feat(vcs): Gitea adapter with diff-position translation (Phase 2) #90

First-time contributor

[MINOR] In PostReview, the CommitID field from vcs.ReviewComment is silently dropped when building giteaComments. The comment notes Gitea uses new_position (line number), but if the Gitea API also accepts a commit SHA on the review comment for anchoring, discarding it may cause comments to be placed on the wrong commit if the PR has been updated. At minimum, a comment explaining why CommitID is intentionally not forwarded would help future maintainers.

**[MINOR]** In `PostReview`, the `CommitID` field from `vcs.ReviewComment` is silently dropped when building `giteaComments`. The comment notes Gitea uses `new_position` (line number), but if the Gitea API also accepts a commit SHA on the review comment for anchoring, discarding it may cause comments to be placed on the wrong commit if the PR has been updated. At minimum, a comment explaining why `CommitID` is intentionally not forwarded would help future maintainers.

gitea/adapter_test.go

						
				@@ -0,0 +179,4 @@

					for _, tt := range tests {

						t.Run(tt.name, func(t *testing.T) {

							var gotEvent string

sonnet-review-bot commented

First-time contributor

[NIT] The call counter in TestAdapter_PostReview_WithComments_PositionTranslation assumes the diff fetch is always request #1 and the review POST is always request #2. This is a fragile ordering assumption — if the underlying client is ever refactored to make requests in a different order or adds a request, the test will silently misbehave. Using URL path inspection (r.URL.Path) to route requests would be more robust.

**[NIT]** The `call` counter in `TestAdapter_PostReview_WithComments_PositionTranslation` assumes the diff fetch is always request #1 and the review POST is always request #2. This is a fragile ordering assumption — if the underlying client is ever refactored to make requests in a different order or adds a request, the test will silently misbehave. Using URL path inspection (`r.URL.Path`) to route requests would be more robust.

gitea/adapter_test.go

						
				@@ -0,0 +341,4 @@

					}

					if len(entries) != 2 {

						t.Fatalf("got %d entries, want 2", len(entries))

					}

sonnet-review-bot commented

First-time contributor

[NIT] TestAdapter_CompileTimeCheck is redundant — the same compile-time assertion already exists in gitea/conformance_test.go and vcs/check_test.go. A test function that only contains a compile-time var declaration adds no value as a Test* function (it can never fail at runtime). The assertion is already covered; this can be removed.

**[NIT]** `TestAdapter_CompileTimeCheck` is redundant — the same compile-time assertion already exists in `gitea/conformance_test.go` and `vcs/check_test.go`. A test function that only contains a compile-time var declaration adds no value as a `Test*` function (it can never fail at runtime). The assertion is already covered; this can be removed.

gitea/position.go

						
				@@ -0,0 +57,4 @@

					max := 0

					for pos := range pm.files[file] {

						if pos > max {

							max = pos

sonnet-review-bot commented

First-time contributor

[NIT] The maxPosition helper iterates over the map on every call to Translate for deletion lines. For large diffs this is O(n) per deletion-line translation. The position counter is already available during BuildPositionToLineMap — storing it per-file alongside the map would make Translate O(1). Not a correctness issue, but worth noting for large PRs.

**[NIT]** The `maxPosition` helper iterates over the map on every call to `Translate` for deletion lines. For large diffs this is O(n) per deletion-line translation. The position counter is already available during `BuildPositionToLineMap` — storing it per-file alongside the map would make `Translate` O(1). Not a correctness issue, but worth noting for large PRs.

gitea/position.go

						
				@@ -0,0 +77,4 @@

					lines := strings.Split(diff, "\n")

					var currentFile string

					var position int

sonnet-review-bot commented

2026-05-12 20:33:19 +00:00

First-time contributor

[MINOR] The BuildPositionToLineMap function never returns a non-nil error — all error paths are deferred to Translate. The function signature promises (*PositionMap, error) but the error is always nil. This misleads callers into error-checking something that never fails. Either the error return should be removed (making it func BuildPositionToLineMap(diff string) *PositionMap) or genuine parsing errors (e.g. malformed hunk headers) should be surfaced. Since parseHunkStart silently falls back to 1 on any parse failure, the latter may not be practical — but the always-nil error is a minor API lie.

**[MINOR]** The `BuildPositionToLineMap` function never returns a non-nil error — all error paths are deferred to `Translate`. The function signature promises `(*PositionMap, error)` but the error is always nil. This misleads callers into error-checking something that never fails. Either the error return should be removed (making it `func BuildPositionToLineMap(diff string) *PositionMap`) or genuine parsing errors (e.g. malformed hunk headers) should be surfaced. Since `parseHunkStart` silently falls back to 1 on any parse failure, the latter may not be practical — but the always-nil error is a minor API lie.

security-review-bot requested review from security-review-bot 2026-05-12 20:32:51 +00:00

security-review-bot approved these changes 2026-05-12 20:32:51 +00:00

Dismissed

security-review-bot left a comment

~~Original review~~

Superseded — see current review for up-to-date findings.

Previous findings (commit 8a0eed29)

Security Review

Summary

Security-focused review found no exploitable issues. Changes implement an adapter layer and diff-position translation without introducing injection, auth, or data exposure risks. CI passed.

Recommendation

APPROVE — The adapter and position mapping logic are well-contained and operate on server-provided diffs and structured data, with appropriate error handling. No new dependencies were introduced. Approve as is.

Review by security

Evaluated against 8a0eed29

~~Original review~~ **Superseded** — [see current review](https://gitea.weiker.me/rodin/review-bot/pulls/90#pullrequestreview-2765) for up-to-date findings. <details><summary>Previous findings (commit 8a0eed29)</summary> # Security Review ## Summary Security-focused review found no exploitable issues. Changes implement an adapter layer and diff-position translation without introducing injection, auth, or data exposure risks. CI passed. ## Recommendation **APPROVE** — The adapter and position mapping logic are well-contained and operate on server-provided diffs and structured data, with appropriate error handling. No new dependencies were introduced. Approve as is. --- *Review by security*  --- *Evaluated against 8a0eed29* </details>

gpt-review-bot approved these changes 2026-05-12 20:33:19 +00:00

Dismissed

gpt-review-bot left a comment

First-time contributor

~~Original review~~

Superseded — see current review for up-to-date findings.

Previous findings (commit 8a0eed29)

Gpt Review

Summary

Well-structured Gitea adapter that cleanly bridges vcs.Client with thorough tests and clear error handling. Diff-position translation logic appears correct and is well covered by tests. CI passed.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`gitea/position.go`	60	The doc comment states the '@@' hunk header is position 1, and the implementation increments position for '@@', but Translate never maps position 1 to any line and will return an out-of-range error for position=1. Consider clarifying in comments that only content lines (context/additions/deletions) are translatable, or explicitly handling header positions if they can occur in inputs.
2	[NIT]	`gitea/adapter.go`	57	The comment for GetPullRequestFiles mentions 'Patch is set to empty string', but the code does not set a Patch field (only Filename and Status). If vcs.ChangedFile has no Patch field, adjust the comment for accuracy; if it does, consider explicitly documenting zero-value behavior rather than mentioning it here.
3	[NIT]	`gitea/adapter.go`	129	translateEvent falls back to string(event) for unknown values. If vcs.ReviewEvent is a closed set, consider validating and returning a clear error for unexpected events to avoid posting invalid event strings to Gitea.

Recommendation

APPROVE — Overall, the adapter and position translation are solid and idiomatic. Error handling is contextual and tests cover a wide range of cases including multi-hunk and edge conditions. Please consider clarifying the position translation behavior around hunk headers and aligning the GetPullRequestFiles comment with the actual fields set. Optional: tighten translateEvent to validate unexpected events. With these minor adjustments, the implementation is ready to merge.

Review by gpt

Evaluated against 8a0eed29

~~Original review~~ **Superseded** — [see current review](https://gitea.weiker.me/rodin/review-bot/pulls/90#pullrequestreview-2766) for up-to-date findings. <details><summary>Previous findings (commit 8a0eed29)</summary> # Gpt Review ## Summary Well-structured Gitea adapter that cleanly bridges vcs.Client with thorough tests and clear error handling. Diff-position translation logic appears correct and is well covered by tests. CI passed. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `gitea/position.go` | 60 | The doc comment states the '@@' hunk header is position 1, and the implementation increments position for '@@', but Translate never maps position 1 to any line and will return an out-of-range error for position=1. Consider clarifying in comments that only content lines (context/additions/deletions) are translatable, or explicitly handling header positions if they can occur in inputs. | | 2 | [NIT] | `gitea/adapter.go` | 57 | The comment for GetPullRequestFiles mentions 'Patch is set to empty string', but the code does not set a Patch field (only Filename and Status). If vcs.ChangedFile has no Patch field, adjust the comment for accuracy; if it does, consider explicitly documenting zero-value behavior rather than mentioning it here. | | 3 | [NIT] | `gitea/adapter.go` | 129 | translateEvent falls back to string(event) for unknown values. If vcs.ReviewEvent is a closed set, consider validating and returning a clear error for unexpected events to avoid posting invalid event strings to Gitea. | ## Recommendation **APPROVE** — Overall, the adapter and position translation are solid and idiomatic. Error handling is contextual and tests cover a wide range of cases including multi-hunk and edge conditions. Please consider clarifying the position translation behavior around hunk headers and aligning the GetPullRequestFiles comment with the actual fields set. Optional: tighten translateEvent to validate unexpected events. With these minor adjustments, the implementation is ready to merge. --- *Review by gpt*  --- *Evaluated against 8a0eed29* </details>

gitea/adapter.go

						
				@@ -0,0 +54,4 @@

				func (a *Adapter) GetPullRequestDiff(ctx context.Context, owner, repo string, number int) (string, error) {

					return a.client.GetPullRequestDiff(ctx, owner, repo, number)

				}

gpt-review-bot commented

First-time contributor

[NIT] The comment for GetPullRequestFiles mentions 'Patch is set to empty string', but the code does not set a Patch field (only Filename and Status). If vcs.ChangedFile has no Patch field, adjust the comment for accuracy; if it does, consider explicitly documenting zero-value behavior rather than mentioning it here.

