fix(miner): catch undocumented LOOPOVER_MINER_* env vars in DEPLOYMENT.md audit (#6601)#6719
Conversation
- Updated DEPLOYMENT.md to include additional environment variable configurations for the loopover miner, enhancing operator guidance. - Modified the deployment documentation audit to include a reverse check for undocumented LOOPOVER_MINER_* environment variables, ensuring all reads are documented. - Added tests to validate the new audit functionality, confirming that undocumented environment variables are flagged appropriately. Closes JSONbored#6601
|
Test comment from superagent scan |
|
Superagent didn't find any vulnerabilities or security issues in this PR. |
Co-authored-by: Cursor <cursoragent@cursor.com>
|
Caution 🛑 LoopOver review result - fixes requiredReview updated: 2026-07-16 23:47:16 UTC
Review summary Nits — 5 non-blocking
CI checks failing
Decision drivers
Context & advisory signals — never blocks the verdict
Review context
Contributor next steps
Signal definitions
🧪 Chat with LoopOverAsk LoopOver a question about this PR directly in a comment — grounded only in the same cached, public-safe facts shown above, never a new claim.
Full command reference: https://loopover.ai/docs/loopover-commands 🧪 Experimental — new and may change. 🟩 Safe / merged · 🟦 Advisory · 🟨 Held for review · 🟥 Blocked / closed 💰 Earn for open-source contributions like this. Gittensor lets GitHub contributors earn for the work they already do — register to start earning →. Checked by LoopOver, a quiet PR intelligence layer for OSS maintainers.
|
|
LoopOver is closing this pull request on the maintainer's behalf (CI is failing (validate, changes)). This is an automated maintenance action — to pursue this change, please open a new pull request with the issues resolved. Closed PRs may be analyzed later to improve review accuracy, but they are not automatically reopened or re-reviewed. |
Summary
DEPLOYMENT.mdaccuracy audit with a reverse-direction check: every realLOOPOVER_MINER_*read that is not_DB-suffixed and not documented fails CI by name (DEPLOYMENT.md accuracy audit never flags real env vars that are undocumented (one-directional only) #6601).reality.envReadsfrom the existingscanEnvVarTokensscan (no new source walking) and document the thirteen previously missing operator env knobs inDEPLOYMENT.md.MINER_*aliases stay reverse-exempt; the genericLOOPOVER_MINER_<NAME>_DBfamily stays reverse-exempt.Closes #6601
Scope
type(scope): short summaryConventional Commit format, for examplefix(api): restore profile access checks.CONTRIBUTING.mdand does not reintroduce GitHub Pages, VitePress,site/, orCNAME.Closes #123) — a linked open issue is required for every contributor PR.Validation
git diff --checknpm run actionlintnpm run typechecknpm run test:coveragelocally;codecov/patchrequires ≥99% coverage of the lines AND branches you changed (aim for 100% on your diff so CI variance does not fail near the threshold). Global coverage is a non-blocking trend with a loose 90% backstop, not the gate.npm run test:workersnpm run build:mcpnpm run test:mcp-packnpm run ui:openapi:checknpm run ui:lintnpm run ui:typechecknpm run ui:buildnpm audit --audit-level=moderateIf any required check was skipped, explain why:
test:ci/ coverage gate not run yet in this session; targeted unit tests (miner-deployment-docs-audit,check-miner-deployment-docs) andnpm run test:miner-deployment-docs-auditpassed. Run the full local gate before push.Safety
UI Evidencesection below with JPG/JPEG or PNG screenshots arranged as organized, captioned, clickable thumbnails. SVG screenshots are not used as review evidence. Review-only screenshots or recordings are not committed to the repository.UI Evidence
N/A — markdown/docs-audit change only; no visible UI surface.
Notes
LOOPOVER_MINER_prefix and excludes*_DB(generic pattern already in the doc). BareMINER_*remains forward-only.