Skip to content

ci: add weekly CI health check with Slack notification #3191

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
QuantumExplorer merged 11 commits into from
Mar 5, 2026
Merged

ci: add weekly CI health check with Slack notification #3191

Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
4abcdca
ci: add weekly CI health check with Slack notification
lklimek Mar 5, 2026
e59d209
ci: use gh subcommands and auto-detect default branch
lklimek Mar 5, 2026
89a98cd
ci: restrict GITHUB_TOKEN to read-only permissions
lklimek Mar 5, 2026
2326d81
ci: temporary test trigger on push + echo curl
lklimek Mar 5, 2026
8127aad
ci: add checkout step for gh repo context
lklimek Mar 5, 2026
e80ee53
ci: check job-level conclusions, not just workflow-level
lklimek Mar 5, 2026
9ef6633
Revert "ci: check job-level conclusions, not just workflow-level"
lklimek Mar 5, 2026
cd580d8
ci: enable Slack notification (remove echo dry-run)
lklimek Mar 5, 2026
9cc58e0
ci: fix Slack message formatting (newlines and bold markers)
lklimek Mar 5, 2026
0eaf3d9
ci: remove temporary push trigger for testing
lklimek Mar 5, 2026
4251744
ci: replace cursing with pirate speech in Slack message
lklimek Mar 5, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
77 changes: 77 additions & 0 deletions .github/workflows/weekly-ci-health.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,77 @@
name: "Weekly CI Health Check"

on:
schedule:
- cron: "0 8 * * 1" # Monday 8:00 UTC
workflow_dispatch: {}

permissions:
actions: read
contents: read

jobs:
check-ci-health:
name: Check last workflow runs on default branch
runs-on: ubuntu-24.04
steps:
- name: Checkout (gh needs repo context)
uses: actions/checkout@v4
with:
sparse-checkout: .
sparse-checkout-cone-mode: true

- name: Check all workflows and notify Slack on failures
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SLACK_WEBHOOK_URL: ${{ secrets.SLACK_CI_WEBHOOK_URL }}
run: |
# Auto-detect default branch
BRANCH=$(gh repo view --json defaultBranchRef --jq '.defaultBranchRef.name')
echo "Default branch: ${BRANCH}"

# Get all active workflow names
mapfile -t WORKFLOWS < <(gh workflow list --json name --jq '.[].name' -L 100)
echo "Found ${#WORKFLOWS[@]} active workflows"

# Check each workflow's last run on the default branch
for wf_name in "${WORKFLOWS[@]}"; do
run_json=$(gh run list \
-w "$wf_name" \
-b "$BRANCH" \
--limit 1 \
--json conclusion,url,updatedAt,workflowName \
--jq '.[0] // empty' 2>/dev/null || true)

[ -z "$run_json" ] && continue

conclusion=$(echo "$run_json" | jq -r '.conclusion // "in_progress"')
run_url=$(echo "$run_json" | jq -r '.url')
updated=$(echo "$run_json" | jq -r '.updatedAt')

echo "${wf_name}: ${conclusion} (${updated})"

if [ "$conclusion" = "failure" ]; then
printf '%s|%s|%s\n' "$wf_name" "$run_url" "$updated" >> /tmp/failures.txt
fi
done

if [ -s /tmp/failures.txt ]; then
BLOCKS=""
NL=$'\n'
while IFS='|' read -r name url updated; do
BLOCKS="${BLOCKS}• *<${url}|${name}>* — failed (${updated})${NL}"
done < /tmp/failures.txt

TEXT=":pirate_flag: *Arrr! The CI be takin' on water again!*${NL}Failures on \`${BRANCH}\`:${NL}${NL}${BLOCKS}"
PAYLOAD=$(jq -n --arg text "$TEXT" '{text: $text}')

curl -sf -X POST "$SLACK_WEBHOOK_URL" \
-H 'Content-Type: application/json' \
-d "$PAYLOAD"

echo ""
echo "::warning::CI failures detected — Slack notification sent"
else
echo ""
echo "All workflows healthy on ${BRANCH}"
fi
Loading