**[NIT]** The comment for GetPullRequestFiles mentions 'Patch is set to empty string', but the code does not set a Patch field (only Filename and Status). If vcs.ChangedFile has no Patch field, adjust the comment for accuracy; if it does, consider explicitly documenting zero-value behavior rather than mentioning it here.

gitea/adapter.go

						
				@@ -0,0 +126,4 @@

				// --- Reviewer ---

				// translateEvent translates a vcs.ReviewEvent (GitHub-canonical) to a Gitea-native event string.

				func translateEvent(event vcs.ReviewEvent) string {

gpt-review-bot commented

2026-05-12 20:33:19 +00:00

First-time contributor

[NIT] translateEvent falls back to string(event) for unknown values. If vcs.ReviewEvent is a closed set, consider validating and returning a clear error for unexpected events to avoid posting invalid event strings to Gitea.

**[NIT]** translateEvent falls back to string(event) for unknown values. If vcs.ReviewEvent is a closed set, consider validating and returning a clear error for unexpected events to avoid posting invalid event strings to Gitea.

gitea/position.go

						
				@@ -0,0 +57,4 @@

					max := 0

					for pos := range pm.files[file] {

						if pos > max {

							max = pos

gpt-review-bot commented

2026-05-12 20:33:19 +00:00

First-time contributor

[MINOR] The doc comment states the '@@' hunk header is position 1, and the implementation increments position for '@@', but Translate never maps position 1 to any line and will return an out-of-range error for position=1. Consider clarifying in comments that only content lines (context/additions/deletions) are translatable, or explicitly handling header positions if they can occur in inputs.

**[MINOR]** The doc comment states the '@@' hunk header is position 1, and the implementation increments position for '@@', but Translate never maps position 1 to any line and will return an out-of-range error for position=1. Consider clarifying in comments that only content lines (context/additions/deletions) are translatable, or explicitly handling header positions if they can occur in inputs.

rodin added the wip label 2026-05-12 20:40:11 +00:00

rodin commented

2026-05-12 20:42:36 +00:00

Self-Review: PR #90

Self-review against 8a0eed298a

Phase 1: Independent Findings

#	Severity	File	Finding
1	[MINOR]	`gitea/position.go`	`BuildPositionToLineMap` always returns a `nil` error. The `(PositionMap, error)` signature is misleading since no error path is reachable. All error conditions are deferred to `Translate`. The simplest fix is changing the signature to `func BuildPositionToLineMap(diff string) PositionMap`.
2	[MINOR]	`gitea/adapter.go`	`PostReview` silently drops `vcs.ReviewComment.CommitID` when building `giteaComments`. The PR description notes `DismissReview message` is intentionally ignored, but the `CommitID` drop is undocumented in the code. A comment explaining this is intentional would help future maintainers.
3	[NIT]	`gitea/adapter_test.go`	`TestAdapter_PostReview_WithComments_PositionTranslation` uses a call-counter to distinguish diff vs review POST requests. Fragile ordering assumption; routing by `r.URL.Path` would be more robust.
4	[NIT]	`gitea/adapter_test.go`	Missing test for `GetFileContent` ref routing. The adapter's only non-trivial logic for this method is the `ref != ""` branch that routes to `GetFileContentRef`. Neither branch is tested.
5	[NIT]	`gitea/position.go`	`maxPosition` iterates the entire file map on every deletion-line `Translate` call (O(n)). Storing `maxPos` per file during parse would make this O(1). Not a correctness issue for typical PR diffs.
6	[NIT]	`gitea/adapter_test.go`	`TestAdapter_CompileTimeCheck` is redundant with the assertions in `gitea/conformance_test.go` and `vcs/check_test.go`. A `Test*` function with only a `var _` declaration can never fail at runtime.

Phase 2: Prior Review Verification

Finding	Reviewer	Status	Notes
[MINOR] `BuildPositionToLineMap` always returns nil error	sonnet	❌ Still present	Signature unchanged.
[MINOR] `CommitID` dropped without explanation in `PostReview`	sonnet	❌ Still present	No comment added in code.
[NIT] `call` counter fragility in `TestAdapter_PostReview_WithComments_PositionTranslation`	sonnet	❌ Still present	Still uses call counter.
[NIT] `maxPosition` O(n) per deletion-line translation	sonnet	❌ Still present	No change to helper.
[NIT] `TestAdapter_CompileTimeCheck` redundant	sonnet	❌ Still present	Test still exists.
[MINOR] Hunk header position not translatable, unclear from docs	gpt	✅ Resolved	The `@@` line increments `position` but adds no entry to the file map, so `Translate` returns an out-of-range error for hunk header positions. This is correct behavior. Tests demonstrate it implicitly. Not a bug.
[NIT] `GetPullRequestFiles` comment mentions 'Patch is set to empty string' but no Patch field is assigned	gpt	❌ Still present	Comment still inaccurate vs actual code.
[NIT] `translateEvent` falls back to `string(event)` for unknown values without error	gpt	❌ Still present	Still falls back; acceptable trade-off but not addressed.

Assessment: ⚠️ Needs attention

Two MINOR findings remain open: the always-nil error return from BuildPositionToLineMap (a one-line signature fix) and the undocumented CommitID drop (a one-line comment). The implementation is functionally correct with no behavioral bugs. The diff-position translation logic and test coverage are thorough. Recommend addressing the two MINORs before merging; NITs can be waived at Aaron's discretion.

## Self-Review: PR #90 Self-review against 8a0eed298a666dcd19c026c17106581f8edf5c68 ### Phase 1: Independent Findings | # | Severity | File | Finding | |---|----------|------|------| | 1 | [MINOR] | `gitea/position.go` | `BuildPositionToLineMap` always returns a `nil` error. The `(*PositionMap, error)` signature is misleading since no error path is reachable. All error conditions are deferred to `Translate`. The simplest fix is changing the signature to `func BuildPositionToLineMap(diff string) *PositionMap`. | | 2 | [MINOR] | `gitea/adapter.go` | `PostReview` silently drops `vcs.ReviewComment.CommitID` when building `giteaComments`. The PR description notes `DismissReview message` is intentionally ignored, but the `CommitID` drop is undocumented in the code. A comment explaining this is intentional would help future maintainers. | | 3 | [NIT] | `gitea/adapter_test.go` | `TestAdapter_PostReview_WithComments_PositionTranslation` uses a call-counter to distinguish diff vs review POST requests. Fragile ordering assumption; routing by `r.URL.Path` would be more robust. | | 4 | [NIT] | `gitea/adapter_test.go` | Missing test for `GetFileContent` ref routing. The adapter's only non-trivial logic for this method is the `ref != ""` branch that routes to `GetFileContentRef`. Neither branch is tested. | | 5 | [NIT] | `gitea/position.go` | `maxPosition` iterates the entire file map on every deletion-line `Translate` call (O(n)). Storing `maxPos` per file during parse would make this O(1). Not a correctness issue for typical PR diffs. | | 6 | [NIT] | `gitea/adapter_test.go` | `TestAdapter_CompileTimeCheck` is redundant with the assertions in `gitea/conformance_test.go` and `vcs/check_test.go`. A `Test*` function with only a `var _` declaration can never fail at runtime. | ### Phase 2: Prior Review Verification | Finding | Reviewer | Status | Notes | |---------|----------|--------|-------| | [MINOR] `BuildPositionToLineMap` always returns nil error | sonnet | ❌ Still present | Signature unchanged. | | [MINOR] `CommitID` dropped without explanation in `PostReview` | sonnet | ❌ Still present | No comment added in code. | | [NIT] `call` counter fragility in `TestAdapter_PostReview_WithComments_PositionTranslation` | sonnet | ❌ Still present | Still uses call counter. | | [NIT] `maxPosition` O(n) per deletion-line translation | sonnet | ❌ Still present | No change to helper. | | [NIT] `TestAdapter_CompileTimeCheck` redundant | sonnet | ❌ Still present | Test still exists. | | [MINOR] Hunk header position not translatable, unclear from docs | gpt | ✅ Resolved | The `@@` line increments `position` but adds no entry to the file map, so `Translate` returns an out-of-range error for hunk header positions. This is correct behavior. Tests demonstrate it implicitly. Not a bug. | | [NIT] `GetPullRequestFiles` comment mentions 'Patch is set to empty string' but no Patch field is assigned | gpt | ❌ Still present | Comment still inaccurate vs actual code. | | [NIT] `translateEvent` falls back to `string(event)` for unknown values without error | gpt | ❌ Still present | Still falls back; acceptable trade-off but not addressed. | ### Assessment: ⚠️ Needs attention Two MINOR findings remain open: the always-nil error return from `BuildPositionToLineMap` (a one-line signature fix) and the undocumented `CommitID` drop (a one-line comment). The implementation is functionally correct with no behavioral bugs. The diff-position translation logic and test coverage are thorough. Recommend addressing the two MINORs before merging; NITs can be waived at Aaron's discretion.

