ci: add AI-powered issue triage workflow

[samyakLambda]

Summary

Adds a GitHub Actions workflow that uses Anthropic's Claude API to automatically classify every new and edited issue by priority (P0–P3) and area (cli, config, auth, execution, reporting, tms, docs), apply the matching labels, and post a single bot comment with a root-cause hypothesis and suggested next steps.

The bot comment is clearly marked as automated and not human-reviewed; maintainers can relabel, edit, or delete at any time. Adding the no-triage label opts an issue out of the workflow.

What's included

• .github/workflows/issue-triage.yml — runs on issues: opened, reopened, edited. Skips bot authors and no-triage-labeled issues. Per-issue concurrency, 5-minute timeout, issues: write + contents: read only.
• .github/scripts/triage.mjs — calls Claude API, validates output against a closed taxonomy (drops anything off-list), posts/updates a single bot comment keyed by <!-- ai-triage-bot:v1 -->, reconciles labels on re-runs. Uses prompt caching for the system prompt.
• .github/scripts/labels.json + bootstrap-labels.mjs + .github/workflows/bootstrap-labels.yml — one-shot workflow_dispatch label provisioning. Idempotent (creates or patches color/description). Run this once after merge.
• .github/AI_TRIAGE.md — maintainer-facing doc: setup, opt-out, model override, how to report bot mistakes.

Setup required after merge

1. Add an ANTHROPIC_API_KEY repository secret (Settings → Secrets and variables → Actions).
2. (Optional) Add an ANTHROPIC_TRIAGE_MODEL repository variable to override the default model. Default: claude-haiku-4-5-20251001 (fast, ~fractions of a cent per issue). Set to e.g. claude-sonnet-4-6 for higher-quality RCA.
3. Run Actions → Bootstrap triage labels → Run workflow to provision priority/P0..P3, area/cli|config|auth|execution|reporting|tms|docs, and no-triage.

Design choices

• Existing labels untouched. The 10 default labels (bug, enhancement, question, etc.) are kept; the workflow only adds new priority/* and area/* namespaces, and infers an issue type for the comment without auto-applying a bug/enhancement label (humans still do that).
• Idempotent on edits. Editing the issue body re-runs triage and updates the existing comment in place rather than spamming new ones. Labels are reconciled (old priority/* and area/* removed, new ones added).
• Prompt-injection hardened. System prompt instructs the model to treat issue text as untrusted; output is JSON-only and is validated against a closed enum (any off-list value is dropped).
• Cost-bounded. Haiku model + ephemeral prompt cache. Bot is skipped for issues authored by other bots.

Test plan

• Maintainer adds ANTHROPIC_API_KEY secret.
• Maintainer triggers Bootstrap triage labels workflow once and confirms 12 labels are created.
• Open a test bug-style issue; verify priority/area labels are applied and a single triage comment is posted.
• Edit the test issue body; verify the same comment is updated (not duplicated) and labels reconcile.
• Add no-triage to a fresh issue; verify the workflow skips it.
• (Optional) Override ANTHROPIC_TRIAGE_MODEL to a Sonnet model and confirm the comment footer reflects the new model.

🤖 Generated with Claude Code

[samyakLambda]

Pushed two follow-up commits to address backfilling existing issues:

• ci: add backfill workflow for existing issues — the per-issue workflow only fires on opened/reopened/edited, so already-open issues wouldn't be triaged. This adds:
  • .github/scripts/lib.mjs — extracts shared triageIssue() (Anthropic call, sanitization, idempotent comment, label reconciliation). Both triage.mjs and the new backfill consume it.
  • .github/scripts/backfill.mjs — lists issues (skipping PRs), filters by no-triage / already-priority/*, triages sequentially, prints a summary.
  • .github/workflows/triage-backfill.yml — workflow_dispatch with inputs: state (open/closed/all), only_unlabeled (default true), limit (1–500), dry_run. 30-min timeout, dedicated concurrency group.
• docs: document backfill workflow inputs and usage — updated AI_TRIAGE.md with the backfill section.

