(name string) error {

					return nil

gpt-review-bot commented

First-time contributor

[MINOR] validateWorkspacePath uses strings.HasPrefix for path containment checks, which can be brittle on case-insensitive filesystems. Prefer using filepath.Rel and ensuring the result does not start with ".." for more robust containment checks.

**[MINOR]** validateWorkspacePath uses strings.HasPrefix for path containment checks, which can be brittle on case-insensitive filesystems. Prefer using filepath.Rel and ensuring the result does not start with ".." for more robust containment checks.

docs/DESIGN-51-personas.md Outdated

						
				@@ -0,0 +297,4 @@

				## Design Review Findings (Self-Review)

				### Finding 1: Severity Mapping

gpt-review-bot commented

First-time contributor

[MINOR] The design document states a "Design Revision: JSON Instead of YAML" to preserve zero dependencies, but the implementation retains YAML parsing and adds a YAML dependency. Align docs and code (prefer JSON-only) to match project conventions.

**[MINOR]** The design document states a "Design Revision: JSON Instead of YAML" to preserve zero dependencies, but the implementation retains YAML parsing and adds a YAML dependency. Align docs and code (prefer JSON-only) to match project conventions.

go.mod Outdated

						
				@@ -2,2 +2,4 @@

				go 1.26.2

				require gopkg.in/yaml.v3 v3.0.1 // indirect

gpt-review-bot commented

First-time contributor

[MAJOR] Introduces external dependency gopkg.in/yaml.v3, which violates the repository convention of using Go standard library only (zero dependencies).

**[MAJOR]** Introduces external dependency gopkg.in/yaml.v3, which violates the repository convention of using Go standard library only (zero dependencies).

review/persona.go Outdated

						
				@@ -0,0 +14,4 @@

				//go:embed personas/*.yaml

				var embeddedPersonas embed.FS

				// Persona defines a specialized review role with focused expertise.

gpt-review-bot commented

2026-05-10 16:10:46 +00:00

First-time contributor

[MAJOR] Imports gopkg.in/yaml.v3 and parses YAML personas, conflicting with the project’s zero-dependency requirement. Either remove YAML support or replace with JSON-only parsing.

**[MAJOR]** Imports gopkg.in/yaml.v3 and parses YAML personas, conflicting with the project’s zero-dependency requirement. Either remove YAML support or replace with JSON-only parsing.

security-review-bot requested review from security-review-bot 2026-05-10 16:10:46 +00:00

security-review-bot approved these changes 2026-05-10 16:10:46 +00:00

security-review-bot left a comment

Security Review

Summary

The changes add role-based review personas with proper path validation and clean integration into the CLI and action. No exploitable vulnerabilities are evident, and CI has passed.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`review/persona.go`	33	Persona files from the repository are read and unmarshaled without an explicit size limit. A very large YAML/JSON persona file could cause elevated memory/CPU usage during os.ReadFile and yaml/json unmarshaling, enabling a potential CI resource exhaustion vector. Consider enforcing a maximum file size before reading/unmarshaling and rejecting oversized files.
2	[MINOR]	`go.mod`	5	An external dependency (gopkg.in/yaml.v3 v3.0.1) is introduced for YAML support. While common and currently patched against known alias-expansion issues, any new dependency increases supply-chain risk. Ensure this version is regularly audited and pinned, and consider preferring JSON where possible to minimize the attack surface.
3	[NIT]	`review/formatter.go`	61	Persona DisplayName is inserted into the review header and footer without escaping. Although Gitea typically sanitizes markdown, an attacker-controlled DisplayName from a repo persona file could inject undesirable markdown. Consider sanitizing or constraining DisplayName to a safe character set to reduce reliance on downstream sanitization.

Recommendation

APPROVE — Overall, the persona feature is implemented securely, with good path traversal and symlink defenses via validateWorkspacePath. Approve the changes. As hardening steps, enforce a reasonable maximum size on persona and system prompt files before unmarshaling to mitigate potential CI resource exhaustion, maintain vigilance on the new YAML dependency (audit and pin versions), and consider sanitizing persona DisplayName outputs to guard against potential markdown injection should downstream sanitization be bypassed.

Review by security

Evaluated against 3d507073

# Security Review ## Summary The changes add role-based review personas with proper path validation and clean integration into the CLI and action. No exploitable vulnerabilities are evident, and CI has passed. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `review/persona.go` | 33 | Persona files from the repository are read and unmarshaled without an explicit size limit. A very large YAML/JSON persona file could cause elevated memory/CPU usage during os.ReadFile and yaml/json unmarshaling, enabling a potential CI resource exhaustion vector. Consider enforcing a maximum file size before reading/unmarshaling and rejecting oversized files. | | 2 | [MINOR] | `go.mod` | 5 | An external dependency (gopkg.in/yaml.v3 v3.0.1) is introduced for YAML support. While common and currently patched against known alias-expansion issues, any new dependency increases supply-chain risk. Ensure this version is regularly audited and pinned, and consider preferring JSON where possible to minimize the attack surface. | | 3 | [NIT] | `review/formatter.go` | 61 | Persona DisplayName is inserted into the review header and footer without escaping. Although Gitea typically sanitizes markdown, an attacker-controlled DisplayName from a repo persona file could inject undesirable markdown. Consider sanitizing or constraining DisplayName to a safe character set to reduce reliance on downstream sanitization. | ## Recommendation **APPROVE** — Overall, the persona feature is implemented securely, with good path traversal and symlink defenses via validateWorkspacePath. Approve the changes. As hardening steps, enforce a reasonable maximum size on persona and system prompt files before unmarshaling to mitigate potential CI resource exhaustion, maintain vigilance on the new YAML dependency (audit and pin versions), and consider sanitizing persona DisplayName outputs to guard against potential markdown injection should downstream sanitization be bypassed. --- *Review by security*  --- *Evaluated against 3d507073*

go.mod Outdated

						
				@@ -2,2 +2,4 @@

				go 1.26.2

				require gopkg.in/yaml.v3 v3.0.1 // indirect

security-review-bot commented

[MINOR] An external dependency (gopkg.in/yaml.v3 v3.0.1) is introduced for YAML support. While common and currently patched against known alias-expansion issues, any new dependency increases supply-chain risk. Ensure this version is regularly audited and pinned, and consider preferring JSON where possible to minimize the attack surface.

**[MINOR]** An external dependency (gopkg.in/yaml.v3 v3.0.1) is introduced for YAML support. While common and currently patched against known alias-expansion issues, any new dependency increases supply-chain risk. Ensure this version is regularly audited and pinned, and consider preferring JSON where possible to minimize the attack surface.

review/formatter.go Outdated

						
				@@ -56,0 +58,4 @@

				// displayName is used for the header title, sentinelName is used for the cleanup sentinel.

				// If displayName is empty, sentinelName is used for both.

				func FormatMarkdownWithDisplay(result *ReviewResult, displayName, sentinelName string) string {

					var sb strings.Builder

security-review-bot commented

2026-05-10 16:10:46 +00:00

[NIT] Persona DisplayName is inserted into the review header and footer without escaping. Although Gitea typically sanitizes markdown, an attacker-controlled DisplayName from a repo persona file could inject undesirable markdown. Consider sanitizing or constraining DisplayName to a safe character set to reduce reliance on downstream sanitization.

**[NIT]** Persona DisplayName is inserted into the review header and footer without escaping. Although Gitea typically sanitizes markdown, an attacker-controlled DisplayName from a repo persona file could inject undesirable markdown. Consider sanitizing or constraining DisplayName to a safe character set to reduce reliance on downstream sanitization.

review/persona.go Outdated

						
				@@ -0,0 +30,4 @@

				// These are prompt guidance for the LLM, not output format changes.

				type Severity struct {

					Major string `json:"major" yaml:"major"`

					Minor string `json:"minor" yaml:"minor"`

security-review-bot commented

2026-05-10 16:10:46 +00:00

[MINOR] Persona files from the repository are read and unmarshaled without an explicit size limit. A very large YAML/JSON persona file could cause elevated memory/CPU usage during os.ReadFile and yaml/json unmarshaling, enabling a potential CI resource exhaustion vector. Consider enforcing a maximum file size before reading/unmarshaling and rejecting oversized files.

**[MINOR]** Persona files from the repository are read and unmarshaled without an explicit size limit. A very large YAML/JSON persona file could cause elevated memory/CPU usage during os.ReadFile and yaml/json unmarshaling, enabling a potential CI resource exhaustion vector. Consider enforcing a maximum file size before reading/unmarshaling and rejecting oversized files.

rodin force-pushed issue-51 from 3d50707332 to a36c3da05b

2026-05-10 16:12:43 +00:00

Compare

rodin added 1 commit 2026-05-10 16:14:51 +00:00

feat(persona): add role-based review personas

PR Ready Gate / clear-labels (pull_request) Successful in 2s

Details

CI / test (pull_request) Successful in 9m31s

Details

CI / review (/anthropic/v1, anthropic--claude-4.6-sonnet, sonnet, anthropic, SONNET_REVIEW_TOKEN) (pull_request) Successful in 10m3s

Details

CI / review (/openai/v1, gpt-5, gpt, openai, GPT_REVIEW_TOKEN) (pull_request) Successful in 11m30s

Details

CI / review (/openai/v1, gpt-5, security, openai, SECURITY_REVIEW.md, SECURITY_REVIEW_TOKEN) (pull_request) Successful in 10m56s

Details

57e62a345f

Add persona system for specialized review roles. Each persona defines:
- A specific review focus (security, architecture, documentation)
- Custom system prompt additions
- Personality/tone adjustments

Built-in personas: security, architect, docs
Custom personas: load from JSON via persona-file flag

Includes workspace validation to prevent path traversal attacks.

Closes #51

rodin force-pushed issue-51 from a36c3da05b to 57e62a345f

2026-05-10 16:14:51 +00:00

Compare

sonnet-review-bot requested changes 2026-05-10 16:27:38 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

The implementation is well-structured and feature-complete, but it introduces an external dependency (github.com/goccy/go-yaml) in a repository that explicitly requires Go standard library only. This is a direct violation of the repository's stated conventions. All other aspects of the code are high quality.