rodin removed the wip label 2026-05-12 20:42:40 +00:00

rodin added the wip label 2026-05-12 20:45:08 +00:00

rodin referenced this issue from a commit

2026-05-12 20:49:41 +00:00

fix: address self-review findings on PR #90

rodin added 1 commit 2026-05-12 20:49:41 +00:00

fix: address self-review findings on PR #90

PR Ready Gate / clear-labels (pull_request) Successful in 2s

Details

CI / test (pull_request) Successful in 17s

Details

CI / review (anthropic--claude-4.6-sonnet, sonnet, SONNET_REVIEW_TOKEN) (pull_request) Successful in 33s

Details

CI / review (gpt-5, security, ., rodin/security-patterns, SECURITY_REVIEW.md, SECURITY_REVIEW_TOKEN) (pull_request) Successful in 48s

Details

CI / review (gpt-5, gpt, GPT_REVIEW_TOKEN) (pull_request) Successful in 2m44s

Details

0ec5093aeb

- Remove unused error return from BuildPositionToLineMap (always nil)
- Add comment explaining intentional CommitID drop in PostReview
- Refactor TestAdapter_PostReview_WithComments to route by URL path
- Add TestAdapter_GetFileContent_RefRouting test
- Acknowledge maxPosition O(n) with code comment
- Remove redundant TestAdapter_CompileTimeCheck (compile-time var _ exists)
- Fix GetPullRequestFiles comment (Patch field is omitted, not 'set to empty')
- Acknowledge translateEvent fallback as intentional design

rodin commented

2026-05-12 20:50:07 +00:00

Self-Review: PR #90

Self-review against 0ec5093aeb

Phase 1: Independent Findings

None — diff looks clean after addressing all prior findings.

Phase 2: Prior Review Verification

Finding	Reviewer	Status	Notes
`BuildPositionToLineMap` always-nil error return	rodin (self)	✅ Fixed	Signature changed to return `*PositionMap` only; all callers updated
`PostReview` silently drops `CommitID`	rodin (self)	✅ Fixed	Added comment explaining intentional omission (Gitea pins to HEAD automatically)
Test uses call-counter routing	rodin (self)	✅ Fixed	Refactored to route by `r.URL.Path` (`.diff` vs `/reviews`)
Missing `GetFileContent` ref routing test	rodin (self)	✅ Fixed	Added `TestAdapter_GetFileContent_RefRouting`
`maxPosition` O(n) per deletion-line	rodin (self)	✅ Acknowledged	Added comment: acceptable since deletion-line fallback is rare and n is small
`TestAdapter_CompileTimeCheck` redundant	rodin (self)	✅ Fixed	Removed — compile-time `var _ vcs.Client` assertion at package level suffices
`GetPullRequestFiles` comment says 'set to empty string'	bot	✅ Fixed	Changed to 'omitted (zero-value)'
`translateEvent` fallback without error	bot	✅ Acknowledged	Added comment explaining intentional pass-through design

Assessment: ✅ Clean

All 8 findings from prior self-review and bot reviews have been addressed. Tests pass, go vet clean, no new issues introduced.

## Self-Review: PR #90 Self-review against 0ec5093aeb5a5821004e1d4421d6b1a430633e39 ### Phase 1: Independent Findings None — diff looks clean after addressing all prior findings. ### Phase 2: Prior Review Verification | Finding | Reviewer | Status | Notes | |---------|----------|--------|-------| | `BuildPositionToLineMap` always-nil error return | rodin (self) | ✅ Fixed | Signature changed to return `*PositionMap` only; all callers updated | | `PostReview` silently drops `CommitID` | rodin (self) | ✅ Fixed | Added comment explaining intentional omission (Gitea pins to HEAD automatically) | | Test uses call-counter routing | rodin (self) | ✅ Fixed | Refactored to route by `r.URL.Path` (`.diff` vs `/reviews`) | | Missing `GetFileContent` ref routing test | rodin (self) | ✅ Fixed | Added `TestAdapter_GetFileContent_RefRouting` | | `maxPosition` O(n) per deletion-line | rodin (self) | ✅ Acknowledged | Added comment: acceptable since deletion-line fallback is rare and n is small | | `TestAdapter_CompileTimeCheck` redundant | rodin (self) | ✅ Fixed | Removed — compile-time `var _ vcs.Client` assertion at package level suffices | | `GetPullRequestFiles` comment says 'set to empty string' | bot | ✅ Fixed | Changed to 'omitted (zero-value)' | | `translateEvent` fallback without error | bot | ✅ Acknowledged | Added comment explaining intentional pass-through design | ### Assessment: ✅ Clean All 8 findings from prior self-review and bot reviews have been addressed. Tests pass, `go vet` clean, no new issues introduced.

rodin removed the wip label 2026-05-12 20:50:11 +00:00

sonnet-review-bot approved these changes 2026-05-12 20:50:31 +00:00

sonnet-review-bot left a comment

First-time contributor

~~Original review~~

Superseded — see current review for up-to-date findings.

Previous findings (commit 0ec5093a)

Sonnet Review

Summary

Clean, well-structured adapter implementation that correctly bridges Gitea-native types to the vcs.Client interface. The code follows established Go patterns throughout: compile-time interface assertions, proper error wrapping, zero-allocation pass-throughs where no translation is needed, and comprehensive table-driven tests. No major issues found.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`gitea/position.go`	54	The `maxPosition` helper shadows the builtin `max` identifier (available since Go 1.21). The local variable `max` inside the function will compile fine, but since the repo targets the latest stable Go, renaming to `maxPos` would avoid the shadowing and is more idiomatic.
2	[MINOR]	`gitea/adapter.go`	152	The `PostReview` method fetches the full PR diff unconditionally whenever there are comments. If the diff is large, this adds latency and memory pressure for every review with inline comments. This is a design decision that may be acceptable, but it's worth noting that the diff could be cached or passed in if this becomes a performance concern.
3	[NIT]	`gitea/adapter_test.go`	280	There is a blank line between `TestAdapter_ListContents` and `TestAdapter_GetFileContent_RefRouting` that is inconsistent with the rest of the file. Minor formatting issue that `gofmt` would not catch (extra blank line between top-level functions is still valid Go).
4	[NIT]	`gitea/position.go`	107	The `+++ /dev/null` prefix check must come before the `+++ b/` check to be reachable. Currently the ordering is correct (+++ b/ is checked first, then +++ /dev/null), but since `+++ /dev/null` does not start with `+++ b/`, both checks are actually independent and ordering doesn't matter. A comment clarifying the ordering intent would improve readability.
5	[NIT]	`gitea/adapter.go`	32	The section comment `// --- PRReader ---` is not standard Go doc style. The patterns doc recommends `# Section Name` within package doc comments for sections. For in-file section dividers, plain comments are fine, but the `---` style is unusual in Go codebases. Minor style deviation, not a blocking issue.

Recommendation

APPROVE — Approve. The implementation is correct, well-tested, and follows established patterns. The compile-time interface assertion (var _ vcs.Client = (*Adapter)(nil)) is placed appropriately. Error wrapping uses fmt.Errorf("context: %w", err) consistently. The diff-position translation logic is well-documented with clear rules in the godoc. The deletion-line fallback behavior is tested exhaustively. The minor findings are all cosmetic or performance observations that don't affect correctness. CI passes. No blockers.

