@misterhuydo/sentinel 1.4.67 → 1.4.68

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@misterhuydo/sentinel",
-  "version": "1.4.67",
+  "version": "1.4.68",
   "description": "Sentinel — Autonomous DevOps Agent installer and manager",
   "bin": {
     "sentinel": "./bin/sentinel.js"

package/python/sentinel/sentinel_boss.py

@@ -985,6 +985,11 @@ _TOOLS = [
                     "description": "Optional 8-char fingerprint to target a specific fix PR. "
                                    "If omitted, merges the most recent open PR for the repo.",
                 },
+                "pr_number": {
+                    "type": "integer",
+                    "description": "Merge a specific PR by number (e.g. a Renovate PR). "
+                                   "When set, repo_name is still required but fingerprint is ignored.",
+                },
             },
             "required": ["repo_name"],
         },
@@ -1008,6 +1013,30 @@ _TOOLS = [
             "required": ["tool_name"],
         },
     },
+    {
+        "name": "list_renovate_prs",
+        "description": (
+            "List all open Renovate bot pull requests across all managed repos. "
+            "Shows package name, version change, Renovate confidence, CI status, age, and merge-readiness. "
+            "Use before deciding which Renovate PRs to merge. "
+            "e.g. 'show renovate PRs', 'what dependency upgrades are pending?', "
+            "'list open renovate pull requests', 'any renovate PRs ready to merge?'"
+        ),
+        "input_schema": {
+            "type": "object",
+            "properties": {
+                "repo_name": {
+                    "type": "string",
+                    "description": "Filter to a specific repo. Omit to scan all managed repos.",
+                },
+                "ready_only": {
+                    "type": "boolean",
+                    "description": "If true, only show PRs where CI passes and there are no conflicts.",
+                    "default": False,
+                },
+            },
+        },
+    },
     {
         "name": "manage_release",
         "description": (
@@ -2597,6 +2626,120 @@ async def _run_tool(name: str, inputs: dict, cfg_loader, store, slack_client=Non
             return json.dumps({"error": f"Install timed out for '{tool_name}'"})
 
 
+
+    if name == "list_renovate_prs":
+        import requests as _req
+        from datetime import datetime, timezone
+
+        github_token = cfg_loader.sentinel.github_token
+        if not github_token:
+            return json.dumps({"error": "GITHUB_TOKEN not configured — cannot query GitHub API"})
+
+        filter_repo = inputs.get("repo_name", "").strip()
+        ready_only  = bool(inputs.get("ready_only", False))
+        headers = {
+            "Authorization": f"Bearer {github_token}",
+            "Accept": "application/vnd.github+json",
+        }
+
+        def _owner_repo_from_url(url):
+            if url.startswith("git@"):
+                return url.split(":")[-1].removesuffix(".git")
+            return "/".join(url.rstrip("/").split("/")[-2:]).removesuffix(".git")
+
+        def _ci_status(owner_repo, sha):
+            r = _req.get(
+                f"https://api.github.com/repos/{owner_repo}/commits/{sha}/check-runs",
+                headers=headers, params={"per_page": 20}, timeout=10,
+            )
+            if r.status_code != 200:
+                return "unknown"
+            runs = r.json().get("check_runs", [])
+            if not runs:
+                return "no checks"
+            statuses = {run["conclusion"] for run in runs if run["status"] == "completed"}
+            if "failure" in statuses or "cancelled" in statuses:
+                return "failing"
+            if all(s == "success" for s in statuses) and len(statuses) > 0:
+                return "passing"
+            return "pending"
+
+        def _parse_renovate_body(body):
+            """Extract package change table and confidence from Renovate PR body."""
+            if not body:
+                return [], "unknown"
+            # Confidence line: "| ... | Confidence |" table header, data follows
+            conf = "unknown"
+            conf_m = __import__("re").search(r"\| *(low|moderate|high|neutral|very high) *\|", body, __import__("re").IGNORECASE)
+            if conf_m:
+                conf = conf_m.group(1).lower()
+            # Package table rows: | package | X.Y → A.B |
+            changes = __import__("re").findall(r"\[([^\]]+)\].*?(\d+[\.\d]*)\s*[→\-]+\s*(\d+[\.\d]*)", body)
+            pkgs = [{"package": p, "from": f, "to": t} for p, f, t in changes[:5]]
+            return pkgs, conf
+
+        all_prs = []
+        repos_to_scan = {
+            name: repo for name, repo in cfg_loader.repos.items()
+            if (not filter_repo) or (filter_repo.lower() in name.lower())
+        }
+
+        for repo_name_k, repo in repos_to_scan.items():
+            if not repo.repo_url:
+                continue
+            owner_repo = _owner_repo_from_url(repo.repo_url)
+            try:
+                r = _req.get(
+                    f"https://api.github.com/repos/{owner_repo}/pulls",
+                    headers=headers,
+                    params={"state": "open", "per_page": 50},
+                    timeout=15,
+                )
+                if r.status_code != 200:
+                    continue
+                for pr in r.json():
+                    labels = [l["name"] for l in pr.get("labels", [])]
+                    if "renovate" not in labels:
+                        continue
+                    sha = pr["head"]["sha"]
+                    ci = _ci_status(owner_repo, sha)
+                    mergeable = pr.get("mergeable")
+                    conflict = (mergeable is False)
+                    pkgs, conf = _parse_renovate_body(pr.get("body", ""))
+                    created = pr.get("created_at", "")
+                    age_days = 0
+                    if created:
+                        try:
+                            dt = datetime.fromisoformat(created.replace("Z", "+00:00"))
+                            age_days = (datetime.now(timezone.utc) - dt).days
+                        except Exception:
+                            pass
+                    ready = (ci == "passing" and not conflict)
+                    if ready_only and not ready:
+                        continue
+                    all_prs.append({
+                        "repo": repo_name_k,
+                        "pr_number": pr["number"],
+                        "title": pr["title"],
+                        "url": pr["html_url"],
+                        "packages": pkgs,
+                        "confidence": conf,
+                        "ci": ci,
+                        "conflict": conflict,
+                        "age_days": age_days,
+                        "ready_to_merge": ready,
+                    })
+            except Exception as exc:
+                logger.warning("list_renovate_prs: error scanning %s: %s", repo_name_k, exc)
+
+        all_prs.sort(key=lambda p: (0 if p["ready_to_merge"] else 1, p["repo"]))
+        return json.dumps({
+            "total": len(all_prs),
+            "ready_count": sum(1 for p in all_prs if p["ready_to_merge"]),
+            "prs": all_prs,
+            "note": "Use merge_pr with repo_name + pr_number to merge a specific PR." if all_prs else "No open Renovate PRs found.",
+        })
+
     if name == "manage_release":
         from .dependency_manager import plan_cascade, execute_cascade, get_artifact_id, get_release_version
         from .cicd_trigger import trigger as cicd_trigger, _trigger_jenkins, _trigger_jenkins_release