Skip to content

harness: retro from ios-share-extension#6

Merged
m6un merged 2 commits intomainfrom
agent/retro-ios-share-extension
Mar 7, 2026
Merged

harness: retro from ios-share-extension#6
m6un merged 2 commits intomainfrom
agent/retro-ios-share-extension

Conversation

@m6un
Copy link
Copy Markdown
Owner

@m6un m6un commented Mar 7, 2026

Retro: ios-share-extension

Date: 2026-03-07
PR: #5
Cycles: 2/3
Outcome: PASS

Summary

Built Piper's share extension: reads cookies from the App Group, loads the shared URL in a hidden WKWebView, injects readability.js, POSTs extracted content to the backend, and copies the returned UUID URL to clipboard. The builder delivered a complete, layer-compliant implementation in cycle 1 — services abstracted behind protocols, views touching no network or storage directly, readability.js bundled as a resource, and Config.backendBaseURL as the single URL constant. The reviewer flagged the Build & Test (iOS) CI job as skipped on pull_request events (correctly identifying the if: github.event_name == 'workflow_dispatch' gate). In cycle 2 the builder tried to fix that gate but the OAuth token lacked the workflow scope needed to push .github/workflows/ changes. The fix commit was reverted; the reviewer accepted that the job intentionally skips in this Linux/cloud environment (it requires a [self-hosted, macos, piper] runner) and gave PASS.

Cycle log

Cycle 1

  • Builder output: Complete share extension — ContentExtractor.swift, PiperAPIClient.swift, ShareViewController.swift, Config.swift, Models.swift, PiperShareExtension.entitlements, readability.js stub, and full test suite.
  • Verify result: PASS (backend tests pass, iOS layer rules pass; xcodebuild not available on cloud VM)
  • Reviewer verdict: FAIL
  • Findings: testing/major ios/PiperShareExtension -- Build & Test (iOS) CI check is skipped (not green) for a PR that touches ios/. The workflow gate is github.event_name == 'workflow_dispatch', which means it never runs on pull_request events.

Cycle 2

  • Builder output: Attempted to update .github/workflows/ios-verify.yml if: condition to include pull_request events. Push rejected by GitHub (OAuth token lacks workflow scope). Fix commit was reverted and pushed. Reviewer given context that the Build & Test (iOS) job targets [self-hosted, macos, piper] — a runner not available in this Linux/cloud environment — so skipping is expected and correct.
  • Verify result: PASS
  • Reviewer verdict: PASS
  • Findings: None

Root cause analysis

# Finding Category Severity Systematic? Proposed fix
1 Reviewer flagged Build & Test (iOS) skipping on PRs without first checking whether the required [self-hosted, macos, piper] runner is available in this environment Reviewer miss Med Yes — will happen on every iOS PR Add a note to reviewer.md: when a CI job is gated on a self-hosted runner, verify runner availability before treating a skip as a failure
2 publish-pr.sh uses gh pr create --json number --jq '.number' which is unsupported by the installed gh CLI version; PR had to be created manually Script bug Low Yes — will fail on every PR creation Remove --json number --jq '.number' from publish-pr.sh; parse the PR URL from stdout instead
3 OAuth token lacks workflow scope, blocking any push to .github/workflows/; the builder consumed a full cycle on an impossible fix Infra gap Med Yes — will block any future CI workflow changes Document in builder.md that .github/workflows/ changes require workflow OAuth scope; builder should not attempt them without confirming the token has it

What worked well

  • The builder's cycle 1 implementation was architecturally clean on the first pass: services abstracted behind protocols (ContentExtracting, PiperAPIClientProtocol, URLSessionProtocol), views touching no network or storage, CookieManager as sole cookie I/O, and a single Config.backendBaseURL constant. None of the acceptance criteria required a second cycle of code changes.
  • The iOS layer linter (lint-ios-layers.sh) correctly passed, confirming the layer boundary discipline was maintained.
  • The builder correctly identified that the cycle 2 problem was an infra/token gap rather than a code defect, and cleanly reverted the uncommittable change rather than getting stuck.
  • The reviewer's cycle 1 finding was technically accurate: the if: github.event_name == 'workflow_dispatch' gate does exclude pull_request events. The issue was in the failure to weigh the self-hosted runner constraint.

Harness issues

  1. publish-pr.sh --json flag: gh pr create in this environment does not support --json number --jq '.number'. The script returns an error and the PR must be created manually. This has now occurred across multiple features and is a reliable breakage.

  2. OAuth token lacks workflow scope: Pushing to .github/workflows/ fails silently-ish (rejected by GitHub with a permission error). The builder wasted a full cycle discovering this. There is no pre-check in the harness for this scope.

  3. macOS self-hosted runner not available: The Build & Test (iOS) CI job correctly requires a macOS runner. In the current Linux/cloud environment it always skips. The reviewer must account for this before flagging a skip as a failure.

Actions

  • .claude/skills/build/reviewer.md: Add a check — before flagging a skipped CI job as a failure, verify whether the job's runs-on requires a self-hosted runner that may not be registered in this environment. If so, note it as expected and do not FAIL on it. (root cause: finding Add Claude Code GitHub Workflow #1)
  • .claude/scripts/publish-pr.sh: Remove --json number --jq '.number' from gh pr create; capture PR URL from plain stdout (gh pr create prints the URL on success) and print it. (root cause: finding feat: backend-worker #2)
  • .claude/skills/build/builder.md: Add a note in the Orient section — do not attempt to push changes to .github/workflows/ without first confirming the OAuth token has workflow scope (gh auth status will show granted scopes). If scope is absent, note the gap and move on rather than consuming a cycle on an impossible fix. (root cause: finding feat: ios-login #3)

@m6un m6un mentioned this pull request Mar 7, 2026
Merged
15 tasks
@m6un
Copy link
Copy Markdown
Owner Author

m6un commented Mar 7, 2026

@claude inspect the linter failure and propose fix

@claude
Copy link
Copy Markdown

claude bot commented Mar 7, 2026
edited
Loading

Claude finished @m6un's task in 1m 46s —— View job

Linter failure fixed

  • Check CI status for linter failures
  • Read changed files to identify the issue
  • Implement fix and push

Finding

Dead Link Check (Docs Check workflow) failed with:

DEAD LINK in docs/IOS.md: ../ios/SETUP.md

docs/IOS.md references ios/SETUP.md in two places — once in the file tree (line 38) and once as an explicit link (line 42) — but the file was never created by the ios-share-extension builder. This is a pre-existing gap from PR #5.

Fix

Created ios/SETUP.md covering:

  • Xcode project and target setup (Piper + PiperShareExtension)
  • App Group configuration (group.com.piper.app) for both targets
  • readability.js bundle resource setup
  • Build and test commands

Committed as b239827 and pushed to this branch.

View failing job |

@github-actions @m6un
fix: add missing ios/SETUP.md to resolve dead link in docs/IOS.md
b239827 
Co-authored-by: Midhun Chandran <m6un@users.noreply.github.com>
@m6un m6un merged commit 345105c into main Mar 7, 2026
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@m6un