Skip to content

Commit

Permalink
fix: fix the issue triage assignment wflow (#521)
Browse files Browse the repository at this point in the history 
* fix: fix the issue triage assignment wflow

* chore: also update codeowners
  • Loading branch information
@GangGreenTemperTatum
GangGreenTemperTatum authored Dec 27, 2024
1 parent 0ae5638 commit baff712
Show file tree
Hide file tree
Showing 2 changed files with 61 additions and 41 deletions.
74 changes: 47 additions & 27 deletions .github/workflows/issue-triage.yml
View file
Original file line number Diff line number Diff line change
@@ -1,31 +1,31 @@
name: Ads - Triage OWASP Top 10 LLM Apps Issues

#on:
# issues:
# types: [opened, labeled, reopened]
on:
issues:
types: [opened, labeled, reopened]

env:
BOARD_NAME: "OWASP Top 10 for LLM Applications"
OWNER: ${{ github.repository_owner }}
REPO: ${{ github.event.repository.name }}
ISSUE: ${{ github.event.issue.number }}
PROJECT_TECH_LEAD: "GangGreenTemperTatum"
LLM01_LEAD: "leondz"
LLM01_LEAD: "cybershujin"
LLM02_LEAD: "kenhuangus"
LLM03_LEAD: "GangGreenTemperTatum"
LLM04_LEAD: "kenhuangus"
LLM05_LEAD: "jsotiro"
LLM06_LEAD: "GangGreenTemperTatum"
LLM07_LEAD: "rot169"
LLM03_LEAD: "jsotiro"
LLM04_LEAD: "GangGreenTemperTatum"
LLM05_LEAD: "GangGreenTemperTatum"
LLM06_LEAD: "rot169"
LLM07_LEAD: "GangGreenTemperTatum"
LLM08_LEAD: "virtualsteve-star"
LLM09_LEAD: "jsotiro"
LLM09_LEAD: "virtualsteve-star"
LLM10_LEAD: "GangGreenTemperTatum"
PR_LEAD: "faceplate27"
POSTMASTER: "TBC"
TRANSLATIONS: "talesh"
DATA_GATHERING: "emmanuelgjr"
DESIGN: "rossja"
DIAGRAMS: "TBC"
DIAGRAMS: "GangGreenTemperTatum"
WEB_DEVS: "GangGreenTemperTatum"
SEC_GOVERNANCE: "subzer0girl2"

Expand All @@ -36,7 +36,7 @@ jobs:
- name: Checkout repository
uses: actions/checkout@v2

- uses: actions/github-script@v7
- uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea #v7.0.1
with:
script: |
github.rest.issues.createComment({
Expand All @@ -50,15 +50,16 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v2
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 #v4.2.2

- uses: actions/github-script@v7
- uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea #v7.0.1
with:
github-token: ${{ secrets.ADS_OWASP_LLM_APPS_REPO_TOKEN }}
script: |
try {
const issue = context.payload.issue;
const labels = issue.labels.map(label => label.name);
const assignees = [];
let assignees = [];
// Label-to-assignee mappings
const labelAssigneeMap = {
Expand All @@ -83,23 +84,42 @@ jobs:
// Check labels and assign based on mappings
labels.forEach(label => {
if (labelAssigneeMap[label]) {
assignees.push(...labelAssigneeMap[label]);
const assignee = labelAssigneeMap[label];
if (assignee && assignee !== 'TBC') {
assignees.push(assignee);
}
}
});
// Remove duplicates from assignees list
// const uniqueAssignees = [...new Set(assignees)];
// Remove duplicates and empty values
assignees = [...new Set(assignees)].filter(Boolean);
// Assign the issue to the calculated assignees
await github.rest.issues.addAssignees({
issue_number: issue.number,
owner: context.repo.owner,
repo: context.repo.repo,
assignees: assignees
});
if (assignees.length > 0) {
try {
await github.rest.issues.addAssignees({
issue_number: issue.number,
owner: context.repo.owner,
repo: context.repo.repo,
assignees: assignees
});
console.log(`Successfully assigned to: ${assignees.join(', ')}`);
} catch (assignError) {
// Log the error but don't fail the workflow
console.log(`Warning: Could not assign some users. ${assignError.message}`);
// Try to add a comment to the issue
await github.rest.issues.createComment({
issue_number: issue.number,
owner: context.repo.owner,
repo: context.repo.repo,
body: `⚠️ Note: Some assignees could not be added. Please check if all usernames are valid.`
});
}
} else {
console.log('No valid assignees found for the given labels');
}
} catch (error) {
console.error(error.message);
process.exit(1);
// Log error but don't fail the workflow
console.log(`Error in workflow: ${error.message}`);
}
env:
GITHUB_TOKEN: ${{ secrets.ADS_OWASP_LLM_APPS_REPO_TOKEN }}
28 changes: 14 additions & 14 deletions CODEOWNERS
View file
Validating CODEOWNERS rules …
Original file line number Diff line number Diff line change
Expand Up @@ -6,32 +6,32 @@

## Either Ads or Steve can approve changes to CODEOWNERS:
CODEOWNERS @GangGreenTemperTatum @virtualsteve-star
2_0_vulns/emerging_candidates @GangGreenTemperTatum

## Data Gathering
data_gathering/* @emmanuelgjr @GangGreenTemperTatum

# Top 10 Vulnerabilities: (www-project-top-10-for-large-language-model-applications/1_1_vulns/)
# Top 10 Vulnerabilities and Leads:
## Use **/ to match files in any directory
## LLM01:
PromptInjection.md @cybershujin
**/PromptInjection.md @cybershujin
## LLM02:
InsecureOutputHandling.md @kenhuangus
**/LLM02_SensitiveInformationDisclosure.md @kenhuangus
## LLM03:
TrainingDataPoisoning.md @GangGreenTemperTatum
**/SupplyChainVulnerabilities.md @jsotiro
## LLM04:
UnboundedConsumption.md @GangGreenTemperTatum
**/DataModelPoisoning.md @GangGreenTemperTatum
## LLM05:
SupplyChainVulnerabilities.md @jsotiro
**/LLM05_ImproperOutputHandling.md @GangGreenTemperTatum
## LLM06:
SensitiveInformationDisclosure.md @GangGreenTemperTatum
## LLM07:
InsecurePluginDesign.md @jsotiro
## LLM08:
ExcessiveAgency.md @rot169
**/ExcessiveAgency.md @rot169
## LLM07: # TODO need to check Aditya's handle
**/SystemPromptLeakage.md @GangGreenTemperTatum
## LLM08: # TODO need to check Krishna's handle
**/VectorAndEmbeddingWeaknesses.md @jsotiro
## LLM09:
Overreliance.md @virtualsteve-star
**/Misinformation.md @virtualsteve-star
## LLM10:

**/UnboundedConsumption.md @GangGreenTemperTatum

## Template:
_template.md @rossja
Expand Down

0 comments on commit baff712

Please sign in to comment.