feat: add automated Intel build and release workflow#14
Open
soham2008xyz wants to merge 12 commits into
Open
Conversation
Add GitHub Actions workflow to automatically build and release Intel builds: - Daily cron job checks for new Codex.dmg versions - Downloads and verifies latest DMG from OpenAI - Builds Intel (x64) version using make build - Creates tagged releases with version extraction - Uploads Codex.app.zip asset to GitHub Includes helper scripts: - scripts/extract-app-version.sh: Extracts version from Codex.app - scripts/get-last-dmg-hash.sh: Gets DMG hash from last release Updates README.md with automated release documentation including: - How the automated system works - Instructions for end users to download releases - Benefits and troubleshooting information - Retains manual build instructions as fallback Closes #2 Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Add git-commit skill to standardize commit creation across all AI agent directories. The skill provides automated conventional commit message generation with diff analysis and intelligent staging capabilities. Changes include: - Add git-commit skill implementation in .agents/skills/git-commit/ - Create symlinks for compatibility across .agent, .claude, .junie, .vibe - Add skills-lock.json for skill metadata tracking The skill analyzes diffs to auto-detect commit type, scope, and generates appropriate conventional commit messages following best practices. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Add github-issues skill to multiple agent directories (.agent, .agents, .claude, .junie, .vibe) and update skills-lock.json accordingly. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Adds gh-cli skill documentation and symlinks in multiple agent configurations (.agent, .agents, .claude, .junie, .vibe). Updates skills-lock.json to track the new skill with computed hash. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
…ectories Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Install the GitHub PR checks fix skill in multiple agent directories: - .agent/skills/gh-fix-ci (symlink) - .agents/skills/gh-fix-ci/ (full skill with LICENSE, SKILL.md, agents config, assets, scripts) - .claude/skills/gh-fix-ci (symlink) - .junie/skills/gh-fix-ci (symlink) - .vibe/skills/gh-fix-ci (symlink) - Update skills-lock.json Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard. |
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request adds several agent skills for GitHub CLI, CI debugging, and issue management, alongside an automated build system for Intel releases. Key feedback involves fixing a future date typo and a stray command fragment in the documentation, removing a duplicate section in the README, and enhancing the shell script's temporary directory handling for better security.
|
|
||
| Comprehensive reference for GitHub CLI (gh) - work seamlessly with GitHub from the command line. | ||
|
|
||
| **Version:** 2.85.0 (current as of January 2026) |
There was a problem hiding this comment.
The version information mentions "January 2026", which is a future date and likely a placeholder or typo. To avoid confusion for users of this skill documentation, please correct this to a relevant date or remove it.
Comment on lines
+101
to
+109
| ## Updates | ||
|
|
||
| **Note:** This is a manual port. Auto-updates will **not** work. | ||
|
|
||
| To update: | ||
| 1. Download the new `Codex.dmg` from OpenAI. | ||
| 2. Replace the old `Codex.dmg` in this folder. | ||
| 3. If the Codex CLI also updated, run `npm update -g @openai/codex`. | ||
| 4. Run `node rebuild_codex.js --clean` to ensure a fresh build with the new files. |
There was a problem hiding this comment.
This "Updates" section is a duplicate of the one already present in the file (lines 51-59). Please remove this redundant section to avoid confusion for readers.
There was a problem hiding this comment.
Pull request overview
Adds an automated GitHub Actions pipeline to build and publish Intel (x64) Codex Desktop releases, plus helper scripts and documentation for consuming those automated releases.
Changes:
- Introduces a scheduled/manual GitHub Actions workflow to detect new Codex DMG versions, build Intel artifacts, and publish GitHub releases.
- Adds helper scripts for extracting app version info and retrieving the last release’s DMG hash.
- Adds README documentation for the automated release flow, and introduces a set of “agent/skills” metadata files.
Reviewed changes
Copilot reviewed 41 out of 43 changed files in this pull request and generated 5 comments.
