d?d(Z;d@d)ZdCd-Z?dDd.Z@dEd/ZAdFd0ZBdGd1ZCdHd2aDdId3ZEe:e;dd4 dJd5ZFdKd6ZGe fe:e;dddde jd7 dLd8ZHd>dMd9ZIeJd:k(re jeIyy)Nu auto_merge_controller.py — Auto-merge controller (task-2444). Goal (회장 명시): "회장 승인 없이도 안전한 PR은 자동 merge되고, 위험한 PR은 GitHub ruleset과 controller 양쪽에서 차단된다." "봇은 ruleset을 우회하지 않는다. GitHub이 허용한 PR만 자동 처리한다." The controller polls open PRs targeting ``main`` and merges them only when **all** of the following GitHub-side preconditions hold: 1. PR ``base.ref == "main"`` 2. No ``memory/events/.cancelled`` marker 3. All 8 required check-runs are present and ``conclusion == "success"`` ({ci/guard, guard, cancel-kill-switch, qc-check, hidden-path-audit, lock-in-check, merge-safety-check, gemini-review-gate}) 4. ``mergeable_state`` is **not** in {blocked, behind, dirty, unstable} 5. ``gemini-review-gate`` conclusion is ``success`` (re-asserted) 6. Zero unresolved review threads (GraphQL ``reviewThreads.isResolved``) 7. PR is up-to-date with main (``mergeable_state != "behind"``) Only when **every** condition is satisfied do we invoke ``gh pr merge --auto --merge --delete-branch``. The controller never uses ``--admin``, never calls ``git push origin main``, and never tries to merge a PR whose ``mergeable_state`` is ``BLOCKED``. The controller is **idempotent and safe to run on a cron**: every cycle is protected by a process-wide ``FileLock``; main-HEAD is recorded in ``memory/logs/auto-merge-audit.jsonl`` before/after each merge so we can prove nothing was force-pushed. ) annotationsN) dataclassfield)Path)AnyCallableWORKSPACE_ROOT)FileLock LockTimeoutREPOzJonghyukJeon/dev_workspacememorycachezauto_merge_controller.locklogszauto-merge-audit.jsonlevents>ci/guardqc-check lock-in-checkhidden-path-auditcancel-kill-switchmerge-safety-checkguardgemini-review-gatezfrozenset[str]REQUIRED_CHECKS>dirtydraftbehindblockedunknownunstableBLOCKED_MERGE_STATESz--adminFORBIDDEN_FLAGS)gitpushauto_merge_controllerz1%(asctime)s [%(levelname)s] %(name)s: %(message)sc4eZdZUdZded<ded<dZded<y) SkipDecisionz?Why a PR was skipped this cycle (still open, no merge attempt).int pr_numberstrreasonN str | Nonelabel)__name__ __module__ __qualname____doc____annotations__r,N/home/jay/workspace/.worktrees/task-2444-dev2/scripts/auto_merge_controller.pyr&r&usIN KE:r3r&cdeZdZUdZded<ded<ded<ded<dZd ed <d Zd ed <dZd ed<y) MergeDecisionzBA PR cleared all gates and the controller invoked ``gh pr merge``.r'r(r) head_branchhead_shamain_head_beforeNr+main_head_afterFboolmerged merged_at)r-r.r/r0r1r:r<r=r2r3r4r6r6~s9LNM"&OZ&FD Iz r3r6ceZdZUdZded<ded<dZded<dZd ed <ee Z d ed <ee Z ded<ee Z ded<ee Z ded<y) CycleResultz9Result of one controller cycle. Useful for tests + audit.r)repofloat started_atNz float | None finished_atr+main_head_before_cycle)default_factoryzlist[SkipDecision]skippedzlist[MergeDecision]r<z list[int]cancelled_closed list[str]errors) r-r.r/r0r1rCrDrlistrFr<rGrIr2r3r4r?r?sdC I $K$)-J-"'"=G ="'"=F ="'"=i=d3FI3r3r?cL|Dcgc] }|tvs |}}|rtd|t|dk\ri|dtdk(rY|dtdk(rIdj |}t j d|st j d|r tdy y y y cc}w) z:Hard-block dangerous commands BEFORE subprocess execution.z*[FORBIDDEN] forbidden flag(s) in command: r z\borigin\s+main\bz \bHEAD:main\bz.[FORBIDDEN] direct push to main is not allowedN)r! RuntimeErrorlenFORBIDDEN_GIT_PUSHjoinresearch)cmdfbadjoineds r4_enforce_forbiddenrYs 2Q/11 2C 2 GuMNN 3x1}Q#5a#88SVGYZ[G\=\# 99)6 2bii@PRX6YOP P7Z>]8} 3s B!B!T)checkcapturec Bt|tjddj|t j ||dd}|rS|j dk7rDtd|j ddj|d |jd |j|S) z>Run a subprocess with the forbidden-flag guard always engaged.z run_cmd: %srNTF)capture_outputtextrZrzcommand failed (z): z stdout=z stderr=) rYLOGGERdebugrR subprocessrun returncoderOstdoutstderr)rUrZr[procs r4run_cmdrgss LL . >>    D  A%t/s388C=/Bkk])DKK= :   Kr3GET)methodcddd||g}t|d}|jjsytj|jS)z.Call ``gh api `` and return parsed JSON.ghapiz-XTrZN)rgrdstripjsonloads)pathrirUrfs r4gh_apirrsD fd +C 3d #D ;;    ::dkk ""r3cddddd|g}|xsijD]\}}|jd|d|gt|d }|jj rt j |jSd S) zACall ``gh api graphql`` for richer queries (review threads etc.).rkrlgraphqlz-fzquery=z-F=TrmN)itemsextendrgrdrnrorp)query variablesrUkvrfs r4gh_api_graphqlr|s  46%)9 :Cb'')'1 DQCq*%&' 3d #D&*kk&7&7&94::dkk "CtCr3c0td|d}|ddS)z@Return the current HEAD sha of ``main`` per the GitHub REST API./repos/z/branches/maincommitsharr)r@datas r4 get_main_headrs$ GD60 1D >%  r3extract|}tjjddt jt j dt j |||d}|r|j|tjd5}|jtj|ddzddd|S#1swY|SxYw) z9Append a main-HEAD audit entry. Returns the recorded sha.T)parentsexist_okz%Y-%m-%dT%H:%M:%SZ) timestampisostager@ main_heada) sort_keys N) r AUDIT_LOGparentmkdirtimestrftimegmtimeupdateopenwriterodumps)rr@rrentryrVs r4record_main_headrs  C 4$7YY[}}14;;=A  E  U  :  5D1D89: J: Js *C  Cc`tjd|xsd}|r|jdSdS)zEExtract ``task-N`` from a head branch (``task/task-2444-dev2`` etc.).ztask-\d+rN)rSrTgroup)branchms r4task_id_from_branchrs+ +v|,A1771:$$r3ct|dz S)Nz .cancelled) EVENTS_DIR)task_ids r4cancelled_marker_pathrs 7):. ..r3ci}|xsgD]0}|jd}|tvr|jd||<2tt|jz }|j Dchc] \}}|dk7s |}}}||fScc}}w)zReturn (missing, non_success) for the 8 required checks. A check is ``non_success`` if it appears with conclusion != ``success`` (or if its conclusion is None, i.e. still in progress). name conclusionsuccess)getrsetkeysrv) check_runspresent_latestcrrmissingr non_successs r4required_check_staters -/NB4vvf~  &  "vvl3t4/"^%8%8%::G%3%9%9%;!zzY?VK K s / B=Bc|sy|jdijdijdijdijdg}td|DS)z(True if any review