Merge branch 'main' into main

misrasaurabh1 · web-flow · commit a5c4662a8af6 · 2025-04-10T14:27:05.000-07:00
diff --git a/.github/workflows/codeflash-optimize.yaml b/.github/workflows/codeflash-optimize.yaml
@@ -29,18 +29,25 @@ jobs:
           fetch-depth: 0
       - name: Validate PR
         run: |
-          # Checking for any workflow changes for security risks
-          if git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "^.github/workflows/"; then
-            echo "Workflow changes detected."
+          # Check for any workflow changes
+          if git diff --name-only "${{ github.event.pull_request.base.sha }}" "${{ github.sha }}" | grep -q "^.github/workflows/"; then
+            echo "⚠️ Workflow changes detected."
 
-            # Check if the PR author is allowed
+            # Get the PR author
             AUTHOR="${{ github.event.pull_request.user.login }}"
-            if [[ "$AUTHOR" != "misrasaurabh1" && "$AUTHOR" != "KRRT7" ]]; then
-              echo "Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
-              exit 1
+            echo "PR Author: $AUTHOR"
+
+            # Allowlist check
+            if [[ "$AUTHOR" == "misrasaurabh1" || "$AUTHOR" == "KRRT7" ]]; then
+              echo "✅ Authorized user ($AUTHOR). Proceeding."
+            elif [[ "${{ github.event_name }}" == "pull_request_target" && "${{ github.event.pull_request.state }}" == "open" ]]; then
+              echo "✅ PR triggered by 'pull_request_target' and is open. Assuming protection rules are in place. Proceeding."
             else
-              echo "Authorized user ($AUTHOR). Proceeding."
+              echo "⛔ Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
+              exit 1
             fi
+          else
+            echo "✅ No workflow file changes detected. Proceeding."
           fi
 
       - name: 🐍 Set up Python 3.11 for CLI
diff --git a/.github/workflows/end-to-end-test-bubblesort-pytest-no-git.yaml b/.github/workflows/end-to-end-test-bubblesort-pytest-no-git.yaml
@@ -24,18 +24,25 @@ jobs:
           token: ${{ secrets.GITHUB_TOKEN }}
       - name: Validate PR
         run: |
-          # Checking for any workflow changes for security risks
-          if git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "^.github/workflows/"; then
-            echo "Workflow changes detected."
+          # Check for any workflow changes
+          if git diff --name-only "${{ github.event.pull_request.base.sha }}" "${{ github.sha }}" | grep -q "^.github/workflows/"; then
+            echo "⚠️ Workflow changes detected."
 
-            # Check if the PR author is allowed
+            # Get the PR author
             AUTHOR="${{ github.event.pull_request.user.login }}"
-            if [[ "$AUTHOR" != "misrasaurabh1" && "$AUTHOR" != "KRRT7" ]]; then
-              echo "Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
-              exit 1
+            echo "PR Author: $AUTHOR"
+
+            # Allowlist check
+            if [[ "$AUTHOR" == "misrasaurabh1" || "$AUTHOR" == "KRRT7" ]]; then
+              echo "✅ Authorized user ($AUTHOR). Proceeding."
+            elif [[ "${{ github.event_name }}" == "pull_request_target" && "${{ github.event.pull_request.state }}" == "open" ]]; then
+              echo "✅ PR triggered by 'pull_request_target' and is open. Assuming protection rules are in place. Proceeding."
             else
-              echo "Authorized user ($AUTHOR). Proceeding."
+              echo "⛔ Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
+              exit 1
             fi
+          else
+            echo "✅ No workflow file changes detected. Proceeding."
           fi
 
       - name: Set up Python 3.11 for CLI
diff --git a/.github/workflows/end-to-end-test-bubblesort-unittest.yaml b/.github/workflows/end-to-end-test-bubblesort-unittest.yaml
@@ -24,18 +24,25 @@ jobs:
           token: ${{ secrets.GITHUB_TOKEN }}
       - name: Validate PR
         run: |
-          # Checking for any workflow changes for security risks
-          if git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "^.github/workflows/"; then
-            echo "Workflow changes detected."
+          # Check for any workflow changes
+          if git diff --name-only "${{ github.event.pull_request.base.sha }}" "${{ github.sha }}" | grep -q "^.github/workflows/"; then
+            echo "⚠️ Workflow changes detected."
 