Findings

#	Severity	File	Line	Finding
1	[MAJOR]	`go.mod`	5	The repository conventions explicitly state 'Go standard library only — no external dependencies.' This PR adds `github.com/goccy/go-yaml v1.19.2` as an external dependency. The design doc (`docs/DESIGN-51-personas.md`) even notes a 'Design Revision' acknowledging this decision, but the justification (multi-line strings, comments in YAML) does not override the stated project constraint. YAML parsing can be handled with the stdlib `encoding/json` package (JSON-only persona files) or by writing a minimal YAML subset parser, but bringing in an external library violates the project's zero-dependencies rule.
2	[MINOR]	`review/persona.go`	86	The `parsePersona` function uses `filepath.Ext(source)` to detect the format, but for built-in personas the `source` is `"builtin:security"` (no file extension). The comment says 'YAML (also handles .yaml, .yml, and builtin: prefix)' but this only works by coincidence — `filepath.Ext("builtin:security")` returns `""` which falls into the else-YAML branch. This is fragile. A more explicit check like `source == ".json"` or extracting the logic to handle the `builtin:` prefix explicitly would be clearer and more robust.
3	[MINOR]	`review/persona.go`	60	`LoadBuiltinPersona` calls `ListBuiltinPersonas()` to build an error message when the persona isn't found. However, `ListBuiltinPersonas` reads the directory from the embedded FS — if that somehow fails, it returns `nil` and the error message becomes 'unknown built-in persona "foo" (available: )'. This is a minor usability issue, but it would be better to hardcode the list of known personas or at least handle the empty-list case.
4	[MINOR]	`review/formatter.go`	27	The comment on `FormatMarkdownWithDisplay` says 'displayName is not HTML-escaped as Gitea sanitizes rendered Markdown. Persona display names are controlled by repo owners (trusted input).' While the trust reasoning is sound for built-in personas, `--persona-file` allows the display name to come from any YAML file in the workspace. If a workspace file is somehow malicious (e.g., a compromised dependency's config), the unescaped display name could inject markdown. This is a low-risk but worth noting given the security context of this tool.
5	[NIT]	`review/persona.go`	82	There is a trailing whitespace after `var p Persona` before the blank line. Minor style issue.
6	[NIT]	`cmd/review-bot/main_test.go`	158	There is a double blank line between `TestValidateWorkspacePath` and `makeReview`. Consistent single blank lines between test functions would match the rest of the file.
7	[NIT]	`review/persona_test.go`	226	`TestLoadPersonaInvalidYAML` uses `"not: valid: yaml: here"` as invalid YAML, but this is actually valid YAML (it's a key `not` with value `valid: yaml: here` as a string). The test may pass only because the YAML parses to a struct with empty required fields, triggering the validation error rather than a parse error. The test description says 'invalid YAML' but it's really testing 'YAML missing required fields'. The test still provides coverage but the intent is misleading.

Recommendation

REQUEST_CHANGES — REQUEST_CHANGES — The external dependency on github.com/goccy/go-yaml must be removed before this can be merged. The project's conventions document is unambiguous: 'Go standard library only — no external dependencies.' The design document itself acknowledges this was a deliberate decision, but the decision contradicts the project's rules. The fix is straightforward: either (1) support only JSON format for persona files using encoding/json from stdlib, or (2) write a minimal YAML parser for the simple key-value/list structure used in persona files. Given that JSON is already supported and the built-in personas could be shipped as JSON, option 1 is the path of least resistance. The rest of the implementation is clean, well-tested, and correctly designed.

Review by sonnet

Evaluated against 57e62a34

# Sonnet Review ## Summary The implementation is well-structured and feature-complete, but it introduces an external dependency (`github.com/goccy/go-yaml`) in a repository that explicitly requires Go standard library only. This is a direct violation of the repository's stated conventions. All other aspects of the code are high quality. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MAJOR] | `go.mod` | 5 | The repository conventions explicitly state 'Go standard library only — no external dependencies.' This PR adds `github.com/goccy/go-yaml v1.19.2` as an external dependency. The design doc (`docs/DESIGN-51-personas.md`) even notes a 'Design Revision' acknowledging this decision, but the justification (multi-line strings, comments in YAML) does not override the stated project constraint. YAML parsing can be handled with the stdlib `encoding/json` package (JSON-only persona files) or by writing a minimal YAML subset parser, but bringing in an external library violates the project's zero-dependencies rule. | | 2 | [MINOR] | `review/persona.go` | 86 | The `parsePersona` function uses `filepath.Ext(source)` to detect the format, but for built-in personas the `source` is `"builtin:security"` (no file extension). The comment says 'YAML (also handles .yaml, .yml, and builtin: prefix)' but this only works by coincidence — `filepath.Ext("builtin:security")` returns `""` which falls into the else-YAML branch. This is fragile. A more explicit check like `source == ".json"` or extracting the logic to handle the `builtin:` prefix explicitly would be clearer and more robust. | | 3 | [MINOR] | `review/persona.go` | 60 | `LoadBuiltinPersona` calls `ListBuiltinPersonas()` to build an error message when the persona isn't found. However, `ListBuiltinPersonas` reads the directory from the embedded FS — if that somehow fails, it returns `nil` and the error message becomes 'unknown built-in persona "foo" (available: )'. This is a minor usability issue, but it would be better to hardcode the list of known personas or at least handle the empty-list case. | | 4 | [MINOR] | `review/formatter.go` | 27 | The comment on `FormatMarkdownWithDisplay` says 'displayName is not HTML-escaped as Gitea sanitizes rendered Markdown. Persona display names are controlled by repo owners (trusted input).' While the trust reasoning is sound for built-in personas, `--persona-file` allows the display name to come from any YAML file in the workspace. If a workspace file is somehow malicious (e.g., a compromised dependency's config), the unescaped display name could inject markdown. This is a low-risk but worth noting given the security context of this tool. | | 5 | [NIT] | `review/persona.go` | 82 | There is a trailing whitespace after `var p Persona` before the blank line. Minor style issue. | | 6 | [NIT] | `cmd/review-bot/main_test.go` | 158 | There is a double blank line between `TestValidateWorkspacePath` and `makeReview`. Consistent single blank lines between test functions would match the rest of the file. | | 7 | [NIT] | `review/persona_test.go` | 226 | `TestLoadPersonaInvalidYAML` uses `"not: valid: yaml: here"` as invalid YAML, but this is actually valid YAML (it's a key `not` with value `valid: yaml: here` as a string). The test may pass only because the YAML parses to a struct with empty required fields, triggering the validation error rather than a parse error. The test description says 'invalid YAML' but it's really testing 'YAML missing required fields'. The test still provides coverage but the intent is misleading. | ## Recommendation **REQUEST_CHANGES** — REQUEST_CHANGES — The external dependency on `github.com/goccy/go-yaml` must be removed before this can be merged. The project's `conventions` document is unambiguous: 'Go standard library only — no external dependencies.' The design document itself acknowledges this was a deliberate decision, but the decision contradicts the project's rules. The fix is straightforward: either (1) support only JSON format for persona files using `encoding/json` from stdlib, or (2) write a minimal YAML parser for the simple key-value/list structure used in persona files. Given that JSON is already supported and the built-in personas could be shipped as JSON, option 1 is the path of least resistance. The rest of the implementation is clean, well-tested, and correctly designed. --- *Review by sonnet*  --- *Evaluated against 57e62a34*

cmd/review-bot/main_test.go

						
				@@ -48,3 +155,4 @@

				func makeReview(id int64, login, state string, stale bool, body string) gitea.Review {

					r := gitea.Review{

						ID:    id,

sonnet-review-bot commented

2026-05-10 16:27:38 +00:00

First-time contributor

[NIT] There is a double blank line between TestValidateWorkspacePath and makeReview. Consistent single blank lines between test functions would match the rest of the file.

**[NIT]** There is a double blank line between `TestValidateWorkspacePath` and `makeReview`. Consistent single blank lines between test functions would match the rest of the file.

go.mod

						
				@@ -2,2 +2,4 @@

				go 1.26.2

				require github.com/goccy/go-yaml v1.19.2

sonnet-review-bot commented

First-time contributor

[MAJOR] The repository conventions explicitly state 'Go standard library only — no external dependencies.' This PR adds github.com/goccy/go-yaml v1.19.2 as an external dependency. The design doc (docs/DESIGN-51-personas.md) even notes a 'Design Revision' acknowledging this decision, but the justification (multi-line strings, comments in YAML) does not override the stated project constraint. YAML parsing can be handled with the stdlib encoding/json package (JSON-only persona files) or by writing a minimal YAML subset parser, but bringing in an external library violates the project's zero-dependencies rule.

**[MAJOR]** The repository conventions explicitly state 'Go standard library only — no external dependencies.' This PR adds `github.com/goccy/go-yaml v1.19.2` as an external dependency. The design doc (`docs/DESIGN-51-personas.md`) even notes a 'Design Revision' acknowledging this decision, but the justification (multi-line strings, comments in YAML) does not override the stated project constraint. YAML parsing can be handled with the stdlib `encoding/json` package (JSON-only persona files) or by writing a minimal YAML subset parser, but bringing in an external library violates the project's zero-dependencies rule.

review/formatter.go

						
				@@ -10,0 +24,4 @@

				// FormatMarkdownWithDisplay formats a ReviewResult with separate display name and sentinel name.

				// Note: displayName is not HTML-escaped as Gitea sanitizes rendered Markdown.

				// Persona display names are controlled by repo owners (trusted input).

sonnet-review-bot commented

First-time contributor

[MINOR] The comment on FormatMarkdownWithDisplay says 'displayName is not HTML-escaped as Gitea sanitizes rendered Markdown. Persona display names are controlled by repo owners (trusted input).' While the trust reasoning is sound for built-in personas, --persona-file allows the display name to come from any YAML file in the workspace. If a workspace file is somehow malicious (e.g., a compromised dependency's config), the unescaped display name could inject markdown. This is a low-risk but worth noting given the security context of this tool.

