Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Add GitHub Action to enforce peer review on pull requests #4699

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
DonnieBLT merged 6 commits into from
Nov 16, 2025
Merged

Add GitHub Action to enforce peer review on pull requests #4699

Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
f9963d6
Initial plan
Copilot Nov 1, 2025
8ad4979
Add peer review check GitHub Action workflow
Copilot Nov 1, 2025
d2f3b62
Improve peer review check with better validation and error handling
Copilot Nov 1, 2025
e61c544
Refactor peer review check for better maintainability and robustness
Copilot Nov 1, 2025
d458887
Merge branch 'main' into copilot/add-peer-review-check-action
DonnieBLT Nov 15, 2025
524bc8b
Exempt DonnieBLT, dependabot, and copilot from peer review check
Copilot Nov 15, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
135 changes: 135 additions & 0 deletions .github/workflows/check-peer-review.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,135 @@
name: Check Peer Review

on:
pull_request:
types:
- opened
- synchronize
- reopened
pull_request_review:
types:
- submitted
- dismissed

permissions:
pull-requests: write
contents: read
issues: write

jobs:
check_peer_review:
runs-on: ubuntu-latest
if: >
github.actor != 'dependabot[bot]'
&& github.actor != 'dependabot-preview[bot]'
&& github.actor != 'dependabot'
&& github.actor != 'DonnieBLT'
&& github.actor != 'Copilot'
&& github.actor != 'copilot-swe-agent[bot]'
steps:
- name: Check for Peer Review
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
# Get PR number (available for both pull_request and pull_request_review events)
PR_NUMBER="${{ github.event.pull_request.number }}"

# Parse repository owner and name
REPO_FULL="${{ github.repository }}"
REPO_OWNER="${REPO_FULL%/*}"
REPO_NAME="${REPO_FULL#*/}"

echo "Checking peer review for PR #$PR_NUMBER in $REPO_OWNER/$REPO_NAME"

# Get PR details to find the author
PR_RESPONSE=$(curl -s -X GET \
-H "Authorization: token $GITHUB_TOKEN" \
-H "Accept: application/vnd.github.v3+json" \
"https://api.github.com/repos/$REPO_OWNER/$REPO_NAME/pulls/$PR_NUMBER")

PR_AUTHOR=$(echo "$PR_RESPONSE" | jq -r '.user.login')
echo "PR Author: $PR_AUTHOR"

# Get all reviews for the PR
REVIEWS_RESPONSE=$(curl -s -X GET \
-H "Authorization: token $GITHUB_TOKEN" \
-H "Accept: application/vnd.github.v3+json" \
"https://api.github.com/repos/$REPO_OWNER/$REPO_NAME/pulls/$PR_NUMBER/reviews")

# Check if the API request was successful
if [[ "$REVIEWS_RESPONSE" == *"message"*"Not Found"* ]] || [[ "$REVIEWS_RESPONSE" == *"Resource not accessible by integration"* ]]; then
echo "Error: Could not fetch PR reviews. Response: $REVIEWS_RESPONSE"
exit 1
fi

# Define excluded users (users whose reviews don't count as valid peer reviews)
EXCLUDED_USERS=("$PR_AUTHOR" "DonnieBLT" "coderabbit[bot]")

# Extract reviewer usernames from APPROVED reviews only
# Filter out the PR author, specific excluded users, and any user with "copilot" in their username
VALID_REVIEWERS=$(echo "$REVIEWS_RESPONSE" | jq -r --arg author "$PR_AUTHOR" \
'.[] |
select(.state == "APPROVED") |
select(.user.login != $author) |
select(.user.login != "DonnieBLT") |
select(.user.login != "coderabbit[bot]") |
select(.user.login | contains("copilot") | not) |
.user.login' | sort -u)

echo "Reviews found: $(echo "$REVIEWS_RESPONSE" | jq length)"
echo "Valid approved reviewers (excluding author, DonnieBLT, coderabbit, and copilot): $VALID_REVIEWERS"

# Check if there are any valid reviewers
if [ -z "$VALID_REVIEWERS" ]; then
echo "No peer review found from a valid reviewer."

# Check if we already posted a comment
COMMENTS_RESPONSE=$(curl -s -X GET \
-H "Authorization: token $GITHUB_TOKEN" \
-H "Accept: application/vnd.github.v3+json" \
"https://api.github.com/repos/$REPO_OWNER/$REPO_NAME/issues/$PR_NUMBER/comments")

# Check if a comment about peer review already exists (using a unique marker)
EXISTING_COMMENT=$(echo "$COMMENTS_RESPONSE" | jq -r '.[] | select(.body | contains("<!-- peer-review-check -->")) | .id' | head -n 1)

if [ -z "$EXISTING_COMMENT" ]; then
echo "Posting comment to request peer review..."

# Create JSON payload for the comment with a unique marker
jq -n \
--arg body "<!-- peer-review-check -->
👋 Hi @${PR_AUTHOR}!

This pull request needs a peer review before it can be merged. Please request a review from a team member who is not:
- The PR author
- DonnieBLT
- coderabbit
- copilot

Once a valid peer review is submitted, this check will pass automatically. Thank you!" \
'{body: $body}' > /tmp/comment.json

POST_COMMENT_RESPONSE=$(curl -s -w "\n%{http_code}" -X POST \
-H "Authorization: token $GITHUB_TOKEN" \
-H "Accept: application/vnd.github.v3+json" \
"https://api.github.com/repos/$REPO_OWNER/$REPO_NAME/issues/$PR_NUMBER/comments" \
-d @/tmp/comment.json)

HTTP_CODE=$(echo "$POST_COMMENT_RESPONSE" | tail -n 1)
RESPONSE_BODY=$(echo "$POST_COMMENT_RESPONSE" | sed '$d')

if [ "$HTTP_CODE" -eq 201 ]; then
echo "Comment posted successfully."
else
echo "Failed to post comment. HTTP Code: $HTTP_CODE, Response: $RESPONSE_BODY"
fi
else
echo "Comment about peer review already exists (ID: $EXISTING_COMMENT)."
fi

echo "Peer review check failed: No valid peer review found."
exit 1
else
echo "Peer review check passed: Valid reviewers found: $VALID_REVIEWERS"
exit 0
fi