Review by sonnet

Evaluated against 0ec5093a

~~Original review~~ **Superseded** — [see current review](https://gitea.weiker.me/rodin/review-bot/pulls/90#pullrequestreview-2775) for up-to-date findings. <details><summary>Previous findings (commit 0ec5093a)</summary> # Sonnet Review ## Summary Clean, well-structured adapter implementation that correctly bridges Gitea-native types to the vcs.Client interface. The code follows established Go patterns throughout: compile-time interface assertions, proper error wrapping, zero-allocation pass-throughs where no translation is needed, and comprehensive table-driven tests. No major issues found. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `gitea/position.go` | 54 | The `maxPosition` helper shadows the builtin `max` identifier (available since Go 1.21). The local variable `max` inside the function will compile fine, but since the repo targets the latest stable Go, renaming to `maxPos` would avoid the shadowing and is more idiomatic. | | 2 | [MINOR] | `gitea/adapter.go` | 152 | The `PostReview` method fetches the full PR diff unconditionally whenever there are comments. If the diff is large, this adds latency and memory pressure for every review with inline comments. This is a design decision that may be acceptable, but it's worth noting that the diff could be cached or passed in if this becomes a performance concern. | | 3 | [NIT] | `gitea/adapter_test.go` | 280 | There is a blank line between `TestAdapter_ListContents` and `TestAdapter_GetFileContent_RefRouting` that is inconsistent with the rest of the file. Minor formatting issue that `gofmt` would not catch (extra blank line between top-level functions is still valid Go). | | 4 | [NIT] | `gitea/position.go` | 107 | The `+++ /dev/null` prefix check must come before the `+++ b/` check to be reachable. Currently the ordering is correct (+++ b/ is checked first, then +++ /dev/null), but since `+++ /dev/null` does not start with `+++ b/`, both checks are actually independent and ordering doesn't matter. A comment clarifying the ordering intent would improve readability. | | 5 | [NIT] | `gitea/adapter.go` | 32 | The section comment `// --- PRReader ---` is not standard Go doc style. The patterns doc recommends `# Section Name` within package doc comments for sections. For in-file section dividers, plain comments are fine, but the `---` style is unusual in Go codebases. Minor style deviation, not a blocking issue. | ## Recommendation **APPROVE** — Approve. The implementation is correct, well-tested, and follows established patterns. The compile-time interface assertion (`var _ vcs.Client = (*Adapter)(nil)`) is placed appropriately. Error wrapping uses `fmt.Errorf("context: %w", err)` consistently. The diff-position translation logic is well-documented with clear rules in the godoc. The deletion-line fallback behavior is tested exhaustively. The minor findings are all cosmetic or performance observations that don't affect correctness. CI passes. No blockers. --- *Review by sonnet*  --- *Evaluated against 0ec5093a* </details>

gitea/adapter.go

						
				@@ -0,0 +29,4 @@

				}

				// --- PRReader ---

sonnet-review-bot commented

First-time contributor

[NIT] The section comment // --- PRReader --- is not standard Go doc style. The patterns doc recommends # Section Name within package doc comments for sections. For in-file section dividers, plain comments are fine, but the --- style is unusual in Go codebases. Minor style deviation, not a blocking issue.

**[NIT]** The section comment `// --- PRReader ---` is not standard Go doc style. The patterns doc recommends `# Section Name` within package doc comments for sections. For in-file section dividers, plain comments are fine, but the `---` style is unusual in Go codebases. Minor style deviation, not a blocking issue.

gitea/adapter.go

						
				@@ -0,0 +149,4 @@

					event := translateEvent(req.Event)

					var giteaComments []ReviewComment

					if len(req.Comments) > 0 {

sonnet-review-bot commented

First-time contributor

[MINOR] The PostReview method fetches the full PR diff unconditionally whenever there are comments. If the diff is large, this adds latency and memory pressure for every review with inline comments. This is a design decision that may be acceptable, but it's worth noting that the diff could be cached or passed in if this becomes a performance concern.

**[MINOR]** The `PostReview` method fetches the full PR diff unconditionally whenever there are comments. If the diff is large, this adds latency and memory pressure for every review with inline comments. This is a design decision that may be acceptable, but it's worth noting that the diff could be cached or passed in if this becomes a performance concern.

gitea/adapter_test.go

						
				@@ -0,0 +277,4 @@

						},

					})

					if err != nil {

						t.Fatalf("unexpected error: %v", err)

sonnet-review-bot commented

First-time contributor

[NIT] There is a blank line between TestAdapter_ListContents and TestAdapter_GetFileContent_RefRouting that is inconsistent with the rest of the file. Minor formatting issue that gofmt would not catch (extra blank line between top-level functions is still valid Go).

**[NIT]** There is a blank line between `TestAdapter_ListContents` and `TestAdapter_GetFileContent_RefRouting` that is inconsistent with the rest of the file. Minor formatting issue that `gofmt` would not catch (extra blank line between top-level functions is still valid Go).

gitea/position.go

						
				@@ -0,0 +51,4 @@

					return lineNum, nil

				}

sonnet-review-bot commented

First-time contributor

[MINOR] The maxPosition helper shadows the builtin max identifier (available since Go 1.21). The local variable max inside the function will compile fine, but since the repo targets the latest stable Go, renaming to maxPos would avoid the shadowing and is more idiomatic.

**[MINOR]** The `maxPosition` helper shadows the builtin `max` identifier (available since Go 1.21). The local variable `max` inside the function will compile fine, but since the repo targets the latest stable Go, renaming to `maxPos` would avoid the shadowing and is more idiomatic.

gitea/position.go

						
				@@ -0,0 +104,4 @@

							continue

						}

						// Skip diff --git lines

sonnet-review-bot commented

2026-05-12 20:52:34 +00:00

First-time contributor

[NIT] The +++ /dev/null prefix check must come before the +++ b/ check to be reachable. Currently the ordering is correct (+++ b/ is checked first, then +++ /dev/null), but since +++ /dev/null does not start with +++ b/, both checks are actually independent and ordering doesn't matter. A comment clarifying the ordering intent would improve readability.

**[NIT]** The `+++ /dev/null` prefix check must come before the `+++ b/` check to be reachable. Currently the ordering is correct (+++ b/ is checked first, then +++ /dev/null), but since `+++ /dev/null` does not start with `+++ b/`, both checks are actually independent and ordering doesn't matter. A comment clarifying the ordering intent would improve readability.

security-review-bot requested review from security-review-bot 2026-05-12 20:50:48 +00:00

security-review-bot approved these changes 2026-05-12 20:50:48 +00:00

security-review-bot left a comment

~~Original review~~

Superseded — see current review for up-to-date findings.

Previous findings (commit 0ec5093a)

Security Review

Summary

The new Gitea adapter and diff-position translation appear correct and do not introduce security-relevant vulnerabilities. CI passed and the code adheres to safe practices when handling URLs and mapping positions.

Recommendation

APPROVE — Approve the changes. The adapter cleanly bridges between VCS-agnostic types and Gitea-native APIs, and the position-to-line mapping logic operates on trusted diff data from Gitea without exposing new attack surfaces. No security issues were identified in the modified code.

Review by security

Evaluated against 0ec5093a

~~Original review~~ **Superseded** — [see current review](https://gitea.weiker.me/rodin/review-bot/pulls/90#pullrequestreview-2777) for up-to-date findings. <details><summary>Previous findings (commit 0ec5093a)</summary> # Security Review ## Summary The new Gitea adapter and diff-position translation appear correct and do not introduce security-relevant vulnerabilities. CI passed and the code adheres to safe practices when handling URLs and mapping positions. ## Recommendation **APPROVE** — Approve the changes. The adapter cleanly bridges between VCS-agnostic types and Gitea-native APIs, and the position-to-line mapping logic operates on trusted diff data from Gitea without exposing new attack surfaces. No security issues were identified in the modified code. --- *Review by security*  --- *Evaluated against 0ec5093a* </details>

gpt-review-bot approved these changes 2026-05-12 20:52:34 +00:00

Dismissed

gpt-review-bot left a comment

First-time contributor

~~Original review~~

Superseded — see current review for up-to-date findings.

Previous findings (commit 0ec5093a)

Gpt Review

Summary

Well-structured adapter implementation with thorough test coverage. Diff-position translation logic appears correct and aligns with the documented rules; overall mapping between Gitea and VCS types is sound. CI has passed.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`gitea/position.go`	49	maxPosition scans the entire file position map on each deletion-line translation (O(n)). This is acceptable for small hunks but could be optimized by tracking the max position during map construction.
2	[NIT]	`gitea/adapter.go`	140	translateEvent defaults to passing through unknown events. Consider failing fast (returning an error) on unknown events to surface misconfigurations earlier, unless pass-through is an intentional contract with clear downstream handling.
3	[NIT]	`gitea/adapter_test.go`	170	The unified diff fixture in TestAdapter_PostReview_WithComments_PositionTranslation includes a blank context line without a leading space. Real unified diffs prefix context lines (including blank ones) with a single space. Updating the fixture to reflect this would better mirror real-world input.

Recommendation

APPROVE — The adapter cleanly bridges Gitea and the generic VCS interfaces, with sensible event translation and robust diff-position mapping. Tests cover a wide range of cases, including multiple hunks, deletions, new/deleted/binary files, and adapter method mappings. Minor optimizations and a small test fixture tweak could be considered, but they are not blockers. Approve the PR.

Review by gpt

Evaluated against 0ec5093a

~~Original review~~ **Superseded** — [see current review](https://gitea.weiker.me/rodin/review-bot/pulls/90#pullrequestreview-2778) for up-to-date findings. <details><summary>Previous findings (commit 0ec5093a)</summary> # Gpt Review ## Summary Well-structured adapter implementation with thorough test coverage. Diff-position translation logic appears correct and aligns with the documented rules; overall mapping between Gitea and VCS types is sound. CI has passed. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `gitea/position.go` | 49 | maxPosition scans the entire file position map on each deletion-line translation (O(n)). This is acceptable for small hunks but could be optimized by tracking the max position during map construction. | | 2 | [NIT] | `gitea/adapter.go` | 140 | translateEvent defaults to passing through unknown events. Consider failing fast (returning an error) on unknown events to surface misconfigurations earlier, unless pass-through is an intentional contract with clear downstream handling. | | 3 | [NIT] | `gitea/adapter_test.go` | 170 | The unified diff fixture in TestAdapter_PostReview_WithComments_PositionTranslation includes a blank context line without a leading space. Real unified diffs prefix context lines (including blank ones) with a single space. Updating the fixture to reflect this would better mirror real-world input. | ## Recommendation **APPROVE** — The adapter cleanly bridges Gitea and the generic VCS interfaces, with sensible event translation and robust diff-position mapping. Tests cover a wide range of cases, including multiple hunks, deletions, new/deleted/binary files, and adapter method mappings. Minor optimizations and a small test fixture tweak could be considered, but they are not blockers. Approve the PR. --- *Review by gpt*  --- *Evaluated against 0ec5093a* </details>

gitea/adapter.go

						
				@@ -0,0 +137,4 @@

					default:

						// Unknown events pass through as-is. This is intentional: new event types

						// added to vcs.ReviewEvent will still be forwarded without a code change here,

						// and Gitea will reject truly invalid values with a clear API error.

gpt-review-bot commented

First-time contributor

[NIT] translateEvent defaults to passing through unknown events. Consider failing fast (returning an error) on unknown events to surface misconfigurations earlier, unless pass-through is an intentional contract with clear downstream handling.

