Skip to content

ci: add frontend UI registry audit workflow#2526

Merged
c-julin merged 2 commits into
masterfrom
jc/ux-1330-frontend-ui-audit
Jun 24, 2026
Merged

ci: add frontend UI registry audit workflow#2526
c-julin merged 2 commits into
masterfrom
jc/ux-1330-frontend-ui-audit

Conversation

@c-julin

@c-julin c-julin commented Jun 23, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

What

Adds a Frontend UI Audit GitHub Actions workflow that runs on PRs touching frontend/src/**. It audits frontend code against the redpanda-data/ui-registry for:

  • outdated / locally-modified registry components vs the latest release
  • off-token palette colours (e.g. red-500, indigo-300) instead of semantic tokens
  • ad-hoc utility classes (e.g. text-[11px], bg-[#0f1626])

Findings are posted as a sticky PR comment, and the job fails if any are found (--fail-on any).

Why this shape

Modeled on the proven cloudv2 registry-drift.yml. The key correctness point: audit-changes.ts reads packages/registry/registry.json, which is a gitignored build artifact — so the workflow runs bun install + bun run registry:build in the checked-out ui-registry before invoking the audit. Without this step the audit fails with ENOENT.

Differences from cloudv2 (intentional):

  • --fail-on any (console blocks PRs) vs cloudv2's informational --fail-on none.
  • Auth via UI_REGISTRY_TOKEN/GITHUB_TOKEN rather than cloudv2's AWS Secrets Manager bot token (different infra).

c-julin added 2 commits June 23, 2026 14:46
@c-julin
ci: add frontend UI registry audit workflow
c04ddb0 
Audits PRs touching frontend/src against the redpanda-ui registry for
outdated/locally-modified components and off-token colour/utility usage,
posting a sticky PR comment and failing on findings.

Builds the registry manifest (packages/registry/registry.json is a
gitignored build artifact) before running the lookout audit-changes CLI,
mirroring the proven cloudv2 registry-drift workflow.

UX-1330
@c-julin
ci: check out private ui-registry with AWS actions bot token
8ce0c74 
The job GITHUB_TOKEN is scoped to console only, so checking out the
private redpanda-data/ui-registry repo 404s ('Repository not found').
Fetch the org-wide actions bot token from AWS Secrets Manager and use it
for the checkout, mirroring fork-pr-dispatch.yml and cloudv2's
registry-drift workflow. Adds id-token: write for OIDC.

UX-1330
@github-actions

github-actions Bot commented Jun 23, 2026

Copy link
Copy Markdown
Contributor

Clean — no registry drift, off-token colours, or ad-hoc classes

App: frontend · Scope: diff vs origin/master · Files: 0

Count
⚠️ Outdated registry components 0
🛠 Locally-modified components 0
❓ Unknown to registry 0
🎨 Off-token palette colours 0
🔢 Ad-hoc utility classes 0

Generated by lookout audit-changes.

@c-julin c-julin changed the title ci: add frontend UI registry audit workflow (UX-1330) ci: add frontend UI registry audit workflow Jun 23, 2026
@c-julin c-julin merged commit c67053c into master Jun 24, 2026
6 checks passed
@c-julin c-julin deleted the jc/ux-1330-frontend-ui-audit branch June 24, 2026 12:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@malinskibeniamin malinskibeniamin malinskibeniamin approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@c-julin @malinskibeniamin