Skip to content

feat: sync CLI with dashboard@v1.0.3#31

Open
cursor[bot] wants to merge 2 commits into
mainfrom
cursor/cli-dashboard-sync-d348
Open

feat: sync CLI with dashboard@v1.0.3#31
cursor[bot] wants to merge 2 commits into
mainfrom
cursor/cli-dashboard-sync-d348

Conversation

@cursor

@cursor cursor Bot commented May 31, 2026
edited by blacksmith-sh Bot
Loading

Copy link
Copy Markdown
Contributor

Upstream

  • Dashboard release: v1.0.3
  • SHA: 6ac15f95d097b802a6c9b09865b647c9c2c214cd

Routes added (12)

  • GET .well-known.openid-configuration.api.auth
  • POST api.account.set-password
  • PATCH api.oauth-clients.:clientId.metadata
  • GET api.oauth-clients.:clientId.scope-tiers
  • GET api.oauth-clients.authorized
  • DELETE api.oauth-clients.authorized.:clientId
  • POST api.privacy-requests
  • GET api.projects
  • POST api.projects.:id.slack.setup
  • POST api.signup.abandon
  • GET api.slack.features
  • GET .well-known.oauth-authorization-server.api.auth

Routes removed (3)

  • POST api.otp.email.send
  • POST api.otp.email.verify
  • GET api.projects (schema-only rename; new flat route added above)

No CLI code referenced the removed OTP routes (signup/email verification is dashboard-only), so no command or DTO updates were required.

Routes changed

(none)

Snapshot changes

(none)

New runtime dependencies

(none)

Verification

bun run check (typecheck + 33 tests + build) is green.

Open in Web View Automation 

View with Codesmith Autofix with Codesmith
Need help on this PR? Tag @codesmith with what you need. Autofix is disabled.

@cursoragent @lcandy2
feat: sync CLI with dashboard@v1.0.3
2a7e53d 
Sync API types from photon-hq/dashboard@v1.0.3 (6ac15f9).

Added routes (12):
- .well-known.openid-configuration.api.auth (GET)
- api.account.set-password (POST)
- api.oauth-clients.:clientId.metadata (PATCH)
- api.oauth-clients.:clientId.scope-tiers (GET)
- api.oauth-clients.authorized (GET)
- api.oauth-clients.authorized.:clientId (DELETE)
- api.privacy-requests (POST)
- api.projects (GET)
- api.projects.:id.slack.setup (POST)
- api.signup.abandon (POST)
- api.slack.features (GET)
- well-known.oauth-authorization-server.api.auth (GET)

Removed routes (3):
- api.otp.email.send (POST)
- api.otp.email.verify (POST)
- api.projects (GET, schema rename)

No CLI code referenced the removed OTP routes (signup flow is dashboard-only).
bun run check is green; no command or DTO changes needed.

Co-authored-by: citron <lcandy2@users.noreply.github.com>
@lcandy2 citron (lcandy2) mentioned this pull request May 31, 2026
Merged
citron (lcandy2) added a commit that referenced this pull request May 31, 2026
@lcandy2
fix(ci): allow bot actors in claude-code-action (review never ran on …
ae27fa2 
…real agent PRs) (#32)

claude-code-action@v1 refuses bot-initiated workflows by default:
"Workflow initiated by non-human actor: cursor (type: Bot)."

Every genuine agent-flow event is bot-initiated — cursor[bot] opens/
pushes the sync PR, coderabbitai[bot]/copilot post reviews — so the
review step failed on PR #31 (and would on every future sync PR). The
earlier "successful" run on PR #26 only passed because a human pushed
that commit, masking the gap.

The job-level `if:` already restricts which bots/events reach the
action, so `allowed_bots: "*"` is safe and avoids double-gating.
@github-actions github-actions Bot marked this pull request as ready for review May 31, 2026 15:11
@github-actions github-actions Bot added agent-review:approved Reviewed by CLI Agent PR Review & Fix automation agent-flow PR generated by agent flow pipeline labels May 31, 2026
@github-actions

github-actions Bot commented May 31, 2026

Copy link
Copy Markdown

Agent PR Review

Scenario: C — re-review after synchronize event (empty re-trigger commit af17bf2)
Verdict: ✅ Approve

What's right

  • Only types/api.d.ts (vendored) and UPSTREAM_DIFF.md changed — exactly what bun run sync:api produces.
  • Removed routes (otp.email.send/verify, schema-only api.projects rename) have zero references under src/ or tests/grep -rE "(otp\.email|email\.send|email\.verify)" src/ tests/ is empty.
  • The new flat api.projects GET route is already what src/commands/projects.ts calls (api.api.projects.get()), so the schema rename is a no-op for the CLI.
  • No package.json / bun.lock / .github/workflows/ / scripts/agent-flow/ changes. No forbidden deps.
  • bun install --frozen-lockfile && bun run check clean locally: tsc passes, 33/33 tests pass, build emits dist/photon.js.
  • PR body honestly accounts for snapshot changes (none), new deps (none), and acknowledges the removed routes weren't wired up.
  • One PR = one upstream bump (dashboard v1.0.3, SHA 6ac15f9).

Concerns

  • None.

Deferred (acknowledged in PR body)

  • 12 new routes (oauth-clients authorized list/delete/metadata/scope-tiers, account.set-password, signup.abandon, privacy-requests, projects/:id/slack/setup, slack/features, two .well-known endpoints) are typed but not yet surfaced as CLI commands. Appropriate — none are part of the existing CLI surface, and adding them would violate "one PR = one upstream bump."

Final note

Re-trigger commit af17bf2 is an empty commit; the substantive content is unchanged from 2a7e53d. Marked ready and approved.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

agent-flow PR generated by agent flow pipeline agent-review:approved Reviewed by CLI Agent PR Review & Fix automation

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cursoragent @lcandy2