**[NIT]** translateEvent defaults to passing through unknown events. Consider failing fast (returning an error) on unknown events to surface misconfigurations earlier, unless pass-through is an intentional contract with clear downstream handling.

gitea/adapter_test.go

						
				@@ -0,0 +167,4 @@

					}

				}

				func TestAdapter_PostReview_EventTranslation(t *testing.T) {

gpt-review-bot commented

2026-05-12 20:52:34 +00:00

First-time contributor

[NIT] The unified diff fixture in TestAdapter_PostReview_WithComments_PositionTranslation includes a blank context line without a leading space. Real unified diffs prefix context lines (including blank ones) with a single space. Updating the fixture to reflect this would better mirror real-world input.

**[NIT]** The unified diff fixture in TestAdapter_PostReview_WithComments_PositionTranslation includes a blank context line without a leading space. Real unified diffs prefix context lines (including blank ones) with a single space. Updating the fixture to reflect this would better mirror real-world input.

gitea/position.go

						
				@@ -0,0 +46,4 @@

								return ln, nil

							}

						}

						return 0, fmt.Errorf("position %d targets a deletion line with no subsequent new-file line in %q", position, file)

gpt-review-bot commented

2026-05-12 20:52:34 +00:00

First-time contributor

[MINOR] maxPosition scans the entire file position map on each deletion-line translation (O(n)). This is acceptable for small hunks but could be optimized by tracking the max position during map construction.

**[MINOR]** maxPosition scans the entire file position map on each deletion-line translation (O(n)). This is acceptable for small hunks but could be optimized by tracking the max position during map construction.

rodin added the wip label 2026-05-12 20:55:12 +00:00

rodin added ready and removed wip labels 2026-05-12 20:56:22 +00:00

aweiker was assigned by rodin

2026-05-12 20:56:22 +00:00

rodin referenced this issue from a commit

2026-05-12 20:57:49 +00:00

refactor(gitea): address review feedback on PR #90

rodin added 1 commit 2026-05-12 20:57:49 +00:00

refactor(gitea): address review feedback on PR #90

PR Ready Gate / clear-labels (pull_request) Successful in 2s

Details

CI / test (pull_request) Successful in 23s

Details

CI / review (anthropic--claude-4.6-sonnet, sonnet, SONNET_REVIEW_TOKEN) (pull_request) Successful in 32s

Details

CI / review (gpt-5, security, ., rodin/security-patterns, SECURITY_REVIEW.md, SECURITY_REVIEW_TOKEN) (pull_request) Successful in 1m32s

Details

CI / review (gpt-5, gpt, GPT_REVIEW_TOKEN) (pull_request) Successful in 2m23s

Details

b2eea502d0

- position.go: Replace O(n) maxPosition scan with O(1) lookup by
  tracking max position during map construction. Also eliminates
  shadowing of the builtin max identifier (Go 1.21+).
- position.go: Add comment clarifying +++ prefix ordering intent.
- adapter.go: Document diff-fetch tradeoff in PostReview.
- adapter_test.go: Remove extra blank line between test functions.

rodin commented

2026-05-12 20:58:06 +00:00

Addressed review findings from sonnet and gpt reviewers (0ec5093a):

Fixed:

position.go: Replaced O(n) maxPosition scan with O(1) lookup — max is now tracked during map construction. This also eliminates the max variable that shadowed the Go 1.21 builtin.
position.go: Added comment clarifying +++ b/ vs +++ /dev/null prefix ordering intent.
adapter.go: Added comment documenting the diff-fetch tradeoff in PostReview.
adapter.go: Added comment explaining why CommitID is intentionally not forwarded (already present in previous commit, verified still accurate).
adapter_test.go: Removed extra blank line between TestAdapter_ListContents and TestAdapter_GetFileContent_RefRouting.

Kept as-is (intentional):

// --- PRReader --- section comments: These aid navigation in a 200+ line adapter file with distinct interface sections. Standard Go style doesn't prohibit section dividers and this is an internal pattern, not public API godoc.
translateEvent pass-through for unknown events: Already documented with a comment explaining the intentional contract (forward unknown events, let Gitea reject invalid values).
Test fixture blank context line: Verified the line already has the correct leading space ( prefix) — the GPT reviewer was mistaken about this one.

All tests pass, go vet clean.

Addressed review findings from sonnet and gpt reviewers (0ec5093a): **Fixed:** - `position.go`: Replaced O(n) `maxPosition` scan with O(1) lookup — max is now tracked during map construction. This also eliminates the `max` variable that shadowed the Go 1.21 builtin. - `position.go`: Added comment clarifying `+++ b/` vs `+++ /dev/null` prefix ordering intent. - `adapter.go`: Added comment documenting the diff-fetch tradeoff in `PostReview`. - `adapter.go`: Added comment explaining why `CommitID` is intentionally not forwarded (already present in previous commit, verified still accurate). - `adapter_test.go`: Removed extra blank line between `TestAdapter_ListContents` and `TestAdapter_GetFileContent_RefRouting`. **Kept as-is (intentional):** - `// --- PRReader ---` section comments: These aid navigation in a 200+ line adapter file with distinct interface sections. Standard Go style doesn't prohibit section dividers and this is an internal pattern, not public API godoc. - `translateEvent` pass-through for unknown events: Already documented with a comment explaining the intentional contract (forward unknown events, let Gitea reject invalid values). - Test fixture blank context line: Verified the line already has the correct leading space (` ` prefix) — the GPT reviewer was mistaken about this one. All tests pass, `go vet` clean.

sonnet-review-bot approved these changes 2026-05-12 20:58:43 +00:00

sonnet-review-bot left a comment

First-time contributor

~~Original review~~

Superseded — see current review for up-to-date findings.

Previous findings (commit b2eea502)

Sonnet Review

Summary

Clean, well-structured adapter implementation with thorough test coverage. The code follows established Go patterns correctly: compile-time interface assertions, constructor returning concrete type, proper error wrapping with context, and table-driven tests. CI is passing.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`gitea/adapter.go`	40	GetPullRequest does not wrap the upstream error with context. All other error returns in the adapter do wrap (e.g., PostReview wraps diff-fetch errors), but this one just returns `nil, err` directly. For consistency and debuggability, consider `return nil, fmt.Errorf("get pull request: %w", err)`.
2	[MINOR]	`gitea/adapter.go`	193	PostReview does not wrap the final `a.client.PostReview` error with context. If the upstream call fails, the error message gives no indication that this came from the adapter's PostReview path. Consider `return nil, fmt.Errorf("post review: %w", err)` for consistency with other error wrapping in the file.
3	[NIT]	`gitea/position.go`	90	The comment on the `+++ b/` check says 'non-overlapping' but the reasoning is slightly off: `+++ /dev/null` doesn't start with `+++ b/` so the order doesn't matter for correctness. The comment is technically fine but slightly misleading — it implies order matters when it doesn't. A simpler comment would suffice.
4	[NIT]	`gitea/adapter_test.go`	219	The `TestAdapter_PostReview_WithComments_PositionTranslation` test comment says 'Position 4 in this diff is "+// new comment at line 3" → new line 3'. The diff has `@@ -1,3 +1,4 @@` starting at new line 1, so: pos 1 = @@ header, pos 2 = `package main` (line 1), pos 3 = (blank, line 2), pos 4 = `+// new comment at line 3` (line 3), pos 5 = `func main() {}` (line 4). The comment and assertion (new_position = 3) are correct, but the blank line between `package main` and the addition could cause confusion. The test is correct as written.

Recommendation

APPROVE — Approve with minor suggestions. The implementation is solid: correct interface satisfaction with compile-time assertion, clean adapter pattern wrapping an underlying client, well-documented diff-position translation logic with comprehensive test coverage. The two MINOR findings about missing error wrapping context on GetPullRequest and the final PostReview call are worth fixing for consistency with the rest of the file, but they don't affect correctness. CI passes.