-            # Check if the PR author is allowed
+            # Get the PR author
             AUTHOR="${{ github.event.pull_request.user.login }}"
-            if [[ "$AUTHOR" != "misrasaurabh1" && "$AUTHOR" != "KRRT7" ]]; then
-              echo "Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
-              exit 1
+            echo "PR Author: $AUTHOR"
+
+            # Allowlist check
+            if [[ "$AUTHOR" == "misrasaurabh1" || "$AUTHOR" == "KRRT7" ]]; then
+              echo "✅ Authorized user ($AUTHOR). Proceeding."
+            elif [[ "${{ github.event_name }}" == "pull_request_target" && "${{ github.event.pull_request.state }}" == "open" ]]; then
+              echo "✅ PR triggered by 'pull_request_target' and is open. Assuming protection rules are in place. Proceeding."
             else
-              echo "Authorized user ($AUTHOR). Proceeding."
+              echo "⛔ Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
+              exit 1
             fi
+          else
+            echo "✅ No workflow file changes detected. Proceeding."
           fi
 
       - name: Set up Python 3.11 for CLI
diff --git a/.github/workflows/end-to-end-test-coverage.yaml b/.github/workflows/end-to-end-test-coverage.yaml
@@ -22,18 +22,25 @@ jobs:
           token: ${{ secrets.GITHUB_TOKEN }}
       - name: Validate PR
         run: |
-          # Checking for any workflow changes for security risks
-          if git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "^.github/workflows/"; then
-            echo "Workflow changes detected."
+          # Check for any workflow changes
+          if git diff --name-only "${{ github.event.pull_request.base.sha }}" "${{ github.sha }}" | grep -q "^.github/workflows/"; then
+            echo "⚠️ Workflow changes detected."
 
-            # Check if the PR author is allowed
+            # Get the PR author
             AUTHOR="${{ github.event.pull_request.user.login }}"
-            if [[ "$AUTHOR" != "misrasaurabh1" && "$AUTHOR" != "KRRT7" ]]; then
-              echo "Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
-              exit 1
+            echo "PR Author: $AUTHOR"
+
+            # Allowlist check
+            if [[ "$AUTHOR" == "misrasaurabh1" || "$AUTHOR" == "KRRT7" ]]; then
+              echo "✅ Authorized user ($AUTHOR). Proceeding."
+            elif [[ "${{ github.event_name }}" == "pull_request_target" && "${{ github.event.pull_request.state }}" == "open" ]]; then
+              echo "✅ PR triggered by 'pull_request_target' and is open. Assuming protection rules are in place. Proceeding."
             else
-              echo "Authorized user ($AUTHOR). Proceeding."
+              echo "⛔ Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
+              exit 1
             fi
+          else
+            echo "✅ No workflow file changes detected. Proceeding."
           fi
 
       - name: Set up Python 3.11 for CLI
diff --git a/.github/workflows/end-to-end-test-futurehouse.yaml b/.github/workflows/end-to-end-test-futurehouse.yaml
@@ -24,18 +24,25 @@ jobs:
           token: ${{ secrets.GITHUB_TOKEN }}
       - name: Validate PR
         run: |
-          # Checking for any workflow changes for security risks
-          if git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "^.github/workflows/"; then
-            echo "Workflow changes detected."
+          # Check for any workflow changes
+          if git diff --name-only "${{ github.event.pull_request.base.sha }}" "${{ github.sha }}" | grep -q "^.github/workflows/"; then
+            echo "⚠️ Workflow changes detected."
 
-            # Check if the PR author is allowed
+            # Get the PR author
             AUTHOR="${{ github.event.pull_request.user.login }}"
-            if [[ "$AUTHOR" != "misrasaurabh1" && "$AUTHOR" != "KRRT7" ]]; then
-              echo "Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
-              exit 1
+            echo "PR Author: $AUTHOR"
+
+            # Allowlist check
+            if [[ "$AUTHOR" == "misrasaurabh1" || "$AUTHOR" == "KRRT7" ]]; then
+              echo "✅ Authorized user ($AUTHOR). Proceeding."
+            elif [[ "${{ github.event_name }}" == "pull_request_target" && "${{ github.event.pull_request.state }}" == "open" ]]; then
+              echo "✅ PR triggered by 'pull_request_target' and is open. Assuming protection rules are in place. Proceeding."
             else
-              echo "Authorized user ($AUTHOR). Proceeding."
+              echo "⛔ Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
+              exit 1
             fi
+          else
+            echo "✅ No workflow file changes detected. Proceeding."
           fi
 
