docs: Jenkins read-only build status tools design (#72) #88
Reference in New Issue
Block a user
Delete Branch "docs/issue-72-jenkins-readonly-design"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Implements #72. Design documentation only — no implementation, no code changes, no Jenkins code in
mcp_server.py.Adds
docs/architecture/jenkins-readonly-build-status-design.md(alongside ADR-0001).What it covers (per #72 acceptance criteria)
jenkins_whoami,jenkins_list_jobs,jenkins_latest_build,jenkins_build_status,jenkins_get_build, optional approval-gatedjenkins_console_tail. AllGET-only.null+building →IN_PROGRESS), best-effort commit SHA. No raw payload passthrough.jenkins.console.readoperation.jenkins-mcpboundary per ADR-0001; token by reference (JENKINS_TOKEN_SOURCE_NAME); namespacedallowed_operations; fail closed on missing config; Jenkins credentials never enter the Gitea MCP runtime.Checks
py_compile mcp_server.py/manage_labels.py/gitea_auth.py— OKbash -n scripts/clear-provenance— OKgit diff --check— cleanpytest tests/ -q— 345 passedScope
One new Markdown file. Untouched: #86 (other LLM), #65/#66, PR #64/#63 release work, all code.
🤖 Generated with Claude Code
Reviewed PR #88. Checks passed: py_compile for mcp_server.py/manage_labels.py/gitea_auth.py, bash -n scripts/clear-provenance, full pytest suite, and git diff --check. Manual review confirms this is documentation/design only, read-only Phase 1 only, no Jenkins implementation code, credentials remain isolated from Gitea MCP, console tail behavior is bounded/redacted, mapping is deferred to #77, and triggers/deploys/rebuilds/parameterized launches are excluded.