**[MINOR]** The comment on `FormatMarkdownWithDisplay` says 'displayName is not HTML-escaped as Gitea sanitizes rendered Markdown. Persona display names are controlled by repo owners (trusted input).' While the trust reasoning is sound for built-in personas, `--persona-file` allows the display name to come from any YAML file in the workspace. If a workspace file is somehow malicious (e.g., a compromised dependency's config), the unescaped display name could inject markdown. This is a low-risk but worth noting given the security context of this tool.

review/persona.go

						
				@@ -0,0 +57,4 @@

				}

				// ListBuiltinPersonas returns the names of all built-in personas.

				func ListBuiltinPersonas() []string {

sonnet-review-bot commented

First-time contributor

[MINOR] LoadBuiltinPersona calls ListBuiltinPersonas() to build an error message when the persona isn't found. However, ListBuiltinPersonas reads the directory from the embedded FS — if that somehow fails, it returns nil and the error message becomes 'unknown built-in persona "foo" (available: )'. This is a minor usability issue, but it would be better to hardcode the list of known personas or at least handle the empty-list case.

**[MINOR]** `LoadBuiltinPersona` calls `ListBuiltinPersonas()` to build an error message when the persona isn't found. However, `ListBuiltinPersonas` reads the directory from the embedded FS — if that somehow fails, it returns `nil` and the error message becomes 'unknown built-in persona "foo" (available: )'. This is a minor usability issue, but it would be better to hardcode the list of known personas or at least handle the empty-list case.

review/persona.go

						
				@@ -0,0 +79,4 @@

				func parsePersona(data []byte, source string) (*Persona, error) {

					var p Persona

sonnet-review-bot commented

First-time contributor

[NIT] There is a trailing whitespace after var p Persona before the blank line. Minor style issue.

**[NIT]** There is a trailing whitespace after `var p Persona` before the blank line. Minor style issue.

review/persona.go

						
				@@ -0,0 +83,4 @@

					// Determine format by extension or try YAML first (it's a superset of JSON)

					ext := strings.ToLower(filepath.Ext(source))

					if ext == ".json" {

						if err := json.Unmarshal(data, &p); err != nil {

sonnet-review-bot commented

2026-05-10 16:27:38 +00:00

First-time contributor

[MINOR] The parsePersona function uses filepath.Ext(source) to detect the format, but for built-in personas the source is "builtin:security" (no file extension). The comment says 'YAML (also handles .yaml, .yml, and builtin: prefix)' but this only works by coincidence — filepath.Ext("builtin:security") returns "" which falls into the else-YAML branch. This is fragile. A more explicit check like source == ".json" or extracting the logic to handle the builtin: prefix explicitly would be clearer and more robust.

**[MINOR]** The `parsePersona` function uses `filepath.Ext(source)` to detect the format, but for built-in personas the `source` is `"builtin:security"` (no file extension). The comment says 'YAML (also handles .yaml, .yml, and builtin: prefix)' but this only works by coincidence — `filepath.Ext("builtin:security")` returns `""` which falls into the else-YAML branch. This is fragile. A more explicit check like `source == ".json"` or extracting the logic to handle the `builtin:` prefix explicitly would be clearer and more robust.

review/persona_test.go Outdated

						
				@@ -0,0 +223,4 @@

				func TestLoadPersonaFileNotFound(t *testing.T) {

					_, err := LoadPersona("/nonexistent/path/persona.yaml")

					if err == nil {

sonnet-review-bot commented

First-time contributor

[NIT] TestLoadPersonaInvalidYAML uses "not: valid: yaml: here" as invalid YAML, but this is actually valid YAML (it's a key not with value valid: yaml: here as a string). The test may pass only because the YAML parses to a struct with empty required fields, triggering the validation error rather than a parse error. The test description says 'invalid YAML' but it's really testing 'YAML missing required fields'. The test still provides coverage but the intent is misleading.

**[NIT]** `TestLoadPersonaInvalidYAML` uses `"not: valid: yaml: here"` as invalid YAML, but this is actually valid YAML (it's a key `not` with value `valid: yaml: here` as a string). The test may pass only because the YAML parses to a struct with empty required fields, triggering the validation error rather than a parse error. The test description says 'invalid YAML' but it's really testing 'YAML missing required fields'. The test still provides coverage but the intent is misleading.

security-review-bot requested review from security-review-bot 2026-05-10 16:28:23 +00:00

security-review-bot approved these changes 2026-05-10 16:28:23 +00:00

security-review-bot left a comment

Security Review

Summary

The persona feature is integrated cleanly with proper path validation, and CI has passed. Security-wise, there are no exploitable issues in the changes; only minor hardening opportunities exist.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`review/persona.go`	100	Persona YAML is parsed without limits using a third‑party YAML library. If a workflow references a persona file from the PR branch, a malicious PR could supply a very large or adversarial YAML (e.g., anchor expansion) to cause excessive CPU/memory consumption during unmarshalling. Consider enforcing a maximum file size before reading/parsing and/or preferring JSON (stdlib) for untrusted inputs.
2	[NIT]	`review/formatter.go`	21	DisplayName is inserted into the markdown header/body without escaping. While Gitea typically sanitizes markdown, if this output is ever reused in a different renderer, unescaped content could cause formatting issues. Consider conservative sanitization or documenting the assumption that Gitea sanitization is always applied.

Recommendation

APPROVE — Approve. The additions for role-based personas are implemented with attention to safety: persona-file and system-prompt-file paths are validated against workspace roots and symlink traversal, reviewer-name is strictly validated for sentinel safety, and built-in personas are embedded. As a defense-in-depth improvement, enforce a size limit before parsing persona YAML and prefer JSON where possible to reduce parser complexity. Otherwise, no exploitable vulnerabilities were identified.

Review by security

Evaluated against 57e62a34

# Security Review ## Summary The persona feature is integrated cleanly with proper path validation, and CI has passed. Security-wise, there are no exploitable issues in the changes; only minor hardening opportunities exist. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `review/persona.go` | 100 | Persona YAML is parsed without limits using a third‑party YAML library. If a workflow references a persona file from the PR branch, a malicious PR could supply a very large or adversarial YAML (e.g., anchor expansion) to cause excessive CPU/memory consumption during unmarshalling. Consider enforcing a maximum file size before reading/parsing and/or preferring JSON (stdlib) for untrusted inputs. | | 2 | [NIT] | `review/formatter.go` | 21 | DisplayName is inserted into the markdown header/body without escaping. While Gitea typically sanitizes markdown, if this output is ever reused in a different renderer, unescaped content could cause formatting issues. Consider conservative sanitization or documenting the assumption that Gitea sanitization is always applied. | ## Recommendation **APPROVE** — Approve. The additions for role-based personas are implemented with attention to safety: persona-file and system-prompt-file paths are validated against workspace roots and symlink traversal, reviewer-name is strictly validated for sentinel safety, and built-in personas are embedded. As a defense-in-depth improvement, enforce a size limit before parsing persona YAML and prefer JSON where possible to reduce parser complexity. Otherwise, no exploitable vulnerabilities were identified. --- *Review by security*  --- *Evaluated against 57e62a34*

review/formatter.go

						
				@@ -10,0 +18,4 @@

					case "REQUEST_CHANGES":

						return "REQUEST_CHANGES"

					default:

						return "COMMENT"

security-review-bot commented

2026-05-10 16:28:23 +00:00

[NIT] DisplayName is inserted into the markdown header/body without escaping. While Gitea typically sanitizes markdown, if this output is ever reused in a different renderer, unescaped content could cause formatting issues. Consider conservative sanitization or documenting the assumption that Gitea sanitization is always applied.

**[NIT]** DisplayName is inserted into the markdown header/body without escaping. While Gitea typically sanitizes markdown, if this output is ever reused in a different renderer, unescaped content could cause formatting issues. Consider conservative sanitization or documenting the assumption that Gitea sanitization is always applied.

review/persona.go

						
				@@ -0,0 +97,4 @@

						return nil, err

					}

					return &p, nil

				}

security-review-bot commented

2026-05-10 16:28:23 +00:00

[MINOR] Persona YAML is parsed without limits using a third‑party YAML library. If a workflow references a persona file from the PR branch, a malicious PR could supply a very large or adversarial YAML (e.g., anchor expansion) to cause excessive CPU/memory consumption during unmarshalling. Consider enforcing a maximum file size before reading/parsing and/or preferring JSON (stdlib) for untrusted inputs.

**[MINOR]** Persona YAML is parsed without limits using a third‑party YAML library. If a workflow references a persona file from the PR branch, a malicious PR could supply a very large or adversarial YAML (e.g., anchor expansion) to cause excessive CPU/memory consumption during unmarshalling. Consider enforcing a maximum file size before reading/parsing and/or preferring JSON (stdlib) for untrusted inputs.

gpt-review-bot requested changes 2026-05-10 16:29:11 +00:00

gpt-review-bot left a comment

First-time contributor

Gpt Review

Summary

Solid feature addition with clear tests and documentation, but it introduces a new external dependency in violation of repository conventions that require Go standard library only. Minor inconsistencies and small edge-case issues should also be addressed.

Findings

#	Severity	File	Line	Finding
1	[MAJOR]	`go.mod`	5	Adds external dependency github.com/goccy/go-yaml, which violates the repository convention of 'Go standard library only — no external dependencies'. Either remove this dependency (e.g., support only JSON) or update the repo conventions accordingly.
2	[MINOR]	`cmd/review-bot/main_test.go`	80	TestValidateWorkspacePath expects the error substring 'failed to resolve' for an absolute path ("/etc/passwd"), but validateWorkspacePath returns 'resolves outside workspace' for absolute paths. This mismatch can cause brittle or failing tests; align the expected substring with the actual error or adjust the function to match the test intent.
3	[MINOR]	`docs/DESIGN-51-personas.md`	304	Design doc states 'Decision: Add gopkg.in/yaml.v3' but the implementation uses github.com/goccy/go-yaml. Update the design document to reflect the actual library choice or switch the implementation to match the doc.
4	[NIT]	`review/formatter.go`	28	Header capitalization uses byte indexing (strings.ToUpper(headerName[:1]) + headerName[1:]) which is not Unicode-safe for multi-byte runes. Consider using utf8.DecodeRuneInString to handle non-ASCII display names correctly.
5	[NIT]	`.gitea/actions/review/action.yml`	86	The 'persona-file' input description says 'Path to persona JSON file', but the implementation supports YAML and JSON. Update the description to avoid misleading users (e.g., 'YAML/JSON').
6	[NIT]	`review/persona.go`	48	ListBuiltinPersonas returns nil on error, which may require nil checks at call sites. Returning an empty slice is often more ergonomic and safer.