       - name: Set up Python 3.11 for CLI
diff --git a/.github/workflows/end-to-end-test-init-optim.yaml b/.github/workflows/end-to-end-test-init-optim.yaml
@@ -24,18 +24,25 @@ jobs:
           token: ${{ secrets.GITHUB_TOKEN }}
       - name: Validate PR
         run: |
-          # Checking for any workflow changes for security risks
-          if git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "^.github/workflows/"; then
-            echo "Workflow changes detected."
+          # Check for any workflow changes
+          if git diff --name-only "${{ github.event.pull_request.base.sha }}" "${{ github.sha }}" | grep -q "^.github/workflows/"; then
+            echo "⚠️ Workflow changes detected."
 
-            # Check if the PR author is allowed
+            # Get the PR author
             AUTHOR="${{ github.event.pull_request.user.login }}"
-            if [[ "$AUTHOR" != "misrasaurabh1" && "$AUTHOR" != "KRRT7" ]]; then
-              echo "Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
-              exit 1
+            echo "PR Author: $AUTHOR"
+
+            # Allowlist check
+            if [[ "$AUTHOR" == "misrasaurabh1" || "$AUTHOR" == "KRRT7" ]]; then
+              echo "✅ Authorized user ($AUTHOR). Proceeding."
+            elif [[ "${{ github.event_name }}" == "pull_request_target" && "${{ github.event.pull_request.state }}" == "open" ]]; then
+              echo "✅ PR triggered by 'pull_request_target' and is open. Assuming protection rules are in place. Proceeding."
             else
-              echo "Authorized user ($AUTHOR). Proceeding."
+              echo "⛔ Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
+              exit 1
             fi
+          else
+            echo "✅ No workflow file changes detected. Proceeding."
           fi
 
       - name: Set up Python 3.11 for CLI
diff --git a/.github/workflows/end-to-end-test-tracer-replay.yaml b/.github/workflows/end-to-end-test-tracer-replay.yaml
@@ -24,18 +24,25 @@ jobs:
           token: ${{ secrets.GITHUB_TOKEN }}
       - name: Validate PR
         run: |
-          # Checking for any workflow changes for security risks
-          if git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "^.github/workflows/"; then
-            echo "Workflow changes detected."
+          # Check for any workflow changes
+          if git diff --name-only "${{ github.event.pull_request.base.sha }}" "${{ github.sha }}" | grep -q "^.github/workflows/"; then
+            echo "⚠️ Workflow changes detected."
 
-            # Check if the PR author is allowed
+            # Get the PR author
             AUTHOR="${{ github.event.pull_request.user.login }}"
-            if [[ "$AUTHOR" != "misrasaurabh1" && "$AUTHOR" != "KRRT7" ]]; then
-              echo "Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
-              exit 1
+            echo "PR Author: $AUTHOR"
+
+            # Allowlist check
+            if [[ "$AUTHOR" == "misrasaurabh1" || "$AUTHOR" == "KRRT7" ]]; then
+              echo "✅ Authorized user ($AUTHOR). Proceeding."
+            elif [[ "${{ github.event_name }}" == "pull_request_target" && "${{ github.event.pull_request.state }}" == "open" ]]; then
+              echo "✅ PR triggered by 'pull_request_target' and is open. Assuming protection rules are in place. Proceeding."
             else
-              echo "Authorized user ($AUTHOR). Proceeding."
+              echo "⛔ Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
+              exit 1
             fi
+          else
+            echo "✅ No workflow file changes detected. Proceeding."
           fi
 