Show a summary per file
| File | Description |
|---|---|
| skills-lock.json | Adds a lockfile for referenced “skills” sources/hashes. |
| scripts/get-last-dmg-hash.sh | Helper to read the previous release notes and extract the last DMG SHA256. |
| scripts/extract-app-version.sh | Helper to mount a DMG and emit app version metadata as JSON. |
| README.md | Documents automated releases and end-user installation steps. |
| .github/workflows/automated-release.yml | New scheduled workflow to download DMG, build Intel app, and create/upload a release asset. |
| .vibe/skills/github-issues | Adds skill pointer file. |
| .vibe/skills/git-flow-branch-creator | Adds skill pointer file. |
| .vibe/skills/git-commit | Adds skill pointer file. |
| .vibe/skills/gh-fix-ci | Adds skill pointer file. |
| .vibe/skills/gh-cli | Adds skill pointer file. |
| .junie/skills/github-issues | Adds skill pointer file. |
| .junie/skills/git-flow-branch-creator | Adds skill pointer file. |
| .junie/skills/git-commit | Adds skill pointer file. |
| .junie/skills/gh-fix-ci | Adds skill pointer file. |
| .junie/skills/gh-cli | Adds skill pointer file. |
| .claude/skills/github-issues | Adds skill pointer file. |
| .claude/skills/git-flow-branch-creator | Adds skill pointer file. |
| .claude/skills/git-commit | Adds skill pointer file. |
| .claude/skills/gh-fix-ci | Adds skill pointer file. |
| .claude/skills/gh-cli | Adds skill pointer file. |
| .agents/skills/github-issues/SKILL.md | Adds documentation/automation “skill” spec for GitHub issues. |
| .agents/skills/github-issues/references/templates.md | Adds issue template reference material. |
| .agents/skills/github-issues/references/sub-issues.md | Adds sub-issues reference material. |
| .agents/skills/github-issues/references/search.md | Adds issue search reference material. |
| .agents/skills/github-issues/references/projects.md | Adds projects reference material. |
| .agents/skills/github-issues/references/issue-types.md | Adds issue types reference material. |
| .agents/skills/github-issues/references/issue-fields.md | Adds issue fields reference material. |
| .agents/skills/github-issues/references/images.md | Adds images-in-issues reference material. |
| .agents/skills/github-issues/references/dependencies.md | Adds issue dependencies reference material. |
| .agents/skills/git-flow-branch-creator/SKILL.md | Adds “skill” spec for Git Flow branch creation. |
| .agents/skills/git-commit/SKILL.md | Adds “skill” spec for conventional commits. |
| .agents/skills/gh-fix-ci/scripts/inspect_pr_checks.py | Adds a script to inspect failing PR checks/logs via gh. |
| .agents/skills/gh-fix-ci/assets/github-small.svg | Adds an icon asset for the gh-fix-ci skill. |
| .agents/skills/gh-fix-ci/agents/openai.yaml | Adds agent UI metadata for gh-fix-ci. |
| .agents/skills/gh-fix-ci/SKILL.md | Adds “skill” spec for diagnosing CI failures. |
| .agents/skills/gh-fix-ci/LICENSE.txt | Adds license text for gh-fix-ci skill content. |
| .agents/skills/gh-cli/SKILL.md | Adds extensive gh CLI documentation content. |
| .agent/skills/github-issues | Adds skill pointer file. |
| .agent/skills/git-flow-branch-creator | Adds skill pointer file. |
| .agent/skills/git-commit | Adds skill pointer file. |
| .agent/skills/gh-fix-ci | Adds skill pointer file. |
| .agent/skills/gh-cli | Adds skill pointer file. |
Comments suppressed due to low confidence (6)
scripts/get-last-dmg-hash.sh:1
- The script accepts
[repo-owner] [repo-name]and computesREPO=..., but thegh release list/viewcalls don’t use it, so passing arguments has no effect. Usegh ... --repo \"$REPO\"(or setGH_REPO) so the CLI interface matches actual behavior, or remove the arguments to avoid a misleading API.
scripts/get-last-dmg-hash.sh:1 - The script accepts
[repo-owner] [repo-name]and computesREPO=..., but thegh release list/viewcalls don’t use it, so passing arguments has no effect. Usegh ... --repo \"$REPO\"(or setGH_REPO) so the CLI interface matches actual behavior, or remove the arguments to avoid a misleading API.
scripts/get-last-dmg-hash.sh:1 - The script accepts
[repo-owner] [repo-name]and computesREPO=..., but thegh release list/viewcalls don’t use it, so passing arguments has no effect. Usegh ... --repo \"$REPO\"(or setGH_REPO) so the CLI interface matches actual behavior, or remove the arguments to avoid a misleading API.
scripts/extract-app-version.sh:1 - With
set -e, ifhdiutil detachfails (common if the volume is briefly busy), the script exits early and can leave the DMG mounted. Use atrapfor cleanup and make detach resilient (e.g., retry and/orhdiutil detach -force) so temporary mounts don’t leak in CI or local runs.