Recommendation

REQUEST_CHANGES — The role-based persona feature is well implemented with clear prompt assembly, tests, and documentation. However, to comply with repository conventions, remove the external YAML dependency or restrict personas to JSON parsing via the standard library, or update the repository policy to allow vetted dependencies. Align TestValidateWorkspacePath’s expected error message with validateWorkspacePath’s current behavior (or adjust the function if you prefer the alternative behavior). Update the design doc to reflect the actual YAML library used, fix the action input description for persona-file to mention YAML/JSON, and consider Unicode-safe capitalization in formatter. Once the dependency convention issue is resolved and minor inconsistencies are addressed, this change can be approved.

Review by gpt

Evaluated against 57e62a34

# Gpt Review ## Summary Solid feature addition with clear tests and documentation, but it introduces a new external dependency in violation of repository conventions that require Go standard library only. Minor inconsistencies and small edge-case issues should also be addressed. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MAJOR] | `go.mod` | 5 | Adds external dependency github.com/goccy/go-yaml, which violates the repository convention of 'Go standard library only — no external dependencies'. Either remove this dependency (e.g., support only JSON) or update the repo conventions accordingly. | | 2 | [MINOR] | `cmd/review-bot/main_test.go` | 80 | TestValidateWorkspacePath expects the error substring 'failed to resolve' for an absolute path ("/etc/passwd"), but validateWorkspacePath returns 'resolves outside workspace' for absolute paths. This mismatch can cause brittle or failing tests; align the expected substring with the actual error or adjust the function to match the test intent. | | 3 | [MINOR] | `docs/DESIGN-51-personas.md` | 304 | Design doc states 'Decision: Add gopkg.in/yaml.v3' but the implementation uses github.com/goccy/go-yaml. Update the design document to reflect the actual library choice or switch the implementation to match the doc. | | 4 | [NIT] | `review/formatter.go` | 28 | Header capitalization uses byte indexing (strings.ToUpper(headerName[:1]) + headerName[1:]) which is not Unicode-safe for multi-byte runes. Consider using utf8.DecodeRuneInString to handle non-ASCII display names correctly. | | 5 | [NIT] | `.gitea/actions/review/action.yml` | 86 | The 'persona-file' input description says 'Path to persona JSON file', but the implementation supports YAML and JSON. Update the description to avoid misleading users (e.g., 'YAML/JSON'). | | 6 | [NIT] | `review/persona.go` | 48 | ListBuiltinPersonas returns nil on error, which may require nil checks at call sites. Returning an empty slice is often more ergonomic and safer. | ## Recommendation **REQUEST_CHANGES** — The role-based persona feature is well implemented with clear prompt assembly, tests, and documentation. However, to comply with repository conventions, remove the external YAML dependency or restrict personas to JSON parsing via the standard library, or update the repository policy to allow vetted dependencies. Align TestValidateWorkspacePath’s expected error message with validateWorkspacePath’s current behavior (or adjust the function if you prefer the alternative behavior). Update the design doc to reflect the actual YAML library used, fix the action input description for persona-file to mention YAML/JSON, and consider Unicode-safe capitalization in formatter. Once the dependency convention issue is resolved and minor inconsistencies are addressed, this change can be approved. --- *Review by gpt*  --- *Evaluated against 57e62a34*

.gitea/actions/review/action.yml

						
				@@ -77,2 +83,4 @@

				    required: false

				    default: ''

				runs:

gpt-review-bot commented

First-time contributor

[NIT] The 'persona-file' input description says 'Path to persona JSON file', but the implementation supports YAML and JSON. Update the description to avoid misleading users (e.g., 'YAML/JSON').

**[NIT]** The 'persona-file' input description says 'Path to persona JSON file', but the implementation supports YAML and JSON. Update the description to avoid misleading users (e.g., 'YAML/JSON').

cmd/review-bot/main_test.go

						
				@@ -48,0 +77,4 @@

					defer os.Setenv("GITHUB_WORKSPACE", origWorkspace)

					tests := []struct {

						name      string

gpt-review-bot commented

First-time contributor

[MINOR] TestValidateWorkspacePath expects the error substring 'failed to resolve' for an absolute path ("/etc/passwd"), but validateWorkspacePath returns 'resolves outside workspace' for absolute paths. This mismatch can cause brittle or failing tests; align the expected substring with the actual error or adjust the function to match the test intent.

**[MINOR]** TestValidateWorkspacePath expects the error substring 'failed to resolve' for an absolute path ("/etc/passwd"), but validateWorkspacePath returns 'resolves outside workspace' for absolute paths. This mismatch can cause brittle or failing tests; align the expected substring with the actual error or adjust the function to match the test intent.

docs/DESIGN-51-personas.md

						
				@@ -0,0 +301,4 @@

				The persona YAML allows `critical` severity, but the LLM output parser (`review/parser.go`) only accepts MAJOR/MINOR/NIT. 

				**Resolution:** Keep standard output format. Persona severity section is ONLY for calibrating the LLM's judgment (prompt guidance). Output must still use MAJOR/MINOR/NIT. Document this clearly in persona format docs.

gpt-review-bot commented

First-time contributor

[MINOR] Design doc states 'Decision: Add gopkg.in/yaml.v3' but the implementation uses github.com/goccy/go-yaml. Update the design document to reflect the actual library choice or switch the implementation to match the doc.

**[MINOR]** Design doc states 'Decision: Add gopkg.in/yaml.v3' but the implementation uses github.com/goccy/go-yaml. Update the design document to reflect the actual library choice or switch the implementation to match the doc.

go.mod

						
				@@ -2,2 +2,4 @@

				go 1.26.2

				require github.com/goccy/go-yaml v1.19.2

gpt-review-bot commented

First-time contributor

[MAJOR] Adds external dependency github.com/goccy/go-yaml, which violates the repository convention of 'Go standard library only — no external dependencies'. Either remove this dependency (e.g., support only JSON) or update the repo conventions accordingly.

**[MAJOR]** Adds external dependency github.com/goccy/go-yaml, which violates the repository convention of 'Go standard library only — no external dependencies'. Either remove this dependency (e.g., support only JSON) or update the repo conventions accordingly.

review/formatter.go

						
				@@ -10,0 +25,4 @@

				// FormatMarkdownWithDisplay formats a ReviewResult with separate display name and sentinel name.

				// Note: displayName is not HTML-escaped as Gitea sanitizes rendered Markdown.

				// Persona display names are controlled by repo owners (trusted input).

				// displayName is used for the header title, sentinelName is used for the cleanup sentinel.

gpt-review-bot commented

First-time contributor

[NIT] Header capitalization uses byte indexing (strings.ToUpper(headerName[:1]) + headerName[1:]) which is not Unicode-safe for multi-byte runes. Consider using utf8.DecodeRuneInString to handle non-ASCII display names correctly.

**[NIT]** Header capitalization uses byte indexing (strings.ToUpper(headerName[:1]) + headerName[1:]) which is not Unicode-safe for multi-byte runes. Consider using utf8.DecodeRuneInString to handle non-ASCII display names correctly.

review/persona.go

						
				@@ -0,0 +45,4 @@

				}

				// LoadBuiltinPersona loads a built-in persona by name.

				// Returns an error if the persona doesn't exist.

gpt-review-bot commented

First-time contributor

[NIT] ListBuiltinPersonas returns nil on error, which may require nil checks at call sites. Returning an empty slice is often more ergonomic and safer.

**[NIT]** ListBuiltinPersonas returns nil on error, which may require nil checks at call sites. Returning an empty slice is often more ergonomic and safer.

sonnet-review-bot requested changes 2026-05-10 16:29:46 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

The PR adds a well-structured persona feature with good test coverage, but introduces an external dependency (github.com/goccy/go-yaml) that violates the project's explicit 'Go standard library only — no external dependencies' convention. This is a blocking issue. There are also a few minor design issues worth addressing.

Findings

#	Severity	File	Line	Finding
1	[MAJOR]	`go.mod`	5	The project's stated convention is 'Go standard library only — no external dependencies,' but this PR adds `github.com/goccy/go-yaml v1.19.2`. The design doc mentions gopkg.in/yaml.v3 but the implementation uses a different third-party library. YAML parsing can be done with the stdlib by requiring JSON format for all persona files, or by writing a minimal YAML-subset parser. Alternatively, the project convention must be explicitly updated before adding dependencies.
2	[MINOR]	`review/persona.go`	84	The `parsePersona` function uses `filepath.Ext(source)` to decide the format, but for built-in personas the source is `"builtin:security"` which has no file extension — it correctly falls through to the YAML path. However, for user-provided files without a `.json` extension (e.g., `.yml`), it also falls through to YAML, which is correct behavior but is undocumented. More importantly, the comment says 'YAML is a superset of JSON' as justification for the fallback, but this is only approximately true and the actual behavior depends on the library. The logic would be clearer as: if JSON extension → JSON unmarshal, else → YAML unmarshal (which currently is what happens, but the comment is misleading).
3	[MINOR]	`review/persona.go`	55	`LoadBuiltinPersona` calls `ListBuiltinPersonas()` to build an error message only on failure. This means if `embeddedPersonas.ReadFile` fails AND `embeddedPersonas.ReadDir` (inside `ListBuiltinPersonas`) also fails, the error message will be `unknown built-in persona "x" (available: )` with an empty list — which is confusing. Consider hardcoding the known persona names in the error message or handling the ReadDir error in ListBuiltinPersonas more gracefully.
4	[MINOR]	`review/formatter.go`	36	The comment says `displayName is not HTML-escaped as Gitea sanitizes rendered Markdown. Persona display names are controlled by repo owners (trusted input).` While display names are set by repo owners (trusted), they come from YAML files that could be committed by contributors. If a malicious contributor adds a `display_name` containing `-->` or similar, it could break the sentinel comment or inject content into the review body. The sentinel is protected (uses `sentinelName` from `reviewerName` which is validated), but the header `# <displayName> Review` is unescaped. This is low severity given Gitea sanitizes Markdown, but the trust model statement in the comment is slightly overstated.
5	[NIT]	`review/persona.go`	79	Trailing whitespace after the `var p Persona` declaration (blank line with spaces before the comment). Run `gofmt`.
6	[NIT]	`review/persona.go`	94	Trailing whitespace after the closing brace of the else block. Run `gofmt`.
7	[NIT]	`docs/DESIGN-51-personas.md`	1	The design document mentions `gopkg.in/yaml.v3` but the implementation uses `github.com/goccy/go-yaml`. The design doc's 'Design Revision' section should be updated to reflect the actual library chosen, or the implementation should use gopkg.in/yaml.v3 as designed.
8	[NIT]	`review/persona_prompt.go`	56	`BuildSystemPromptWithPersona` is exported and documented as a convenience wrapper, but it's not used anywhere in the codebase (main.go assembles the prompt manually). This creates a parallel code path that could diverge. Either use it in main.go or make it unexported/remove it to avoid maintenance burden.