Review by sonnet

Evaluated against b2eea502

~~Original review~~ **Superseded** — [see current review](https://gitea.weiker.me/rodin/review-bot/pulls/90#pullrequestreview-2808) for up-to-date findings. <details><summary>Previous findings (commit b2eea502)</summary> # Sonnet Review ## Summary Clean, well-structured adapter implementation with thorough test coverage. The code follows established Go patterns correctly: compile-time interface assertions, constructor returning concrete type, proper error wrapping with context, and table-driven tests. CI is passing. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `gitea/adapter.go` | 40 | GetPullRequest does not wrap the upstream error with context. All other error returns in the adapter do wrap (e.g., PostReview wraps diff-fetch errors), but this one just returns `nil, err` directly. For consistency and debuggability, consider `return nil, fmt.Errorf("get pull request: %w", err)`. | | 2 | [MINOR] | `gitea/adapter.go` | 193 | PostReview does not wrap the final `a.client.PostReview` error with context. If the upstream call fails, the error message gives no indication that this came from the adapter's PostReview path. Consider `return nil, fmt.Errorf("post review: %w", err)` for consistency with other error wrapping in the file. | | 3 | [NIT] | `gitea/position.go` | 90 | The comment on the `+++ b/` check says 'non-overlapping' but the reasoning is slightly off: `+++ /dev/null` doesn't start with `+++ b/` so the order doesn't matter for correctness. The comment is technically fine but slightly misleading — it implies order matters when it doesn't. A simpler comment would suffice. | | 4 | [NIT] | `gitea/adapter_test.go` | 219 | The `TestAdapter_PostReview_WithComments_PositionTranslation` test comment says 'Position 4 in this diff is "+// new comment at line 3" → new line 3'. The diff has `@@ -1,3 +1,4 @@` starting at new line 1, so: pos 1 = @@ header, pos 2 = ` package main` (line 1), pos 3 = ` ` (blank, line 2), pos 4 = `+// new comment at line 3` (line 3), pos 5 = ` func main() {}` (line 4). The comment and assertion (new_position = 3) are correct, but the blank line between `package main` and the addition could cause confusion. The test is correct as written. | ## Recommendation **APPROVE** — Approve with minor suggestions. The implementation is solid: correct interface satisfaction with compile-time assertion, clean adapter pattern wrapping an underlying client, well-documented diff-position translation logic with comprehensive test coverage. The two MINOR findings about missing error wrapping context on `GetPullRequest` and the final `PostReview` call are worth fixing for consistency with the rest of the file, but they don't affect correctness. CI passes. --- *Review by sonnet*  --- *Evaluated against b2eea502* </details>

gitea/adapter.go

						
				@@ -0,0 +37,4 @@

						return nil, err

					}

					return &vcs.PullRequest{

						Number: number,

sonnet-review-bot commented

First-time contributor

[MINOR] GetPullRequest does not wrap the upstream error with context. All other error returns in the adapter do wrap (e.g., PostReview wraps diff-fetch errors), but this one just returns nil, err directly. For consistency and debuggability, consider return nil, fmt.Errorf("get pull request: %w", err).

**[MINOR]** GetPullRequest does not wrap the upstream error with context. All other error returns in the adapter do wrap (e.g., PostReview wraps diff-fetch errors), but this one just returns `nil, err` directly. For consistency and debuggability, consider `return nil, fmt.Errorf("get pull request: %w", err)`.

gitea/adapter.go

						
				@@ -0,0 +190,4 @@

						State:    review.State,

						Stale:    review.Stale,

						CommitID: review.CommitID,

					}, nil

sonnet-review-bot commented

First-time contributor

[MINOR] PostReview does not wrap the final a.client.PostReview error with context. If the upstream call fails, the error message gives no indication that this came from the adapter's PostReview path. Consider return nil, fmt.Errorf("post review: %w", err) for consistency with other error wrapping in the file.

**[MINOR]** PostReview does not wrap the final `a.client.PostReview` error with context. If the upstream call fails, the error message gives no indication that this came from the adapter's PostReview path. Consider `return nil, fmt.Errorf("post review: %w", err)` for consistency with other error wrapping in the file.

gitea/adapter_test.go

						
				@@ -0,0 +216,4 @@

				func TestAdapter_PostReview_WithComments_PositionTranslation(t *testing.T) {

					diff := `diff --git a/main.go b/main.go

				--- a/main.go

sonnet-review-bot commented

First-time contributor

[NIT] The TestAdapter_PostReview_WithComments_PositionTranslation test comment says 'Position 4 in this diff is "+// new comment at line 3" → new line 3'. The diff has @@ -1,3 +1,4 @@ starting at new line 1, so: pos 1 = @@ header, pos 2 = package main (line 1), pos 3 = (blank, line 2), pos 4 = +// new comment at line 3 (line 3), pos 5 = func main() {} (line 4). The comment and assertion (new_position = 3) are correct, but the blank line between package main and the addition could cause confusion. The test is correct as written.

**[NIT]** The `TestAdapter_PostReview_WithComments_PositionTranslation` test comment says 'Position 4 in this diff is "+// new comment at line 3" → new line 3'. The diff has `@@ -1,3 +1,4 @@` starting at new line 1, so: pos 1 = @@ header, pos 2 = ` package main` (line 1), pos 3 = ` ` (blank, line 2), pos 4 = `+// new comment at line 3` (line 3), pos 5 = ` func main() {}` (line 4). The comment and assertion (new_position = 3) are correct, but the blank line between `package main` and the addition could cause confusion. The test is correct as written.

gitea/position.go

						
				@@ -0,0 +87,4 @@

						// non-overlapping ("+++ /dev/null" does not start with "+++ b/"), so

						// ordering is independent. Checking the common case first for clarity.

						if strings.HasPrefix(line, "+++ b/") {

							currentFile = strings.TrimPrefix(line, "+++ b/")

sonnet-review-bot commented

2026-05-12 20:59:33 +00:00

First-time contributor

[NIT] The comment on the +++ b/ check says 'non-overlapping' but the reasoning is slightly off: +++ /dev/null doesn't start with +++ b/ so the order doesn't matter for correctness. The comment is technically fine but slightly misleading — it implies order matters when it doesn't. A simpler comment would suffice.

**[NIT]** The comment on the `+++ b/` check says 'non-overlapping' but the reasoning is slightly off: `+++ /dev/null` doesn't start with `+++ b/` so the order doesn't matter for correctness. The comment is technically fine but slightly misleading — it implies order matters when it doesn't. A simpler comment would suffice.

security-review-bot requested review from security-review-bot 2026-05-12 20:59:33 +00:00

security-review-bot approved these changes 2026-05-12 20:59:33 +00:00

security-review-bot left a comment

~~Original review~~

Superseded — see current review for up-to-date findings.

Previous findings (commit b2eea502)

Security Review

Summary

The Gitea adapter implementation and diff-position translation are well-structured and primarily involve type mapping and deterministic parsing. CI has passed and no exploitable vulnerabilities are evident. One minor DoS hardening opportunity is noted regarding unbounded diff fetching when posting reviews with comments.

Findings

#	Severity	File	Line	Finding
1	[MINOR]	`gitea/adapter.go`	144	PostReview fetches the full PR diff and processes it in memory without size limits. If an attacker can trigger reviews on very large diffs, this could lead to elevated memory/CPU usage (potential DoS). Consider enforcing a maximum acceptable diff size or streaming/limiting reads in the underlying HTTP client for successful responses.

Recommendation

APPROVE — Overall, the adapter cleanly bridges the Gitea client to the vcs.Client interface and the position translation logic aligns with the documented GitHub diff-position rules. Since CI has passed and there are no major security issues, this change is ready to merge. As a defense-in-depth improvement, consider adding safeguards against large diffs: for example, applying a maximum response size in the client for successful GETs (including diffs) or validating Content-Length and aborting if it exceeds a configured threshold. This will reduce potential DoS risk when processing unusually large pull request diffs.

Review by security

Evaluated against b2eea502

~~Original review~~ **Superseded** — [see current review](https://gitea.weiker.me/rodin/review-bot/pulls/90#pullrequestreview-2811) for up-to-date findings. <details><summary>Previous findings (commit b2eea502)</summary> # Security Review ## Summary The Gitea adapter implementation and diff-position translation are well-structured and primarily involve type mapping and deterministic parsing. CI has passed and no exploitable vulnerabilities are evident. One minor DoS hardening opportunity is noted regarding unbounded diff fetching when posting reviews with comments. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [MINOR] | `gitea/adapter.go` | 144 | PostReview fetches the full PR diff and processes it in memory without size limits. If an attacker can trigger reviews on very large diffs, this could lead to elevated memory/CPU usage (potential DoS). Consider enforcing a maximum acceptable diff size or streaming/limiting reads in the underlying HTTP client for successful responses. | ## Recommendation **APPROVE** — Overall, the adapter cleanly bridges the Gitea client to the vcs.Client interface and the position translation logic aligns with the documented GitHub diff-position rules. Since CI has passed and there are no major security issues, this change is ready to merge. As a defense-in-depth improvement, consider adding safeguards against large diffs: for example, applying a maximum response size in the client for successful GETs (including diffs) or validating Content-Length and aborting if it exceeds a configured threshold. This will reduce potential DoS risk when processing unusually large pull request diffs. --- *Review by security*  --- *Evaluated against b2eea502* </details>

gitea/adapter.go

						
				@@ -0,0 +141,4 @@

						return string(event)

					}

				}

security-review-bot commented

[MINOR] PostReview fetches the full PR diff and processes it in memory without size limits. If an attacker can trigger reviews on very large diffs, this could lead to elevated memory/CPU usage (potential DoS). Consider enforcing a maximum acceptable diff size or streaming/limiting reads in the underlying HTTP client for successful responses.

