Add gated Gitea PR review actions #15

Closed
opened 2026-07-01 11:16:05 -05:00 by jcwalker3 · 0 comments
Owner

Parent

Roadmap #10 — Task-scoped MCP execution profiles for LLM-operated Gitea workflows

Dependencies

Depends on:

  • authenticated-user identity lookup
  • execution profile model
  • PR author and reviewer eligibility checks

Scope

Add gated PR review actions:

  • comment review findings
  • request changes
  • approve PR

Safety requirements

Before any review mutation:

  • run authenticated-user lookup
  • run active profile lookup
  • verify PR author
  • verify reviewer eligibility
  • verify requested action is allowed by the active profile
  • fail closed if identity/profile/eligibility cannot be proven

Acceptance criteria

  • Review actions are gated by identity and eligibility.
  • Self-approval is blocked.
  • All review mutations are audit logged.
  • Tool output explains why an action was allowed or blocked.
  • Tokens and secrets are redacted.
  • Existing Gitea MCP behavior is not broken.

Non-goals

  • Do not add merge behavior in this issue unless separately approved.
  • Do not add Jenkins/Ops/deploy behavior.
  • Do not bypass Gitea branch protections.

Proposed labels

mcp · gitea · review · mutating · safety-gates

## Parent Roadmap #10 — Task-scoped MCP execution profiles for LLM-operated Gitea workflows ## Dependencies Depends on: * authenticated-user identity lookup * execution profile model * PR author and reviewer eligibility checks ## Scope Add gated PR review actions: * comment review findings * request changes * approve PR ## Safety requirements Before any review mutation: * run authenticated-user lookup * run active profile lookup * verify PR author * verify reviewer eligibility * verify requested action is allowed by the active profile * fail closed if identity/profile/eligibility cannot be proven ## Acceptance criteria * Review actions are gated by identity and eligibility. * Self-approval is blocked. * All review mutations are audit logged. * Tool output explains why an action was allowed or blocked. * Tokens and secrets are redacted. * Existing Gitea MCP behavior is not broken. ## Non-goals * Do not add merge behavior in this issue unless separately approved. * Do not add Jenkins/Ops/deploy behavior. * Do not bypass Gitea branch protections. ## Proposed labels `mcp` · `gitea` · `review` · `mutating` · `safety-gates`
jcwalker3 added the mcpsecuritygiteamutating labels 2026-07-01 11:28:25 -05:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Scaled-Tech-Consulting/Gitea-Tools#15