Recommendation

REQUEST_CHANGES — REQUEST_CHANGES — The external dependency on github.com/goccy/go-yaml directly violates the project's explicit 'Go standard library only' convention. This needs to be resolved before merging:

Option A (recommended): Drop YAML support entirely and support only JSON for persona files. The built-in personas can be written as JSON. JSON is part of the stdlib (encoding/json). This is the simplest fix and aligns with project conventions. The YAML support in the README can be documented as 'convert to JSON before use.'

Option B: Write a minimal YAML parser sufficient for persona files (only needs string scalars, lists, and maps — no anchors, etc.). This is non-trivial but keeps the dependency-free guarantee.

Option C: Explicitly update the project conventions to permit this specific dependency with justification, get buy-in, then re-merge.

Apart from the dependency issue, the feature design is sound: the persona loading/validation logic is clean, tests are thorough, the path traversal protection via validateWorkspacePath is a good refactor, and the display-name vs sentinel-name separation is well-reasoned. Address the MAJOR finding and the code is close to mergeable.

Review by sonnet

Evaluated against 57e62a34

# Sonnet Review ## Summary The PR adds a well-structured persona feature with good test coverage, but introduces an external dependency (github.com/goccy/go-yaml) that violates the project's explicit 'Go standard library only — no external dependencies' convention. This is a blocking issue. There are also a few minor design issues worth addressing. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MAJOR] | `go.mod` | 5 | The project's stated convention is 'Go standard library only — no external dependencies,' but this PR adds `github.com/goccy/go-yaml v1.19.2`. The design doc mentions gopkg.in/yaml.v3 but the implementation uses a different third-party library. YAML parsing can be done with the stdlib by requiring JSON format for all persona files, or by writing a minimal YAML-subset parser. Alternatively, the project convention must be explicitly updated before adding dependencies. | | 2 | [MINOR] | `review/persona.go` | 84 | The `parsePersona` function uses `filepath.Ext(source)` to decide the format, but for built-in personas the source is `"builtin:security"` which has no file extension — it correctly falls through to the YAML path. However, for user-provided files without a `.json` extension (e.g., `.yml`), it also falls through to YAML, which is correct behavior but is undocumented. More importantly, the comment says 'YAML is a superset of JSON' as justification for the fallback, but this is only approximately true and the actual behavior depends on the library. The logic would be clearer as: if JSON extension → JSON unmarshal, else → YAML unmarshal (which currently is what happens, but the comment is misleading). | | 3 | [MINOR] | `review/persona.go` | 55 | `LoadBuiltinPersona` calls `ListBuiltinPersonas()` to build an error message only on failure. This means if `embeddedPersonas.ReadFile` fails AND `embeddedPersonas.ReadDir` (inside `ListBuiltinPersonas`) also fails, the error message will be `unknown built-in persona "x" (available: )` with an empty list — which is confusing. Consider hardcoding the known persona names in the error message or handling the ReadDir error in ListBuiltinPersonas more gracefully. | | 4 | [MINOR] | `review/formatter.go` | 36 | The comment says `displayName is not HTML-escaped as Gitea sanitizes rendered Markdown. Persona display names are controlled by repo owners (trusted input).` While display names are set by repo owners (trusted), they come from YAML files that could be committed by contributors. If a malicious contributor adds a `display_name` containing `-->` or similar, it could break the sentinel comment or inject content into the review body. The sentinel is protected (uses `sentinelName` from `reviewerName` which is validated), but the header `# <displayName> Review` is unescaped. This is low severity given Gitea sanitizes Markdown, but the trust model statement in the comment is slightly overstated. | | 5 | [NIT] | `review/persona.go` | 79 | Trailing whitespace after the `var p Persona` declaration (blank line with spaces before the comment). Run `gofmt`. | | 6 | [NIT] | `review/persona.go` | 94 | Trailing whitespace after the closing brace of the else block. Run `gofmt`. | | 7 | [NIT] | `docs/DESIGN-51-personas.md` | 1 | The design document mentions `gopkg.in/yaml.v3` but the implementation uses `github.com/goccy/go-yaml`. The design doc's 'Design Revision' section should be updated to reflect the actual library chosen, or the implementation should use gopkg.in/yaml.v3 as designed. | | 8 | [NIT] | `review/persona_prompt.go` | 56 | `BuildSystemPromptWithPersona` is exported and documented as a convenience wrapper, but it's not used anywhere in the codebase (main.go assembles the prompt manually). This creates a parallel code path that could diverge. Either use it in main.go or make it unexported/remove it to avoid maintenance burden. | ## Recommendation **REQUEST_CHANGES** — **REQUEST_CHANGES** — The external dependency on `github.com/goccy/go-yaml` directly violates the project's explicit 'Go standard library only' convention. This needs to be resolved before merging: **Option A (recommended):** Drop YAML support entirely and support only JSON for persona files. The built-in personas can be written as JSON. JSON is part of the stdlib (`encoding/json`). This is the simplest fix and aligns with project conventions. The YAML support in the README can be documented as 'convert to JSON before use.' **Option B:** Write a minimal YAML parser sufficient for persona files (only needs string scalars, lists, and maps — no anchors, etc.). This is non-trivial but keeps the dependency-free guarantee. **Option C:** Explicitly update the project conventions to permit this specific dependency with justification, get buy-in, then re-merge. Apart from the dependency issue, the feature design is sound: the persona loading/validation logic is clean, tests are thorough, the path traversal protection via `validateWorkspacePath` is a good refactor, and the display-name vs sentinel-name separation is well-reasoned. Address the MAJOR finding and the code is close to mergeable. --- *Review by sonnet*  --- *Evaluated against 57e62a34*

docs/DESIGN-51-personas.md

						
				@@ -0,0 +1,330 @@

				# Design: Role-based Review Personas (Issue #51)

sonnet-review-bot commented

First-time contributor

[NIT] The design document mentions gopkg.in/yaml.v3 but the implementation uses github.com/goccy/go-yaml. The design doc's 'Design Revision' section should be updated to reflect the actual library chosen, or the implementation should use gopkg.in/yaml.v3 as designed.

**[NIT]** The design document mentions `gopkg.in/yaml.v3` but the implementation uses `github.com/goccy/go-yaml`. The design doc's 'Design Revision' section should be updated to reflect the actual library chosen, or the implementation should use gopkg.in/yaml.v3 as designed.

go.mod

						
				@@ -2,2 +2,4 @@

				go 1.26.2

				require github.com/goccy/go-yaml v1.19.2

sonnet-review-bot commented

First-time contributor

[MAJOR] The project's stated convention is 'Go standard library only — no external dependencies,' but this PR adds github.com/goccy/go-yaml v1.19.2. The design doc mentions gopkg.in/yaml.v3 but the implementation uses a different third-party library. YAML parsing can be done with the stdlib by requiring JSON format for all persona files, or by writing a minimal YAML-subset parser. Alternatively, the project convention must be explicitly updated before adding dependencies.

**[MAJOR]** The project's stated convention is 'Go standard library only — no external dependencies,' but this PR adds `github.com/goccy/go-yaml v1.19.2`. The design doc mentions gopkg.in/yaml.v3 but the implementation uses a different third-party library. YAML parsing can be done with the stdlib by requiring JSON format for all persona files, or by writing a minimal YAML-subset parser. Alternatively, the project convention must be explicitly updated before adding dependencies.

review/formatter.go

						
				@@ -14,0 +33,4 @@

					// Use display name for header, or fall back to sentinel name

					headerName := displayName

					if headerName == "" {

						headerName = sentinelName

sonnet-review-bot commented

First-time contributor

[MINOR] The comment says displayName is not HTML-escaped as Gitea sanitizes rendered Markdown. Persona display names are controlled by repo owners (trusted input). While display names are set by repo owners (trusted), they come from YAML files that could be committed by contributors. If a malicious contributor adds a display_name containing --> or similar, it could break the sentinel comment or inject content into the review body. The sentinel is protected (uses sentinelName from reviewerName which is validated), but the header # <displayName> Review is unescaped. This is low severity given Gitea sanitizes Markdown, but the trust model statement in the comment is slightly overstated.

**[MINOR]** The comment says `displayName is not HTML-escaped as Gitea sanitizes rendered Markdown. Persona display names are controlled by repo owners (trusted input).` While display names are set by repo owners (trusted), they come from YAML files that could be committed by contributors. If a malicious contributor adds a `display_name` containing `-->` or similar, it could break the sentinel comment or inject content into the review body. The sentinel is protected (uses `sentinelName` from `reviewerName` which is validated), but the header `# <displayName> Review` is unescaped. This is low severity given Gitea sanitizes Markdown, but the trust model statement in the comment is slightly overstated.

review/persona.go

						
				@@ -0,0 +52,4 @@

					if err != nil {

						available := ListBuiltinPersonas()

						return nil, fmt.Errorf("unknown built-in persona %q (available: %s)", name, strings.Join(available, ", "))

					}

sonnet-review-bot commented

First-time contributor

[MINOR] LoadBuiltinPersona calls ListBuiltinPersonas() to build an error message only on failure. This means if embeddedPersonas.ReadFile fails AND embeddedPersonas.ReadDir (inside ListBuiltinPersonas) also fails, the error message will be unknown built-in persona "x" (available: ) with an empty list — which is confusing. Consider hardcoding the known persona names in the error message or handling the ReadDir error in ListBuiltinPersonas more gracefully.