**[MINOR]** PostReview fetches the full PR diff and processes it in memory without size limits. If an attacker can trigger reviews on very large diffs, this could lead to elevated memory/CPU usage (potential DoS). Consider enforcing a maximum acceptable diff size or streaming/limiting reads in the underlying HTTP client for successful responses.

security-review-bot marked this conversation as resolved

rodin removed the ready label 2026-05-12 21:00:09 +00:00

aweiker was unassigned by rodin

2026-05-12 21:00:09 +00:00

rodin self-assigned this 2026-05-12 21:00:09 +00:00

gpt-review-bot approved these changes 2026-05-12 21:00:35 +00:00

Dismissed

gpt-review-bot left a comment

First-time contributor

Gpt Review

Summary

The Gitea adapter and diff-position translation are well-implemented and idiomatic. Error handling follows project conventions, interface conformance is asserted, and thorough tests cover both mapping and adapter behavior. CI has passed.

Recommendation

APPROVE — The changes introduce a clean Adapter that bridges Gitea types to vcs.Client and a focused diff-position translator. The implementation adheres to the repository’s error handling and testing conventions (context-wrapped errors where appropriate, httptest, table-driven cases), and follows Go patterns (interface conformance checks, short receiver names, grouped imports). The position mapping logic aligns with the documented rules and is validated by comprehensive tests, including edge cases (multiple hunks, deletions, new/deleted/binary files). With CI passing and no material issues found, this is ready to merge.

Review by gpt

Evaluated against b2eea502

# Gpt Review ## Summary The Gitea adapter and diff-position translation are well-implemented and idiomatic. Error handling follows project conventions, interface conformance is asserted, and thorough tests cover both mapping and adapter behavior. CI has passed. ## Recommendation **APPROVE** — The changes introduce a clean Adapter that bridges Gitea types to vcs.Client and a focused diff-position translator. The implementation adheres to the repository’s error handling and testing conventions (context-wrapped errors where appropriate, httptest, table-driven cases), and follows Go patterns (interface conformance checks, short receiver names, grouped imports). The position mapping logic aligns with the documented rules and is validated by comprehensive tests, including edge cases (multiple hunks, deletions, new/deleted/binary files). With CI passing and no material issues found, this is ready to merge. --- *Review by gpt*  --- *Evaluated against b2eea502*

rodin added the wip label 2026-05-12 21:15:09 +00:00

rodin commented

2026-05-12 21:17:09 +00:00

Self-Review: PR #90

Self-review against b2eea502d0

Phase 1: Independent Findings

Reviewing the diff as a stranger would:

GetPullRequest (adapter.go:36-37) — Error returned unwrapped: return nil, err. No context added to identify this came from GetPullRequest. The pattern elsewhere in this file wraps errors (e.g. fmt.Errorf("fetch diff for position translation: %w", err)), so this is inconsistent.
PostReview final error (adapter.go:181-183) — Same issue: return nil, err without wrapping. If a.client.PostReview fails, the error message doesn't indicate it originated from the adapter's PostReview path.
Diff size not bounded (adapter.go:158-161) — GetPullRequestDiff is called without any size guard. For very large PRs, the full diff is fetched and held in memory. Not an immediate correctness issue, but a potential DoS risk.
Pass-through methods lack error wrapping — GetPullRequestFiles, GetCommitStatuses, ListContents all return unwrapped errors. For consistency and debuggability, wrapping with context would be better. Pattern inconsistency is real but behavior is correct.

No new independent issues beyond the above (which overlap with prior bot findings).

Phase 2: Prior Review Verification

Verifying against latest bot reviews evaluated at b2eea502:

Finding	Reviewer	Status	Notes
[MINOR] `GetPullRequest` doesn't wrap error with context (adapter.go:40)	sonnet	❌ STILL PRESENT	Line 37: `return nil, err` — no `fmt.Errorf` wrapping
[MINOR] `PostReview` final `client.PostReview` error unwrapped (adapter.go:193)	sonnet	❌ STILL PRESENT	Line 182: `return nil, err` — no `fmt.Errorf` wrapping
[NIT] comment on `+++ b/` vs `+++ /dev/null` ordering slightly misleading	sonnet	✅ RESOLVED	position.go has clarifying comment explaining ordering is independent
[NIT] test comment in `TestAdapter_PostReview_WithComments_PositionTranslation`	sonnet	✅ RESOLVED	Comment and assertion are correct per sonnet's own analysis
[MINOR] `PostReview` fetches full PR diff without size limits (adapter.go:144)	security	❌ STILL PRESENT	No size guard added; diff fetch remains unbounded
[APPROVE, no new findings]	gpt	N/A	gpt found no issues at `b2eea502`

Assessment: ⚠️ Needs attention

Two MINOR findings from the latest sonnet review remain open: missing error wrapping on GetPullRequest and the final PostReview call. These are one-line fixes each (fmt.Errorf("get pull request: %w", err) and fmt.Errorf("post review: %w", err)). The security MINOR (unbounded diff fetch) also remains unaddressed. The implementation is functionally correct — no behavioral bugs found. Recommend addressing the two sonnet MINORs before merging; the security MINOR (diff size limit) can be deferred to a follow-up hardening issue at Aaron's discretion.

## Self-Review: PR #90 Self-review against b2eea502d0ae10ee4a21d5f9a66348094829bfef ### Phase 1: Independent Findings Reviewing the diff as a stranger would: 1. **`GetPullRequest` (adapter.go:36-37)** — Error returned unwrapped: `return nil, err`. No context added to identify this came from `GetPullRequest`. The pattern elsewhere in this file wraps errors (e.g. `fmt.Errorf("fetch diff for position translation: %w", err)`), so this is inconsistent. 2. **`PostReview` final error (adapter.go:181-183)** — Same issue: `return nil, err` without wrapping. If `a.client.PostReview` fails, the error message doesn't indicate it originated from the adapter's `PostReview` path. 3. **Diff size not bounded (adapter.go:158-161)** — `GetPullRequestDiff` is called without any size guard. For very large PRs, the full diff is fetched and held in memory. Not an immediate correctness issue, but a potential DoS risk. 4. **Pass-through methods lack error wrapping** — `GetPullRequestFiles`, `GetCommitStatuses`, `ListContents` all return unwrapped errors. For consistency and debuggability, wrapping with context would be better. Pattern inconsistency is real but behavior is correct. No new independent issues beyond the above (which overlap with prior bot findings). ### Phase 2: Prior Review Verification Verifying against latest bot reviews evaluated at b2eea502: | Finding | Reviewer | Status | Notes | |---------|----------|--------|-------| | [MINOR] `GetPullRequest` doesn't wrap error with context (adapter.go:40) | sonnet | ❌ STILL PRESENT | Line 37: `return nil, err` — no `fmt.Errorf` wrapping | | [MINOR] `PostReview` final `client.PostReview` error unwrapped (adapter.go:193) | sonnet | ❌ STILL PRESENT | Line 182: `return nil, err` — no `fmt.Errorf` wrapping | | [NIT] comment on `+++ b/` vs `+++ /dev/null` ordering slightly misleading | sonnet | ✅ RESOLVED | position.go has clarifying comment explaining ordering is independent | | [NIT] test comment in `TestAdapter_PostReview_WithComments_PositionTranslation` | sonnet | ✅ RESOLVED | Comment and assertion are correct per sonnet's own analysis | | [MINOR] `PostReview` fetches full PR diff without size limits (adapter.go:144) | security | ❌ STILL PRESENT | No size guard added; diff fetch remains unbounded | | [APPROVE, no new findings] | gpt | N/A | gpt found no issues at b2eea502 | ### Assessment: ⚠️ Needs attention Two MINOR findings from the latest sonnet review remain open: missing error wrapping on `GetPullRequest` and the final `PostReview` call. These are one-line fixes each (`fmt.Errorf("get pull request: %w", err)` and `fmt.Errorf("post review: %w", err)`). The security MINOR (unbounded diff fetch) also remains unaddressed. The implementation is functionally correct — no behavioral bugs found. Recommend addressing the two sonnet MINORs before merging; the security MINOR (diff size limit) can be deferred to a follow-up hardening issue at Aaron's discretion.

rodin removed the wip label 2026-05-12 21:17:13 +00:00

rodin removed their assignment 2026-05-12 21:26:26 +00:00

aweiker was assigned by rodin

2026-05-12 21:26:26 +00:00

rodin added the ready label 2026-05-12 21:26:26 +00:00

rodin removed the ready label 2026-05-12 21:30:00 +00:00

aweiker was unassigned by rodin

2026-05-12 21:30:00 +00:00

rodin self-assigned this 2026-05-12 21:30:00 +00:00

rodin added the wip label 2026-05-12 21:55:33 +00:00

rodin referenced this pull request

2026-05-12 21:56:45 +00:00

Harden PostReview against unbounded diff size #92

rodin added 1 commit 2026-05-12 21:57:01 +00:00

Wrap errors in GetPullRequest and PostReview for consistency

PR Ready Gate / clear-labels (pull_request) Successful in 2s

Details

CI / test (pull_request) Successful in 17s

Details

CI / review (anthropic--claude-4.6-sonnet, sonnet, SONNET_REVIEW_TOKEN) (pull_request) Successful in 33s

Details

CI / review (gpt-5, gpt, GPT_REVIEW_TOKEN) (pull_request) Successful in 1m27s

Details

CI / review (gpt-5, security, ., rodin/security-patterns, SECURITY_REVIEW.md, SECURITY_REVIEW_TOKEN) (pull_request) Successful in 1m35s

Details

d8270262d6

Add fmt.Errorf wrapping to the two remaining unwrapped error returns
in the adapter:
- GetPullRequest: 'get pull request: %w'
- PostReview (final client call): 'post review: %w'

This makes all error paths in the adapter consistent with the wrapping
pattern used by the diff-fetch and position-translation errors.