README.md:1 - This “To update” block appears to duplicate the earlier manual update instructions near the top of the README. To avoid docs drifting out of sync, keep a single source of truth (remove one copy and link to the remaining section, or factor the steps into a shared section referenced by both places).
skills-lock.json:1 - The PR description focuses on automated Intel build/release, but this PR also adds a large set of agent/skills files and a skills lockfile. If these are required, the PR description should mention them and why they’re needed; otherwise, consider splitting them into a separate PR to keep the release automation change focused.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comment on lines
+146
to
+168
| # Create release notes | ||
| RELEASE_BODY=""" | ||
| ## Codex Intel Build v${VERSION} | ||
|
|
||
| This is an Intel (x64) build of the official Codex Desktop App. | ||
|
|
||
| ### Build Information | ||
| - **Source**: OpenAI Codex DMG | ||
| - **DMG SHA256**: ${DMG_HASH} | ||
| - **Architecture**: Intel x64 | ||
| - **Build Date**: $(date -u +"%Y-%m-%d %H:%M UTC") | ||
|
|
||
| ### Notes | ||
| - Auto-generated from automated workflow | ||
| - Built on macOS Intel runner | ||
| - Includes `--no-sandbox` wrapper for tool compatibility | ||
|
|
||
| ### Installation | ||
|
|
||
| 1. Download the **Codex.app.zip** asset below | ||
| 2. Extract the zip file | ||
| 3. Move `Codex.app` to `/Applications/` | ||
| 4. If you see "App is damaged": |
There was a problem hiding this comment.
Bash doesn’t support Python-style triple-quoted strings, so this will fail and the release won’t be created. Use a heredoc to build RELEASE_BODY (or write notes to a file and pass --notes-file) so newlines/code fences are preserved safely.
Comment on lines
+178
to
+196
| # Create release | ||
| gh release create "$TAG_VERSION" \ | ||
| --title "Intel Build - v${VERSION}" \ | ||
| --notes "$RELEASE_BODY" \ | ||
| --verify-tag=false | ||
|
|
||
| - name: Upload Release Asset | ||
| if: steps.check-version.outputs.is_new == 'true' | ||
| run: | | ||
| TAG_VERSION="v${{ steps.extract-version.outputs.version }}-intel" | ||
|
|
||
| # Zip the app | ||
| echo "Creating zip archive..." | ||
| zip -r Codex.app.zip Codex.app -x "*.DS_Store" -x "*/.git*" | ||
|
|
||
| # Upload to release | ||
| echo "Uploading release asset..." | ||
| gh release upload "$TAG_VERSION" Codex.app.zip#Codex.app.zip \ | ||
| --clobber |
There was a problem hiding this comment.
These steps invoke gh release create/upload but don’t set GH_TOKEN/GITHUB_TOKEN in env: like the earlier step does. Unless gh is already authenticated on the runner, these commands will fail at runtime. Set env: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} (or GITHUB_TOKEN) on each step that runs gh.
There was a problem hiding this comment.
Fixed in commit 4160c02. Both issues are now resolved:
- Release notes: Replaced the invalid triple-quoted Bash string with a group command that writes to
/tmp/release-notes.md, then passes--notes-file /tmp/release-notes.mdtogh release create. - Authentication: Added
env: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}to both the "Create Release" and "Upload Release Asset" steps.
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
Agent-Logs-Url: https://github.com/soham2008xyz/codex-intel/sessions/5dca48d1-daed-4315-8c0b-7c38e349c7e8 Co-authored-by: soham2008xyz <7334295+soham2008xyz@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Introduces
build.shto streamline prerequisite checks, CLI installation, DMG download, application rebuilding, and permission fixes.Add GitHub Actions workflow to automatically build and release Intel builds:Includes helper scripts:
Updates README.md with automated release documentation including:
Closes #2
Co-Authored-By: Claude Sonnet 4.6 noreply@anthropic.com