**[MINOR]** `LoadBuiltinPersona` calls `ListBuiltinPersonas()` to build an error message only on failure. This means if `embeddedPersonas.ReadFile` fails AND `embeddedPersonas.ReadDir` (inside `ListBuiltinPersonas`) also fails, the error message will be `unknown built-in persona "x" (available: )` with an empty list — which is confusing. Consider hardcoding the known persona names in the error message or handling the ReadDir error in ListBuiltinPersonas more gracefully.

review/persona.go

						
				@@ -0,0 +76,4 @@

					}

					return names

				}

sonnet-review-bot commented

First-time contributor

[NIT] Trailing whitespace after the var p Persona declaration (blank line with spaces before the comment). Run gofmt.

**[NIT]** Trailing whitespace after the `var p Persona` declaration (blank line with spaces before the comment). Run `gofmt`.

review/persona.go

						
				@@ -0,0 +81,4 @@

					var p Persona

					// Determine format by extension or try YAML first (it's a superset of JSON)

					ext := strings.ToLower(filepath.Ext(source))

sonnet-review-bot commented

First-time contributor

[MINOR] The parsePersona function uses filepath.Ext(source) to decide the format, but for built-in personas the source is "builtin:security" which has no file extension — it correctly falls through to the YAML path. However, for user-provided files without a .json extension (e.g., .yml), it also falls through to YAML, which is correct behavior but is undocumented. More importantly, the comment says 'YAML is a superset of JSON' as justification for the fallback, but this is only approximately true and the actual behavior depends on the library. The logic would be clearer as: if JSON extension → JSON unmarshal, else → YAML unmarshal (which currently is what happens, but the comment is misleading).

**[MINOR]** The `parsePersona` function uses `filepath.Ext(source)` to decide the format, but for built-in personas the source is `"builtin:security"` which has no file extension — it correctly falls through to the YAML path. However, for user-provided files without a `.json` extension (e.g., `.yml`), it also falls through to YAML, which is correct behavior but is undocumented. More importantly, the comment says 'YAML is a superset of JSON' as justification for the fallback, but this is only approximately true and the actual behavior depends on the library. The logic would be clearer as: if JSON extension → JSON unmarshal, else → YAML unmarshal (which currently is what happens, but the comment is misleading).

review/persona.go

						
				@@ -0,0 +91,4 @@

						if err := yaml.Unmarshal(data, &p); err != nil {

							return nil, fmt.Errorf("parse persona %s: %w", source, err)

						}

					}

sonnet-review-bot commented

First-time contributor

[NIT] Trailing whitespace after the closing brace of the else block. Run gofmt.

**[NIT]** Trailing whitespace after the closing brace of the else block. Run `gofmt`.

review/persona_prompt.go

						
				@@ -0,0 +53,4 @@

					// Output format instructions (shared schema from prompt.go)

					sb.WriteString("## Review Instructions\n\n")

					sb.WriteString("CONTEXT:\n")

					sb.WriteString("- You will receive the full content of modified files for reference, followed by the diff showing what changed.\n")

sonnet-review-bot commented

First-time contributor

[NIT] BuildSystemPromptWithPersona is exported and documented as a convenience wrapper, but it's not used anywhere in the codebase (main.go assembles the prompt manually). This creates a parallel code path that could diverge. Either use it in main.go or make it unexported/remove it to avoid maintenance burden.

**[NIT]** `BuildSystemPromptWithPersona` is exported and documented as a convenience wrapper, but it's not used anywhere in the codebase (main.go assembles the prompt manually). This creates a parallel code path that could diverge. Either use it in main.go or make it unexported/remove it to avoid maintenance burden.

gpt-review-bot requested changes 2026-05-10 16:31:15 +00:00

gpt-review-bot left a comment

First-time contributor

Gpt Review

Summary

The persona feature is well-integrated overall (flags, prompt assembly, formatting, tests), but there are two blocking issues: an external YAML dependency violates repository conventions, and a unit test expectation conflicts with the new path validation logic. Address these to proceed.

Findings

#	Severity	File	Line	Finding
1	[MAJOR]	`go.mod`	5	Introduces an external dependency github.com/goccy/go-yaml, which violates the repository convention of 'Go standard library only — no external dependencies'.
2	[MAJOR]	`cmd/review-bot/main_test.go`	96	TestValidateWorkspacePath case "absolute path gets normalized to relative" expects error text containing "failed to resolve", but validateWorkspacePath now returns an error like "resolves outside workspace" for absolute paths outside the workspace. This mismatch will cause the test to fail on Linux.
3	[NIT]	`cmd/review-bot/main_test.go`	78	The comment "filepath.Join strips leading / making it /etc/passwd" is inaccurate on Unix-like systems — filepath.Join with an absolute path ignores the base and yields the absolute path. Update the comment for clarity.
4	[MINOR]	`review/persona.go`	18	Persona.ModelPref is parsed but not used anywhere. Consider documenting intended usage or removing until needed to reduce API surface.

Recommendation

REQUEST_CHANGES — To align with repository conventions and ensure tests pass:

Remove the external YAML dependency (MAJOR):

Either restrict persona files to JSON only (using encoding/json), and convert built-in persona files to JSON, or
If YAML support is essential, consider an alternative approach that keeps stdlib-only (e.g., accept only JSON for now and document this; YAML can be added later behind a build tag or reconsider the convention). Update review/persona.go to drop github.com/goccy/go-yaml and remove it from go.mod/go.sum.

Fix the path validation test mismatch (MAJOR):

Update TestValidateWorkspacePath case "absolute path gets normalized to relative" to reflect current behavior: rename to something like "absolute path outside workspace" and set errMatch to "resolves outside workspace". Also correct the misleading comment about filepath.Join behavior on absolute paths.

Minor cleanup (optional):

Either implement ModelPref handling (e.g., log a warning if requested model differs) or remove the field until used.

With these changes, the implementation should meet project conventions, keep tests green, and maintain the new persona functionality as designed.

Review by gpt

Evaluated against 57e62a34

# Gpt Review ## Summary The persona feature is well-integrated overall (flags, prompt assembly, formatting, tests), but there are two blocking issues: an external YAML dependency violates repository conventions, and a unit test expectation conflicts with the new path validation logic. Address these to proceed. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MAJOR] | `go.mod` | 5 | Introduces an external dependency github.com/goccy/go-yaml, which violates the repository convention of 'Go standard library only — no external dependencies'. | | 2 | [MAJOR] | `cmd/review-bot/main_test.go` | 96 | TestValidateWorkspacePath case "absolute path gets normalized to relative" expects error text containing "failed to resolve", but validateWorkspacePath now returns an error like "resolves outside workspace" for absolute paths outside the workspace. This mismatch will cause the test to fail on Linux. | | 3 | [NIT] | `cmd/review-bot/main_test.go` | 78 | The comment "filepath.Join strips leading / making it <workspace>/etc/passwd" is inaccurate on Unix-like systems — filepath.Join with an absolute path ignores the base and yields the absolute path. Update the comment for clarity. | | 4 | [MINOR] | `review/persona.go` | 18 | Persona.ModelPref is parsed but not used anywhere. Consider documenting intended usage or removing until needed to reduce API surface. | ## Recommendation **REQUEST_CHANGES** — To align with repository conventions and ensure tests pass: 1) Remove the external YAML dependency (MAJOR): - Either restrict persona files to JSON only (using encoding/json), and convert built-in persona files to JSON, or - If YAML support is essential, consider an alternative approach that keeps stdlib-only (e.g., accept only JSON for now and document this; YAML can be added later behind a build tag or reconsider the convention). Update review/persona.go to drop github.com/goccy/go-yaml and remove it from go.mod/go.sum. 2) Fix the path validation test mismatch (MAJOR): - Update TestValidateWorkspacePath case "absolute path gets normalized to relative" to reflect current behavior: rename to something like "absolute path outside workspace" and set errMatch to "resolves outside workspace". Also correct the misleading comment about filepath.Join behavior on absolute paths. 3) Minor cleanup (optional): - Either implement ModelPref handling (e.g., log a warning if requested model differs) or remove the field until used. With these changes, the implementation should meet project conventions, keep tests green, and maintain the new persona functionality as designed. --- *Review by gpt*  --- *Evaluated against 57e62a34*

cmd/review-bot/main_test.go

						
				@@ -48,0 +75,4 @@

					// Save and restore GITHUB_WORKSPACE

					origWorkspace := os.Getenv("GITHUB_WORKSPACE")

					defer os.Setenv("GITHUB_WORKSPACE", origWorkspace)

gpt-review-bot commented

First-time contributor

[NIT] The comment "filepath.Join strips leading / making it /etc/passwd" is inaccurate on Unix-like systems — filepath.Join with an absolute path ignores the base and yields the absolute path. Update the comment for clarity.

**[NIT]** The comment "filepath.Join strips leading / making it <workspace>/etc/passwd" is inaccurate on Unix-like systems — filepath.Join with an absolute path ignores the base and yields the absolute path. Update the comment for clarity.

cmd/review-bot/main_test.go

						
				@@ -48,0 +93,4 @@

							name:      "valid nested path",

							workspace: tmpDir,

							path:      "subdir/nested.json",

							wantErr:   false,

gpt-review-bot commented

First-time contributor

[MAJOR] TestValidateWorkspacePath case "absolute path gets normalized to relative" expects error text containing "failed to resolve", but validateWorkspacePath now returns an error like "resolves outside workspace" for absolute paths outside the workspace. This mismatch will cause the test to fail on Linux.

