Add TDD strict mode and address eval-report code quality gaps. #2
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Quality gate for agent-toolkit (canonical CI workflow). | |
| # No GitHub secret required: bootstrap creates .gate/signing.key. | |
| # Optional: AGENT_TOOLKIT_GATE_SECRET for a stable key across runs/machines. | |
| # Signed mode + branch protection: require check "agent-toolkit-gate" on main. | |
| # | |
| # Consumer projects get a lighter copy via templates/github/workflows/agent-toolkit-gate.yml | |
| name: agent-toolkit-gate | |
| on: | |
| pull_request: | |
| push: | |
| branches: [main, master] | |
| permissions: | |
| contents: read | |
| jobs: | |
| gate: | |
| name: agent-toolkit-gate | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Set up Python | |
| uses: actions/setup-python@v5 | |
| with: | |
| python-version: "3.12" | |
| - name: Install dependencies | |
| run: pip install -r gate/requirements.txt pytest | |
| - name: Unit tests (gate + hooks) | |
| run: | | |
| python -m pytest tests/ -q | |
| bash tests/test-hooks.sh | |
| - name: Bootstrap gate layout (idempotent) | |
| run: bash scripts/bootstrap-project-gates.sh "$(pwd)" "$(pwd)" | |
| - name: Seed skill reports for self-attestation | |
| run: bash scripts/seed-gate-reports.sh | |
| - name: Attest | |
| run: python .agent-toolkit/gate/scripts/verify_gate.py attest --project-root . | |
| env: | |
| AGENT_TOOLKIT_ATTEST_SKIP_HOOK_TESTS: "1" | |
| AGENT_TOOLKIT_ATTEST_SKIP_GATE_TESTS: "1" | |
| - name: Issue gate token | |
| run: python .agent-toolkit/gate/scripts/issue_token.py --project-root . --action push | |
| - name: Verify gate token | |
| run: | | |
| python .agent-toolkit/gate/scripts/verify_gate.py verify \ | |
| --project-root . \ | |
| --action push \ | |
| --commit "${{ github.sha }}" | |
| - name: Upload gate token artifact | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: gate-token | |
| path: .gate/gate-token.jwt | |
| retention-days: 14 |