thread is unresolved.Fr repository pullRequest reviewThreadsnodesc3BK|]}|jdd yw) isResolvedTNr).0ns r4 z)has_unresolved_threads..s<155t,,|d}|d}|jdixsi}|jdd}|jdd}|jdxsijdd} | d k7rt|d | d St|} | r|| rt|d | d dS|d|d|d} t| jdg\} } | s| rt d| jdgDd}||dk7r d}d|d }nE| r| rd}dt | dt | }n$| rd}dt | d}nd}dt | }t|||S|d|d|}|jdxsdj }|tvrt|d|dSt d| jdgDd}|dk7rt|d|d dSd }|jd!d"\}}|||||d#}t|rt|d$dSy)%u,Return a SkipDecision (with reason/label) or None if PR is mergeable. Pure with respect to side effects — callers handle close/label/merge. Dependency-injected ``api`` / ``graphql`` / ``cancelled_marker_exists`` keep this fully testable without touching the network or filesystem. Nc4t|jSNrexiststids r4zevaluate_pr..s.CC.H.O.O.Qr3rrrrrbasemainz base.ref=z (not main)zcancelled marker present ())r,r~z /commits/z /check-runsrc3fK|])}|jddk(r|jd+ywrrrNrrrs r4rzevaluate_pr..s2 66&>%99|$ /1rzgemini-blockedz!gemini-review-gate not success (=zauto-merge-blockedzmissing=z non_success=z (in_progress or not started)z non_success=rmergeable_statezmergeable_state=c3fK|])}|jddk(r|jd+ywrrrs r4rzevaluate_pr..s2 vvf~!55 FF<  rz query($owner:String!,$name:String!,$number:Int!){ repository(owner:$owner,name:$name){ pullRequest(number:$number){ reviewThreads(first:100){ nodes { isResolved } } } } } /rM)ownerrrzunresolved conversations) rr&rrnextsortedlowerr splitr)rr@rlrtrrrrrbase_refr cr_payloadrr gemini_stater,r*pr_fullstaterxrrthreadss r4 evaluate_prrzs&"Q \F 66&"  #D XXeR F ((5" Cv$"))%4H6Fi|;$GHH"&)G*73F&@ $KSWXXwtfIcU+>?J/ |R0PQG[+ $..r:      # (A$E88HJF (Ew0 f[>Q=RSF Ew00MNF(E#F;$7#89FFF%88GD612G [[* + 1r 8 8 :E $$F&6ui$@H\]]  nn\26 Ly  / /?q A"   E**S!$KE4eudfMNGg&F$>FZ[[ r3c(td|dxsgS)Nr~z/pulls?state=open&base=mainrr@s r4 list_open_prsrs GD6!<= > D"Dr3)rlrtlist_prs safe_merge_fn head_recorderrnowc |xst}|xst}|xsfd}t|} |d|_ |} | D]} | d} | jdxsijd d } t| }|r6|xsd |r) t| |jj | q t| |||}|ttjd|j|j |j"r!t%|j|j"|j&j || d} |d| | |d d}t)| |d |d|} || }|j*dk7rF|j j d| d|j*d|j,j/ |d| d| i}||_ t5| |d }t7|d|_|d |_|j8j |||_|S#t$r)} |j j d| Yd} ~ .d} ~ wwxYw#t$r6} |j j d| ||_|cYd} ~ Sd} ~ wwxYw#t$r,} |j j d | d | Yd} ~ -d} ~ wwxYw#t$r,} |j j d| d | Yd} ~ d} ~ wwxYw#t$r.} |j j d| d | d }Yd} ~ d} ~ wwxYw#t0$r,} |j j d| d | Yd} ~ Gd} ~ wwxYw#t$r,} |j j d| d | Yd} ~ d} ~ wwxYw#t$r,} |j j d!| d | Yd} ~ d} ~ wwxYw)"z2Run one full cycle. Dependency-injected for tests.ct|fi|Sr)r)rkwr@s r4rz"process_open_prs..s:J5RV:]Z\:]r3)r@rBz before-cyclezhead-record before-cycle: Nzlist_open_prs: rrrrc4t|jSrrrs r4rz"process_open_prs.. s@UVY@Z@a@a@cr3zclose cancelled #z: )r@rlrtrz evaluate #u[skip] PR #%d — %szbefore-merge-pr-)rrrzhead-record before-merge #r)r(r7r8r9rz safe_merge #z rc=z stderr=zsafe_merge guarded #zafter-merge-pr-rzhead-record after-merge #r<r=z post_check #)rrr?rD ExceptionrIappendrCrrrrGrr_rr(r*r,rrFr6rcrernrOr:rr;r<r=)r@rlrtrrrrrresultrprsrrrrdecisionrbeforemerge_decisionrfafterpcs` r4process_open_prsrs (=H!