Recommended one-time post-merge sequence

1. Add ANTHROPIC_API_KEY secret.
2. Run Bootstrap triage labels.
3. Run AI Issue Triage (Backfill) once with dry_run: true and review the workflow log.
4. Re-run with dry_run: false to actually triage the existing 3 open issues (Bug | Kane-cli | Test Case Link Not Redirecting to Playground #8, Bug | Kane-cli | Report Displayed After Every Step Instead of After Test Execution Completion & Chrome Launch Delay in Kane CLI #9, and any others).

[samyakLambda]

Pushed eacbc53 addressing every reviewer finding.

The headline change: assistive, not authoritative

Codex flagged the original design as a no-ship: the bot deleted human-applied priority/* and area/* labels on every re-triage. Fixed by making label ownership human-first:

• After first triage, the bot never overwrites human-applied priority/* or area/* labels on subsequent runs. The comment body still updates with the latest RCA.
• A new force_relabel workflow input (default false) on the backfill workflow opts back into the destructive behavior with a logged warning.
• triage-failed and needs-info markers are still cleared by the bot — those are bot-owned signals.

Other reviewer findings, all addressed

Security

• Bot comment lookup checks both marker AND author (github-actions[bot]) — attacker can't redirect bot PATCH by forging the marker.
• Actions SHA-pinned (checkout v4.3.1, setup-node v4.4.0).
• Workflow root permissions: {}, per-job grants only.
• Model output wrapped in ::stop-commands::<token> to neuter prompt-injected workflow commands.
• Title/body clamped to 500/8000 chars.
• edited trigger skipped when neither title nor body changed (label-only edits no longer burn API calls).

Correctness — schema failure now loud

• Invalid model output throws SchemaError, applies triage-failed label, posts a clearly-marked failure comment, and exits the workflow non-zero. No more silent fallback to priority/P2 — 50% confidence.
• Labels reconciled first, comment second (was reversed — bot was lying about labels on partial failure).
• Label DELETE only swallows 404; other statuses logged.
• triage.mjs reads from GITHUB_EVENT_PATH (no env-var fan-out, no extra GET).
• Missing ANTHROPIC_API_KEY now exits 1 (was: silently green).
• Anthropic 401/403 fatal → backfill aborts. 429/529 retry once with retry-after.
• JSON parsing uses assistant-prefill { + balanced-brace scanner (was: greedy regex).
• All fetch calls have 60s timeouts.

Quality

• Empty/short issues short-circuit to needs-info (no model call, no hallucinated RCA).
• next_steps stripped of leading markdown sigils (#/>/|/-) to prevent comment-body breakouts.
• DEFAULT_MODEL centralised in lib.mjs.
• Shared gh() reused by bootstrap-labels.mjs; per-label summary at the end.
• New labels in labels.json: triage-failed, needs-info.
• AI_TRIAGE.md rewritten — covers label-ownership, force_relabel, failure path, security hardening.

Diff for this commit: 9 files changed, +699 / −258. Total PR: +1138 / −0.

The PR is now ready for human review. After merge:

1. Add ANTHROPIC_API_KEY repo secret.
2. Run Bootstrap triage labels (creates 14 labels including triage-failed and needs-info).
3. Run AI Issue Triage (Backfill) with dry_run: true first.

[samyakLambda]

Pushed 3cb2c6e to fix the label-loss path Codex flagged in the second adversarial pass.

What was broken

applyMarkerLabel (lib.mjs) previously deleted every managed label except the new marker — including priority/* and area/*. That meant: bot triages → maintainer corrects priority → reporter strips the body → workflow enters needs-info branch → maintainer's priority/* silently deleted. Same hazard on schema-fail.

This contradicted the explicit "human labels are sticky" contract added in the previous commit.

Fix

applyMarkerLabel now only toggles the two flag labels (triage-failed ↔ needs-info). priority/* and area/* are never touched on failure / needs-info paths.

13 lines changed.

[samyakLambda]

Pushed 70652d1 to fix both findings from the third adversarial pass.

