Merge 26c105205c into 3cd73f9f5a

2025-12-22 21:09:58 +00:00 · 2025-12-02 14:48:15 -08:00
parent 3cd73f9f5a 26c105205c
commit 9252077e70
1 changed files with 28 additions and 4 deletions
--- a/.github/workflows/codex-update-lance-dependency.yml
+++ b/.github/workflows/codex-update-lance-dependency.yml
@@ -1,6 +1,9 @@
 name: Codex Update Lance Dependency

 on:
+  pull_request:
+    paths:
+      - '.github/workflows/codex-update-lance-dependency.yml'
  workflow_call:
    inputs:
      tag:
@@ -11,7 +14,8 @@ on:
    inputs:
      tag:
        description: "Tag name from Lance"
-        required: true
+        required: false
+        default: "v1.0.0-rc.1"
        type: string

 permissions:
@@ -25,7 +29,7 @@ jobs:
    steps:
      - name: Show inputs
        run: |
-          echo "tag = ${{ inputs.tag }}"
+          echo "tag = ${{ inputs.tag || 'v1.0.0-rc.1' }}"

      - name: Checkout Repo LanceDB
        uses: actions/checkout@v4
@@ -65,7 +69,7 @@ jobs:

      - name: Run Codex to update Lance dependency
        env:
-          TAG: ${{ inputs.tag }}
+          TAG: ${{ inputs.tag || 'v1.0.0-rc.1' }}
          GITHUB_TOKEN: ${{ secrets.ROBOT_TOKEN }}
          GH_TOKEN: ${{ secrets.ROBOT_TOKEN }}
          OPENAI_API_KEY: ${{ secrets.CODEX_TOKEN }}
@@ -99,9 +103,29 @@ jobs:
          printenv OPENAI_API_KEY | codex login --with-api-key
          codex --config shell_environment_policy.ignore_default_excludes=true exec --dangerously-bypass-approvals-and-sandbox "$(cat /tmp/codex-prompt.txt)"

+      - name: Debug token access
+        env:
+          GH_TOKEN: ${{ secrets.ROBOT_TOKEN }}
+        run: |
+          set -euo pipefail
+          echo "=== Checking authenticated user ==="
+          gh api user --jq '.login' || echo "Failed to get user info"
+
+          echo ""
+          echo "=== Listing repos in lancedb org that token can access ==="
+          gh repo list lancedb --limit 50 --json name,visibility --jq '.[] | "\(.name) (\(.visibility))"' || echo "Failed to list repos"
+
+          echo ""
+          echo "=== Checking if sophon repo exists and is accessible ==="
+          gh repo view lancedb/sophon --json name,visibility 2>&1 || echo "Cannot access lancedb/sophon"
+
+          echo ""
+          echo "=== Checking token scopes ==="
+          gh api -i user 2>&1 | grep -i "x-oauth-scopes" || echo "Could not determine token scopes"
+
      - name: Trigger sophon dependency update
        env:
-          TAG: ${{ inputs.tag }}
+          TAG: ${{ inputs.tag || 'v1.0.0-rc.1' }}
          GH_TOKEN: ${{ secrets.ROBOT_TOKEN }}
        run: |
          set -euo pipefail