fix(ci): prevent transitive skip propagation in release pipeline by polaz · Pull Request #266 · structured-world/gitlab-mcp

polaz · 2026-02-02T04:36:17Z

Summary

Follow-up to #264. The !cancelled() approach was insufficient — GitHub Actions propagates skipped status transitively through the entire needs chain, blocking semantic-release even when docker-build succeeded.

Root cause: review-thread-gate was a separate job with if: github.event_name == 'pull_request'. On push to main it was skipped, causing ALL downstream jobs in the needs chain to be skipped too (docker-build -> semantic-release -> publish jobs).

Solution: Delete the standalone gate job entirely. Move the gate check into docker-build as its first step with if: github.event_name == 'pull_request'. On push to main, the step is simply skipped — no separate job, no needs chain issues, no wasted runner.

Changes:

Remove review-thread-gate job (was ~110 lines + separate runner)
Add gate check as first step of docker-build (PR-only via step-level if)
docker-build now depends only on quality-checks
Simplify summary job — remove gate-specific status branches

Test plan

CI passes on this PR (docker-build runs after quality-checks, no skip)
After merge to main, verify full pipeline: docker-build, semantic-release, docker-publish all run
Verify pending releases since v6.50.0 are published

Fixes #265

- Make gate job always run instead of skipping on non-PR events - Add early exit for non-PR events with allow_heavy=true output - Simplify docker-build condition to check gate output only - Revert !cancelled() approach from #264 (insufficient fix) Fixes #265

codecov · 2026-02-02T04:38:21Z

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

Copilot

Pull request overview

Updates the GitHub Actions CI/CD workflow to prevent “skipped” status from propagating transitively through the needs chain and blocking the release pipeline on push events.

Changes:

Make review-thread-gate always run, with an early exit that sets allow_heavy=true for non-PR events.
Simplify docker-build gating logic to rely only on the allow_heavy output.
Remove the prior !cancelled()-based workaround introduced in the earlier follow-up.

- Delete separate gate job that broke needs chain on push to main - Add gate step as first step of docker-build (runs on pull requests only) - docker-build now depends only on quality-checks - Simplify summary job status reporting Fixes #265

Copilot

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated 2 comments.

.github/workflows/ci-cd.yml

- Fail with exit 1 on inconsistent pagination (empty page or missing cursor with hasNextPage=true) instead of silently breaking the loop - Rename quality-checks display name to "Quality Checks" to avoid collision with legacy "Lint, Test & Build" expected-status job

Copilot

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated 3 comments.

.github/workflows/ci-cd.yml

- Only fail on MAX_PAGES when hasNextPage is still true (avoids false positive when scan completes exactly on the last page) - Remove unused image-built output from docker-build job - Add comment explaining intentional fail-on-unresolved design

Copilot

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated 1 comment.

.github/workflows/ci-cd.yml

- Set 30-minute timeout for docker-build (multi-arch build ~8min + margin for cache misses and gate check)

Copilot

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated 1 comment.

.github/workflows/ci-cd.yml

- Add comment explaining why needs lists all jobs (output access) and why always() guarantees execution despite skipped dependencies

Copilot

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated no new comments.

## [6.51.0](v6.50.0...v6.51.0) (2026-02-02) ### Features * **docs:** consent banner + vue-privacy 1.2.2 with gtag fix ([#255](#255)) ([75eb54b](75eb54b)) ### Bug Fixes * **ci:** prevent transitive skip propagation in release pipeline ([#266](#266)) ([f809a7a](f809a7a)), closes [#264](#264) [#265](#265) [#265](#265) * **ci:** replace heredoc with quoted strings in thread-gate job ([#246](#246)) ([9470b50](9470b50)), closes [#243](#243) [#245](#245) * **ci:** unblock release pipeline on push to main ([#264](#264)) ([59b8cbe](59b8cbe)), closes [#263](#263) * **deps:** update hono from 4.11.5 to 4.11.7 ([#248](#248)) ([71cc831](71cc831)), closes [#247](#247) * **docs:** resolve SEO issues in VitePress documentation ([#249](#249)) ([#250](#250)) ([3e05717](3e05717)) * **docs:** use canonical URL for TOOLS reference in README ([#252](#252)) ([5ac56cc](5ac56cc)), closes [#251](#251) * **pipelines:** serialize array query params as key[] for GitLab Rails API ([#262](#262)) ([955a3c1](955a3c1)), closes [#261](#261)

sw-release-bot · 2026-02-02T11:20:55Z

🎉 This PR is included in version 6.51.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

Copilot AI review requested due to automatic review settings February 2, 2026 04:36

Copilot started reviewing on behalf of polaz February 2, 2026 04:36 View session