 
diff --git a/.github/workflows/end-to-end-topological-sort-test.yaml b/.github/workflows/end-to-end-topological-sort-test.yaml
@@ -22,23 +22,26 @@ jobs:
         with:
           fetch-depth: 0
           token: ${{ secrets.GITHUB_TOKEN }}
+
       - name: Validate PR
         run: |
-          # Checking for any workflow changes for security risks
-          if git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "^.github/workflows/"; then
-            echo "Workflow changes detected."
-
-            # Check if the PR author is allowed
+          # Check for any workflow changes
+          if git diff --name-only "${{ github.event.pull_request.base.sha }}" "${{ github.sha }}" | grep -q "^.github/workflows/"; then
+            echo "⚠️ Workflow changes detected."
+            # Get the PR author
             AUTHOR="${{ github.event.pull_request.user.login }}"
-            if [[ "$AUTHOR" != "misrasaurabh1" && "$AUTHOR" != "KRRT7" ]]; then
-              echo "Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
-              exit 1
+            echo "PR Author: $AUTHOR"
+            # Allowlist check
+            if [[ "$AUTHOR" == "misrasaurabh1" || "$AUTHOR" == "KRRT7" ]]; then
+              echo "✅ Authorized user ($AUTHOR). Proceeding."
+            elif [[ "${{ github.event_name }}" == "pull_request_target" && "${{ github.event.pull_request.state }}" == "open" ]]; then
+              echo "✅ PR triggered by 'pull_request_target' and is open. Assuming protection rules are in place. Proceeding."
             else
-              echo "Authorized user ($AUTHOR). Proceeding."
+              echo "⛔ Unauthorized user ($AUTHOR) attempting to modify workflows. Exiting."
+              exit 1
             fi
-          fiif git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.sha }} | grep -q "end-to-end-topological-sort-test.yaml"; then
-            echo "This workflow file has been modified. Exiting for security."
-            exit 1
+          else
+            echo "✅ No workflow file changes detected. Proceeding."
           fi
 
       - name: Set up Python 3.11 for CLI
diff --git a/.github/workflows/label-workflow-changes.yml b/.github/workflows/label-workflow-changes.yml
@@ -0,0 +1,55 @@
+name: PR Labeler
+
+on:
+  pull_request:
+    paths:
+      - ".github/workflows/**"
+    types: [opened, synchronize, reopened]
+
+jobs:
+  label-workflow-changes:
+    runs-on: ubuntu-latest
+    permissions:
+      pull-requests: write
+    steps:
+      - name: Label PR with workflow changes
+        uses: actions/github-script@v6
+        with:
+          script: |
+            const labelName = 'workflow-modified';
+
+            // Check if the label exists
+            try {
+              const labels = await github.rest.issues.listLabelsForRepo({
+                owner: context.repo.owner,
+                repo: context.repo.repo
+              });
+              
+              const labelExists = labels.data.some(label => label.name === labelName);
+              
+              if (!labelExists) {
+                // Create the label if it doesn't exist
+                await github.rest.issues.createLabel({
+                  owner: context.repo.owner,
+                  repo: context.repo.repo,
+                  name: labelName,
+                  color: 'f9d0c4',
+                  description: 'This PR modifies GitHub Actions workflows'
+                });
+                console.log(`Label "${labelName}" created`);
+              } else {
+                console.log(`Label "${labelName}" already exists`);
+              }
+            } catch (error) {
+              console.error(`Failed to check or create label: ${error.message}`);
+              throw error;
+            }
+
+            // Add the label to the PR
+            await github.rest.issues.addLabels({
+              issue_number: context.issue.number,
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              labels: [labelName]
+            });
+            console.log(`Label "${labelName}" added to the PR.`);
diff --git a/codeflash/verification/equivalence.py b/codeflash/verification/equivalence.py
@@ -45,21 +45,24 @@ def compare_test_results(original_results: TestResults, candidate_results: TestR
             superset_obj = True
         if not comparator(original_test_result.return_value, cdd_test_result.return_value, superset_obj=superset_obj):
             are_equal = False
-            logger.debug(
-                "File Name: %s\n"
-                "Test Type: %s\n"
-                "Verification Type: %s\n"
-                "Invocation ID: %s\n"
-                "Original return value: %s\n"
-                "Candidate return value: %s\n"
-                "-------------------",
-                original_test_result.file_name,
-                original_test_result.test_type,
-                original_test_result.verification_type,
-                original_test_result.id,
-                original_test_result.return_value,
-                cdd_test_result.return_value,
-            )
+            try:
+                logger.debug(
+                    "File Name: %s\n"
+                    "Test Type: %s\n"
+                    "Verification Type: %s\n"
+                    "Invocation ID: %s\n"
+                    "Original return value: %s\n"
+                    "Candidate return value: %s\n"
+                    "-------------------",
+                    original_test_result.file_name,
+                    original_test_result.test_type,
+                    original_test_result.verification_type,
+                    original_test_result.id,
+                    original_test_result.return_value,
+                    cdd_test_result.return_value,
+                )
+            except Exception as e:
+                logger.error(e)
             break
         if (original_test_result.stdout and cdd_test_result.stdout) and not comparator(
             original_test_result.stdout, cdd_test_result.stdout