[high] Bot couldn't refresh its own labels — fixed

Previously the bot's own priority/P3 looked identical to a human-applied one, so after first triage applyTriageLabels treated all priority/* as human-owned and refused to refresh. A reporter adding repro details that should bump priority would update the comment body but leave the label stale.

Fix: bot now embeds its last-applied set in the marker comment as <!-- ai-triage-applied: priority/Pn,area/x -->. On re-runs, the bot parses this and compares against the freshly-fetched managed labels:

• sets equal → bot owns them, free to refresh.
• sets differ → human touched, preserve.

The marker stays frozen at the bot's previous set on preservation, so the next run still detects the human's correction as not-its-own.

Failure and needs-info comments carry the previous applied set forward so a transient model-output failure doesn't make the bot forget what it last applied.

[medium] Stale event snapshot — fixed

New loadFreshState() does parallel GET /issues/N + GET /issues/N/comments right before any label/comment mutation. The issue.labels field from the event payload is now used only for the early no-triage skip check; mutation logic always uses fresh state. Closes the TOCTOU window between event delivery and write.

Doc

AI_TRIAGE.md rewritten to document the new ownership model — concrete description of what the bot will and will not refresh, what the marker means, and when the marker stays frozen.

Diff: 2 files, +187 / −65 in this commit.

Behavior matrix after this commit

Initial state	Reporter edits	Bot's response
Fresh issue	(n/a)	Apply priority + areas, write marker
Bot-triaged, no human change	Body edited	Refresh labels if model output changed
Bot-triaged, maintainer corrected priority	Body edited	Preserve maintainer's priority. Comment still gets new RCA. Marker stays frozen.
Triage-failed	Body edited (fixes the issue)	Clear triage-failed, apply new labels, restore success comment
Backfill force_relabel: true	(n/a)	Overwrite human-applied labels (logged as warning)

[samyakLambda]

Pushed 9fa8dc0 to land items 1–5 (must-fix) plus 6, 7, 8, 10 (cheap, high-leverage) from the triple-reviewer punch list.

Must-fix

1. validate() requires 1–3 areas in the closed enum. Empty / all-invalid areas → SchemaError. No more silent priority/Pn with no area routing label. (Codex medium)
2. Failure paths re-check no-triage. Maintainer opt-out during the Anthropic round-trip is now honoured on schema-fail and label-mutation-fail paths, not just success. (Codex high, silent-failure M1)
3. applyTriageLabels errors → triage-failed path. A missing repo label (bootstrap not run, maintainer rename) no longer leaves the issue partially mutated with no marker. Same recovery as schema errors. (silent-failure H2, code-reviewer fix: install kane-cli via npm tarball instead of bare runner binary #1)
4. Anthropic 4xx (≠ 429) is fatal. Typo'd ANTHROPIC_TRIAGE_MODEL returning 404 model_not_found now aborts the backfill on the first issue instead of burning 100 calls. (silent-failure H3)
5. Issue-deleted is a typed IssueGoneError. loadFreshState requests [200, 404, 410] and surfaces deletion cleanly; triageIssue exits with skipped:issue-gone instead of spraying writes at a dead resource. (silent-failure C1)

High-leverage

6. Promise.allSettled in loadFreshState. Errors now name which arm (issue GET vs comment list) failed. (silent-failure C2)
7. HTML-comment strip in validate(). Model-emitted <!-- ai-triage-applied: ... --> in rca/summary/next_steps is removed before it reaches the comment body. (silent-failure H1)
8. APPLIED_MARKER_RE anchored to start of comment body. Smoke test verified: attacker-prefix injection rejected; genuine marker still parses. (silent-failure H1)
9. postOrUpdateComment PATCH 404 → POST. Maintainer deleting the bot's comment mid-run gracefully creates a fresh one. (code-reviewer URL Link for Docs & Bugs section is incorrect in CLI Help section #4)

160 insertions / 47 deletions in lib.mjs. Items 9, 11–15 (nits and edge-case docs) deferred to a follow-up unless reviewers flag them as blocking.