**[MAJOR]** TestValidateWorkspacePath case "absolute path gets normalized to relative" expects error text containing "failed to resolve", but validateWorkspacePath now returns an error like "resolves outside workspace" for absolute paths outside the workspace. This mismatch will cause the test to fail on Linux.

go.mod

						
				@@ -2,2 +2,4 @@

				go 1.26.2

				require github.com/goccy/go-yaml v1.19.2

gpt-review-bot commented

First-time contributor

[MAJOR] Introduces an external dependency github.com/goccy/go-yaml, which violates the repository convention of 'Go standard library only — no external dependencies'.

**[MAJOR]** Introduces an external dependency github.com/goccy/go-yaml, which violates the repository convention of 'Go standard library only — no external dependencies'.

review/persona.go

						
				@@ -0,0 +15,4 @@

				var embeddedPersonas embed.FS

				// Persona defines a specialized review role with focused expertise.

				type Persona struct {

gpt-review-bot commented

2026-05-10 16:38:34 +00:00

First-time contributor

[MINOR] Persona.ModelPref is parsed but not used anywhere. Consider documenting intended usage or removing until needed to reduce API surface.

**[MINOR]** Persona.ModelPref is parsed but not used anywhere. Consider documenting intended usage or removing until needed to reduce API surface.

security-review-bot requested review from security-review-bot 2026-05-10 16:38:34 +00:00

security-review-bot approved these changes 2026-05-10 16:38:34 +00:00

security-review-bot left a comment

Security Review

Summary

Overall, the changes introduce role-based personas safely and improve path handling by validating and constraining file access to the CI workspace. No exploitable vulnerabilities were identified. I noted two minor hardening points around dependency risk and Markdown display name handling.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`go.mod`	4	A new external dependency (github.com/goccy/go-yaml v1.19.2) increases the supply-chain attack surface. While not a direct vulnerability, it diverges from the repo’s "stdlib only" convention and can introduce risks if the library later has issues.
2	[MINOR]	`review/formatter.go`	25	Display names are intentionally not HTML-escaped and are included in Markdown. If a persona is loaded from a repo file, a crafted display_name could embed Markdown constructs (e.g., images) that cause remote content loads when rendered. Consider restricting display_name to a conservative character set or escaping/sanitizing to reduce content-injection/tracking risks, even if Gitea sanitizes most HTML.

Recommendation

APPROVE — Approve the PR. The new persona feature is implemented with sensible security controls, notably robust path validation preventing traversal and symlink escapes for persona and system-prompt files. To further harden the system, consider (1) reviewing the necessity of the new YAML dependency or pinning and regularly auditing it to mitigate supply-chain risk, and (2) sanitizing or restricting persona display_name to reduce the chance of Markdown-based content injection or tracking, especially when personas are sourced from repository files. No blocking security issues were found.

Review by security

Evaluated against 57e62a34

# Security Review ## Summary Overall, the changes introduce role-based personas safely and improve path handling by validating and constraining file access to the CI workspace. No exploitable vulnerabilities were identified. I noted two minor hardening points around dependency risk and Markdown display name handling. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `go.mod` | 4 | A new external dependency (github.com/goccy/go-yaml v1.19.2) increases the supply-chain attack surface. While not a direct vulnerability, it diverges from the repo’s "stdlib only" convention and can introduce risks if the library later has issues. | | 2 | [MINOR] | `review/formatter.go` | 25 | Display names are intentionally not HTML-escaped and are included in Markdown. If a persona is loaded from a repo file, a crafted display_name could embed Markdown constructs (e.g., images) that cause remote content loads when rendered. Consider restricting display_name to a conservative character set or escaping/sanitizing to reduce content-injection/tracking risks, even if Gitea sanitizes most HTML. | ## Recommendation **APPROVE** — Approve the PR. The new persona feature is implemented with sensible security controls, notably robust path validation preventing traversal and symlink escapes for persona and system-prompt files. To further harden the system, consider (1) reviewing the necessity of the new YAML dependency or pinning and regularly auditing it to mitigate supply-chain risk, and (2) sanitizing or restricting persona display_name to reduce the chance of Markdown-based content injection or tracking, especially when personas are sourced from repository files. No blocking security issues were found. --- *Review by security*  --- *Evaluated against 57e62a34*

go.mod

						
				@@ -1,3 +1,5 @@

				module gitea.weiker.me/rodin/review-bot

				go 1.26.2

security-review-bot commented

[MINOR] A new external dependency (github.com/goccy/go-yaml v1.19.2) increases the supply-chain attack surface. While not a direct vulnerability, it diverges from the repo’s "stdlib only" convention and can introduce risks if the library later has issues.

**[MINOR]** A new external dependency (github.com/goccy/go-yaml v1.19.2) increases the supply-chain attack surface. While not a direct vulnerability, it diverges from the repo’s "stdlib only" convention and can introduce risks if the library later has issues.

review/formatter.go

						
				@@ -10,0 +22,4 @@

					}

				}

				// FormatMarkdownWithDisplay formats a ReviewResult with separate display name and sentinel name.

security-review-bot commented

2026-05-10 16:38:34 +00:00

[MINOR] Display names are intentionally not HTML-escaped and are included in Markdown. If a persona is loaded from a repo file, a crafted display_name could embed Markdown constructs (e.g., images) that cause remote content loads when rendered. Consider restricting display_name to a conservative character set or escaping/sanitizing to reduce content-injection/tracking risks, even if Gitea sanitizes most HTML.

**[MINOR]** Display names are intentionally not HTML-escaped and are included in Markdown. If a persona is loaded from a repo file, a crafted display_name could embed Markdown constructs (e.g., images) that cause remote content loads when rendered. Consider restricting display_name to a conservative character set or escaping/sanitizing to reduce content-injection/tracking risks, even if Gitea sanitizes most HTML.

rodin added 1 commit 2026-05-10 17:01:47 +00:00

fix: address review feedback on persona feature

PR Ready Gate / clear-labels (pull_request) Successful in 2s

Details

CI / test (pull_request) Successful in 15s

Details

CI / review (/anthropic/v1, anthropic--claude-4.6-sonnet, sonnet, anthropic, SONNET_REVIEW_TOKEN) (pull_request) Successful in 43s

Details

CI / review (/openai/v1, gpt-5, gpt, openai, GPT_REVIEW_TOKEN) (pull_request) Successful in 1m28s

Details

CI / review (/openai/v1, gpt-5, security, openai, SECURITY_REVIEW.md, SECURITY_REVIEW_TOKEN) (pull_request) Successful in 1m55s

Details

4dd67742f9

MAJOR fixes:
- Remove external YAML dependency (github.com/goccy/go-yaml)
  Per project convention: Go standard library only, zero dependencies.
  Convert all persona files from YAML to JSON format.
- Fix TestValidateWorkspacePath error expectation
  Go 1.21+ filepath.Join normalizes absolute paths differently.

MINOR fixes:
- Remove custom contains helper in persona_test.go (use strings.Contains)
- Add Unicode-safe CapitalizeFirst function for header titles
- ListBuiltinPersonas returns empty slice instead of nil on error
- Fix test comment about filepath.Join behavior

Documentation:
- Update README to reflect JSON-only persona format
- Update design doc with note about JSON decision
- Fix action.yml description for persona-file input

sonnet-review-bot approved these changes 2026-05-10 17:02:44 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

This PR adds a well-designed role-based persona system to review-bot. The implementation is clean, follows Go idioms, maintains the zero-external-dependencies constraint by using JSON instead of YAML, and includes comprehensive tests. There are a few minor issues worth noting but nothing blocking.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`review/formatter.go`	34	The comment says 'displayName is not HTML-escaped as Gitea sanitizes rendered Markdown' and 'Persona display names are controlled by repo owners (trusted input)'. However, `displayName` can come from a `--persona-file` whose path is validated for workspace containment but whose contents (the `display_name` field) are not sanitized. A persona file checked into a repo could contain something like `display_name: "] Review\n\n<script>` in a pathological case. Since Gitea does sanitize Markdown-rendered HTML, this is low risk, but the trust assertion in the comment ('controlled by repo owners') is slightly inaccurate — it could also come from any file a developer adds to the repo. The comment should be more precise or dropped.
2	[MINOR]	`docs/DESIGN-51-personas.md`	76	The design document shows a YAML persona file format as the primary example (with `# .review/personas/security.yaml` header and YAML syntax like `name: security`) but the implementation uses JSON. The design revision note at the bottom explains this, but the main body of the document is misleading — it still shows YAML syntax in the code block under '2. Persona File Format'. This will confuse future contributors reading the design doc.
3	[MINOR]	`review/persona.go`	59	The inline comment on `embeddedPersonas.ReadFile("personas/" + filename)` says 'embed.FS paths use forward slashes per io/fs spec'. While correct and useful, this comment is placed on the wrong line — it belongs on the `ReadFile` call line (line 59), which is where it appears. This is fine. However, the function silently falls through to listing available personas when the embedded file is not found, which means a typo in the name produces an error message that lists alternatives. This is good UX, but the `ListBuiltinPersonas()` call inside `LoadBuiltinPersona` adds a small O(n) directory scan on every failed lookup — not a real concern at this scale but worth noting.
4	[NIT]	`review/persona.go`	97	`CapitalizeFirst` is placed in `persona.go` but is used by `formatter.go`. It's a general string utility that doesn't have a conceptual relationship with persona loading. It would be more discoverable in `formatter.go` or a shared `strings.go`/`util.go` file within the `review` package.
5	[NIT]	`review/persona_prompt.go`	62	`BuildSystemPromptWithPersona` is exported but not used in `main.go` — `main.go` calls `BuildPersonaSystemPrompt` directly and then appends patterns/conventions via the budget system. This exported function implements a different (non-budget-aware) path. It's only tested, not used in production. Either document clearly that it's an alternative API for callers who don't need the budget system, or make it unexported if it's just for testing convenience.
6	[NIT]	`cmd/review-bot/main_test.go`	96	The `TestValidateWorkspacePath` test creates a symlink to `/etc/passwd` and doesn't have OS-specific guards. On Windows, `os.Symlink` to `/etc/passwd` would fail or behave differently. The existing tests in the repo don't appear to target Windows, so this is likely acceptable, but it's worth noting for cross-platform CI.