Addresses self-review findings #1 and #2 from b2eea502.

rodin commented

2026-05-12 21:57:07 +00:00

Addressed self-review findings from b2eea502:

Fixed (d827026):

GetPullRequest error now wrapped: fmt.Errorf("get pull request: %w", err)
PostReview final error now wrapped: fmt.Errorf("post review: %w", err)

Deferred:

Unbounded diff fetch in PostReview → filed as #92 (hardening concern, not a correctness bug in this PR)

All tests pass. No other unresolved findings from bot reviewers — the latest sonnet/gpt/security reviews at b2eea502 were all APPROVE with only the above items flagged.

Addressed self-review findings from b2eea502: **Fixed (d827026):** - `GetPullRequest` error now wrapped: `fmt.Errorf("get pull request: %w", err)` - `PostReview` final error now wrapped: `fmt.Errorf("post review: %w", err)` **Deferred:** - Unbounded diff fetch in `PostReview` → filed as #92 (hardening concern, not a correctness bug in this PR) All tests pass. No other unresolved findings from bot reviewers — the latest sonnet/gpt/security reviews at b2eea502 were all APPROVE with only the above items flagged.

rodin removed the wip label 2026-05-12 21:57:11 +00:00

sonnet-review-bot approved these changes 2026-05-12 21:57:51 +00:00

sonnet-review-bot left a comment

First-time contributor

Sonnet Review

Summary

Clean, well-structured adapter implementation that correctly follows Go patterns. The diff-position translation logic is sound, error handling is consistent with the project conventions, and the test coverage is thorough. CI passed.

Findings

#	Severity	File	Line	Finding
1	[NIT]	`gitea/position.go`	100	The comment says '+++ b/ is checked before +++ /dev/null — the two prefixes are non-overlapping... so ordering is independent' but then immediately says 'Checking the common case first for clarity.' The comment is slightly contradictory: if ordering is independent, the justification doesn't need the non-overlapping note. The comment could be simplified to just explain intent (common case first for readability).
2	[NIT]	`gitea/position.go`	75	The `maxPosition` method is a one-liner that just indexes the map and is only called from `Translate`. It adds a layer of indirection without adding clarity or encapsulation. Inlining `pm.maxPositions[file]` directly in `Translate` would be marginally clearer, though this is entirely a style preference.
3	[NIT]	`gitea/adapter_test.go`	184	The comment `// Wait: first hunk has pos 1(@@ hdr), 2(" line1"), 3("-old"), 4("+new")` is a left-over from the author working through the arithmetic. The 'Wait:' prefix makes it look like a mistake in the comment itself rather than an explanatory note. It should be rephrased or removed.
4	[NIT]	`gitea/adapter.go`	126	The section separator comments (`// --- PRReader ---`, `// --- FileReader ---`, `// --- Reviewer ---`, `// --- Identity ---`) are not idiomatic Go. The standard approach is to let the godoc comments on each method group naturally, or split into multiple files by concern. That said, this is a minor style issue.

Recommendation

APPROVE — Approve. The implementation is correct, well-tested, and follows the documented patterns: compile-time interface assertion, NewXxx constructor returning concrete type, proper error wrapping with fmt.Errorf+%w, table-driven tests with t.Run, and httptest for HTTP mocking. The diff-position translation handles all edge cases (deletions, new files, deleted files, binary files, multi-file diffs) and the adapter correctly separates Gitea-specific concerns from the vcs.Client contract. The findings above are all nits that do not block merging.

Review by sonnet

Evaluated against d8270262

# Sonnet Review ## Summary Clean, well-structured adapter implementation that correctly follows Go patterns. The diff-position translation logic is sound, error handling is consistent with the project conventions, and the test coverage is thorough. CI passed. ## Findings | # | Severity | File | Line | Finding | |---|----------|------|------|--------| | 1 | [NIT] | `gitea/position.go` | 100 | The comment says '+++ b/ is checked before +++ /dev/null — the two prefixes are non-overlapping... so ordering is independent' but then immediately says 'Checking the common case first for clarity.' The comment is slightly contradictory: if ordering is independent, the justification doesn't need the non-overlapping note. The comment could be simplified to just explain intent (common case first for readability). | | 2 | [NIT] | `gitea/position.go` | 75 | The `maxPosition` method is a one-liner that just indexes the map and is only called from `Translate`. It adds a layer of indirection without adding clarity or encapsulation. Inlining `pm.maxPositions[file]` directly in `Translate` would be marginally clearer, though this is entirely a style preference. | | 3 | [NIT] | `gitea/adapter_test.go` | 184 | The comment `// Wait: first hunk has pos 1(@@ hdr), 2(" line1"), 3("-old"), 4("+new")` is a left-over from the author working through the arithmetic. The 'Wait:' prefix makes it look like a mistake in the comment itself rather than an explanatory note. It should be rephrased or removed. | | 4 | [NIT] | `gitea/adapter.go` | 126 | The section separator comments (`// --- PRReader ---`, `// --- FileReader ---`, `// --- Reviewer ---`, `// --- Identity ---`) are not idiomatic Go. The standard approach is to let the godoc comments on each method group naturally, or split into multiple files by concern. That said, this is a minor style issue. | ## Recommendation **APPROVE** — Approve. The implementation is correct, well-tested, and follows the documented patterns: compile-time interface assertion, NewXxx constructor returning concrete type, proper error wrapping with fmt.Errorf+%w, table-driven tests with t.Run, and httptest for HTTP mocking. The diff-position translation handles all edge cases (deletions, new files, deleted files, binary files, multi-file diffs) and the adapter correctly separates Gitea-specific concerns from the vcs.Client contract. The findings above are all nits that do not block merging. --- *Review by sonnet*  --- *Evaluated against d8270262*

gitea/adapter.go

						
				@@ -0,0 +123,4 @@

					return result, nil

				}

				// --- Reviewer ---

sonnet-review-bot commented

First-time contributor

[NIT] The section separator comments (// --- PRReader ---, // --- FileReader ---, // --- Reviewer ---, // --- Identity ---) are not idiomatic Go. The standard approach is to let the godoc comments on each method group naturally, or split into multiple files by concern. That said, this is a minor style issue.

**[NIT]** The section separator comments (`// --- PRReader ---`, `// --- FileReader ---`, `// --- Reviewer ---`, `// --- Identity ---`) are not idiomatic Go. The standard approach is to let the godoc comments on each method group naturally, or split into multiple files by concern. That said, this is a minor style issue.

gitea/adapter_test.go

						
				@@ -0,0 +181,4 @@

					for _, tt := range tests {

						t.Run(tt.name, func(t *testing.T) {

							var gotEvent string

							server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {

sonnet-review-bot commented

First-time contributor

[NIT] The comment // Wait: first hunk has pos 1(@@ hdr), 2(" line1"), 3("-old"), 4("+new") is a left-over from the author working through the arithmetic. The 'Wait:' prefix makes it look like a mistake in the comment itself rather than an explanatory note. It should be rephrased or removed.

**[NIT]** The comment `// Wait: first hunk has pos 1(@@ hdr), 2(" line1"), 3("-old"), 4("+new")` is a left-over from the author working through the arithmetic. The 'Wait:' prefix makes it look like a mistake in the comment itself rather than an explanatory note. It should be rephrased or removed.

gitea/position.go

						
				@@ -0,0 +72,4 @@

				//   - Deletion lines have a position but no new-file line number (stored as -1)

				func BuildPositionToLineMap(diff string) *PositionMap {

					pm := &PositionMap{

						files:        make(map[string]map[int]int),

sonnet-review-bot commented

First-time contributor

[NIT] The maxPosition method is a one-liner that just indexes the map and is only called from Translate. It adds a layer of indirection without adding clarity or encapsulation. Inlining pm.maxPositions[file] directly in Translate would be marginally clearer, though this is entirely a style preference.

**[NIT]** The `maxPosition` method is a one-liner that just indexes the map and is only called from `Translate`. It adds a layer of indirection without adding clarity or encapsulation. Inlining `pm.maxPositions[file]` directly in `Translate` would be marginally clearer, though this is entirely a style preference.

gitea/position.go

						
				@@ -0,0 +97,4 @@

						}

						// Deleted file: +++ /dev/null means the file is being deleted

						if strings.HasPrefix(line, "+++ /dev/null") {

sonnet-review-bot commented