/ZM!^&]M dsu 5FA(5n(E%tn J-H&&.&B++E26%f- d/d4cfmn J#B-''..v6  "(? H   KK.0B0BHOO T~~h00(..$G NN ! !( + &z ""6(+&DQVK3XF'U %[#    .D!# $$"6($t.?x HYHYH[G\] N!!&*4.E.3N * AFDK6B$(H$6N !')+N $  ^,UJ-XF Mo A 9#?@@A  se45 U  J $$'83%%HII J  MM :fXRu!= >  "  MM #=fXRu!M NF "  MM #7xr#!G H   N MM #+J/)J4/J47 K,!K''K,/ L$8!LL$' M0#MM! N*!NN O"!O  O P!PPc tjd}|jdtd|jdtdd |jd d d |jdd |j |}|j r#tjtj|jrdd}|a tt|j5t!|j"}dddtj)dt+j,t+|j.t+|j0t+|j2|j2r(|j2D]}tj5d|yy#1swYxYw#t$$r }tj'd|Yd}~yd}~wwxYw)Nz!Auto-merge controller (task-2444)) descriptionrzGitHub repo (owner/name))defaulthelpz--lock-timeoutg$@z'Seconds to wait for the controller lock)typerrz --dry-run store_truez9Evaluate PRs but do not perform merge/close/label actions)actionrz --verbose)rcbtjd||tjgdddS)Nz&[dry-run] would merge PR #%d (repo=%s)rr)argsrcrdre)r_rraCompletedProcess)rr@s r4 _no_mergezmain.._no_mergeqs+ KK@&$ O..B1RXZ[ [r3)timeoutrzcontroller already running: %sru:cycle done — merged=%d skipped=%d cancelled=%d errors=%dz - %srMrr'r@r)returnsubprocess.CompletedProcess)argparseArgumentParser add_argument REPO_DEFAULTrA parse_argsverboser_setLevelloggingDEBUGdry_runrr LOCK_PATH lock_timeoutrr@r rrrPr<rFrGrIerror)argvparserrrrrerrs r4rrZs  $ $1T UF ,=WX   6    H   L9   T "D || & || \  i):): ; 6%4995F 6  KKD FMM FNN F # #$ FMM }}== (C LL3 ' ( # 6 6 7=s0F"F4F"FF"" G +GG __main__)rUrHrNone)rUrHrZr;r[r;rr)rqr)rir)rrr)rxr)rydict[str, Any] | Nonerr)r@r)rr))rr)r@r)rr0rr))rr)rr+)rr)rr)rlist[dict[str, Any]]rztuple[set[str], set[str]])rr0rr;)rr'r,r)r@r)rr/)rdict[str, Any]r@r)rr/r)rr'rr)r@r)rr2) rr2r@r)rlCallable[[str], Any]rtCallable[..., Any]rCallable[[str], bool] | NonerzSkipDecision | None)r@r)rr1)r@r)rlr3rtr4rz,Callable[[str], list[dict[str, Any]]] | Nonerz8Callable[[int, str], subprocess.CompletedProcess] | NonerzCallable[..., str] | Nonerr5rzCallable[[], float]rr?)r+zlist[str] | Nonerr')Lr0 __future__rrror%osrSrasysr dataclassesrrpathlibrtypingrr__file__resolver_HEREenvironrr) _WORKSPACErqinsertauto_merge_lockr r r!r(rr frozensetrr1r r!rQ getLoggerr_handlers StreamHandlerrdhandler setFormatter Formatter addHandlerr$INFOr&r6r?rYrgrrr|rrrrrrrrrrrrrrr-exitr2r3r4rMs@#   ( X '' "**..!13u||3DE F N N P z?#(("HHOOAs:'u:SXXHHOOAs5z"1 zz~~f&BC  !G +.J J  !F *-E E ( "X - "+ - # (12(n#,YK"88$   2 3 #g##CJJ/G MN g OOGLL!    ! !  !  4 4  4& Q.24$(-#D! OS.% / , =&K(*%(:!'"0<@ bb b  b  b : bbTE j!'"0=ANR/3<@#yyj j j j ; j L j-j:j jjd/ d z CHHTVr3