Recommendation

APPROVE — APPROVE — The implementation is solid. The persona system is well-structured, backwards-compatible, and follows the project's zero-dependencies convention. The refactoring of validateWorkspacePath into a shared function is a nice improvement. The FormatMarkdownWithDisplay separation of display name from sentinel name is clean and correct. Tests are comprehensive and cover edge cases including Unicode. The minor issues flagged (misleading design doc, misplaced utility function, unexported-but-public convenience function) are housekeeping items that don't affect correctness or behavior.

Review by sonnet

Evaluated against 4dd67742

# Sonnet Review ## Summary This PR adds a well-designed role-based persona system to review-bot. The implementation is clean, follows Go idioms, maintains the zero-external-dependencies constraint by using JSON instead of YAML, and includes comprehensive tests. There are a few minor issues worth noting but nothing blocking. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `review/formatter.go` | 34 | The comment says 'displayName is not HTML-escaped as Gitea sanitizes rendered Markdown' and 'Persona display names are controlled by repo owners (trusted input)'. However, `displayName` can come from a `--persona-file` whose path is validated for workspace containment but whose *contents* (the `display_name` field) are not sanitized. A persona file checked into a repo could contain something like `display_name: "] Review\n\n<script>` in a pathological case. Since Gitea does sanitize Markdown-rendered HTML, this is low risk, but the trust assertion in the comment ('controlled by repo owners') is slightly inaccurate — it could also come from any file a developer adds to the repo. The comment should be more precise or dropped. | | 2 | [MINOR] | `docs/DESIGN-51-personas.md` | 76 | The design document shows a YAML persona file format as the primary example (with `# .review/personas/security.yaml` header and YAML syntax like `name: security`) but the implementation uses JSON. The design revision note at the bottom explains this, but the main body of the document is misleading — it still shows YAML syntax in the code block under '2. Persona File Format'. This will confuse future contributors reading the design doc. | | 3 | [MINOR] | `review/persona.go` | 59 | The inline comment on `embeddedPersonas.ReadFile("personas/" + filename)` says 'embed.FS paths use forward slashes per io/fs spec'. While correct and useful, this comment is placed on the wrong line — it belongs on the `ReadFile` call line (line 59), which is where it appears. This is fine. However, the function silently falls through to listing available personas when the embedded file is not found, which means a typo in the name produces an error message that lists alternatives. This is good UX, but the `ListBuiltinPersonas()` call inside `LoadBuiltinPersona` adds a small O(n) directory scan on every failed lookup — not a real concern at this scale but worth noting. | | 4 | [NIT] | `review/persona.go` | 97 | `CapitalizeFirst` is placed in `persona.go` but is used by `formatter.go`. It's a general string utility that doesn't have a conceptual relationship with persona loading. It would be more discoverable in `formatter.go` or a shared `strings.go`/`util.go` file within the `review` package. | | 5 | [NIT] | `review/persona_prompt.go` | 62 | `BuildSystemPromptWithPersona` is exported but not used in `main.go` — `main.go` calls `BuildPersonaSystemPrompt` directly and then appends patterns/conventions via the budget system. This exported function implements a different (non-budget-aware) path. It's only tested, not used in production. Either document clearly that it's an alternative API for callers who don't need the budget system, or make it unexported if it's just for testing convenience. | | 6 | [NIT] | `cmd/review-bot/main_test.go` | 96 | The `TestValidateWorkspacePath` test creates a symlink to `/etc/passwd` and doesn't have OS-specific guards. On Windows, `os.Symlink` to `/etc/passwd` would fail or behave differently. The existing tests in the repo don't appear to target Windows, so this is likely acceptable, but it's worth noting for cross-platform CI. | ## Recommendation **APPROVE** — APPROVE — The implementation is solid. The persona system is well-structured, backwards-compatible, and follows the project's zero-dependencies convention. The refactoring of `validateWorkspacePath` into a shared function is a nice improvement. The `FormatMarkdownWithDisplay` separation of display name from sentinel name is clean and correct. Tests are comprehensive and cover edge cases including Unicode. The minor issues flagged (misleading design doc, misplaced utility function, unexported-but-public convenience function) are housekeeping items that don't affect correctness or behavior. --- *Review by sonnet*  --- *Evaluated against 4dd67742*

cmd/review-bot/main_test.go

						
				@@ -48,0 +93,4 @@

							name:      "valid nested path",

							workspace: tmpDir,

							path:      "subdir/nested.json",

							wantErr:   false,

sonnet-review-bot commented

First-time contributor

[NIT] The TestValidateWorkspacePath test creates a symlink to /etc/passwd and doesn't have OS-specific guards. On Windows, os.Symlink to /etc/passwd would fail or behave differently. The existing tests in the repo don't appear to target Windows, so this is likely acceptable, but it's worth noting for cross-platform CI.

**[NIT]** The `TestValidateWorkspacePath` test creates a symlink to `/etc/passwd` and doesn't have OS-specific guards. On Windows, `os.Symlink` to `/etc/passwd` would fail or behave differently. The existing tests in the repo don't appear to target Windows, so this is likely acceptable, but it's worth noting for cross-platform CI.

docs/DESIGN-51-personas.md

						
				@@ -0,0 +73,4 @@

				output_format: |

				  For each finding:

				  - Severity: [CRITICAL|MAJOR|MINOR|NIT]

				  - Attack vector: How could this be exploited?

sonnet-review-bot commented

First-time contributor

[MINOR] The design document shows a YAML persona file format as the primary example (with # .review/personas/security.yaml header and YAML syntax like name: security) but the implementation uses JSON. The design revision note at the bottom explains this, but the main body of the document is misleading — it still shows YAML syntax in the code block under '2. Persona File Format'. This will confuse future contributors reading the design doc.

**[MINOR]** The design document shows a YAML persona file format as the primary example (with `# .review/personas/security.yaml` header and YAML syntax like `name: security`) but the implementation uses JSON. The design revision note at the bottom explains this, but the main body of the document is misleading — it still shows YAML syntax in the code block under '2. Persona File Format'. This will confuse future contributors reading the design doc.

review/formatter.go

						
				@@ -12,2 +33,2 @@

					if reviewerName != "" {

						title := strings.ToUpper(reviewerName[:1]) + reviewerName[1:]

					// Use display name for header, or fall back to sentinel name

					headerName := displayName

sonnet-review-bot commented

First-time contributor

[MINOR] The comment says 'displayName is not HTML-escaped as Gitea sanitizes rendered Markdown' and 'Persona display names are controlled by repo owners (trusted input)'. However, displayName can come from a --persona-file whose path is validated for workspace containment but whose contents (the display_name field) are not sanitized. A persona file checked into a repo could contain something like display_name: "] Review\n\n<script> in a pathological case. Since Gitea does sanitize Markdown-rendered HTML, this is low risk, but the trust assertion in the comment ('controlled by repo owners') is slightly inaccurate — it could also come from any file a developer adds to the repo. The comment should be more precise or dropped.

**[MINOR]** The comment says 'displayName is not HTML-escaped as Gitea sanitizes rendered Markdown' and 'Persona display names are controlled by repo owners (trusted input)'. However, `displayName` can come from a `--persona-file` whose path is validated for workspace containment but whose *contents* (the `display_name` field) are not sanitized. A persona file checked into a repo could contain something like `display_name: "] Review\n\n<script>` in a pathological case. Since Gitea does sanitize Markdown-rendered HTML, this is low risk, but the trust assertion in the comment ('controlled by repo owners') is slightly inaccurate — it could also come from any file a developer adds to the repo. The comment should be more precise or dropped.

review/persona.go

						
				@@ -0,0 +56,4 @@

				// ListBuiltinPersonas returns the names of all built-in personas.

				// Returns an empty slice if the embedded directory cannot be read.

				func ListBuiltinPersonas() []string {

					entries, err := embeddedPersonas.ReadDir("personas")

sonnet-review-bot commented

First-time contributor

[MINOR] The inline comment on embeddedPersonas.ReadFile("personas/" + filename) says 'embed.FS paths use forward slashes per io/fs spec'. While correct and useful, this comment is placed on the wrong line — it belongs on the ReadFile call line (line 59), which is where it appears. This is fine. However, the function silently falls through to listing available personas when the embedded file is not found, which means a typo in the name produces an error message that lists alternatives. This is good UX, but the ListBuiltinPersonas() call inside LoadBuiltinPersona adds a small O(n) directory scan on every failed lookup — not a real concern at this scale but worth noting.

**[MINOR]** The inline comment on `embeddedPersonas.ReadFile("personas/" + filename)` says 'embed.FS paths use forward slashes per io/fs spec'. While correct and useful, this comment is placed on the wrong line — it belongs on the `ReadFile` call line (line 59), which is where it appears. This is fine. However, the function silently falls through to listing available personas when the embedded file is not found, which means a typo in the name produces an error message that lists alternatives. This is good UX, but the `ListBuiltinPersonas()` call inside `LoadBuiltinPersona` adds a small O(n) directory scan on every failed lookup — not a real concern at this scale but worth noting.

review/persona.go

						
				@@ -0,0 +94,4 @@

					// DisplayName defaults to Name if not set

					if p.DisplayName == "" {

						p.DisplayName = p.Name

					}

sonnet-review-bot commented

First-time contributor

[NIT] CapitalizeFirst is placed in persona.go but is used by formatter.go. It's a general string utility that doesn't have a conceptual relationship with persona loading. It would be more discoverable in formatter.go or a shared strings.go/util.go file within the review package.

**[NIT]** `CapitalizeFirst` is placed in `persona.go` but is used by `formatter.go`. It's a general string utility that doesn't have a conceptual relationship with persona loading. It would be more discoverable in `formatter.go` or a shared `strings.go`/`util.go` file within the `review` package.

review/persona_prompt.go

						
				@@ -0,0 +59,4 @@

					sb.WriteString("Your task:\n")

					sb.WriteString("1. Review the diff for issues within YOUR focus areas only.\n")

					sb.WriteString("2. Consider the CI status — if CI has failed, that is an automatic REQUEST_CHANGES regardless of code quality.\n")

					sb.WriteString("3. Output your review as structured JSON (and ONLY JSON, no markdown fences or other text).\n\n")

sonnet-review-bot commented