RidgwaySystems/tickets
1
0
Fork 0
Code Issues 40 Pull Requests Actions Packages Projects Releases Wiki Activity

[INFRA] Set up Deepseek AI merge request reviewer in a jail #41

New Issue
Closed
opened 2026-04-11 09:07:00 -05:00 by blakeridgway · 1 comment
blakeridgway commented 2026-04-11 09:07:00 -05:00
Owner
Copy Link

Description

Deploy a custom bot in a FreeBSD jail on srv01 that automatically reviews merge requests using the Deepseek API. This includes:

  • Create a minimal jail on srv01 (reference: FreeBSD Jails Are Simple and Easy)
  • Create a dedicated Gitea bot account for posting reviews
  • Write a bot service (Go or Python) that:
    • Listens for Gitea webhooks on merge request open/update events
    • Fetches the diff from the Gitea API
    • Sends the diff to the Deepseek API with a code review prompt
    • Posts review comments back to the merge request via Gitea API
  • Configure webhooks on repos in Gitea to trigger the bot
  • Store the Deepseek API key securely in Vaultwarden
  • Set up logging and error handling
  • Set up Zabbix monitoring for the bot service

Request Type

New Service

Justification

Automated code reviews will catch issues early and improve code quality across all repos.

Impact

No response

Additional Context

  • Dependencies:
    • [INFRA] Migrate srv01 from Proxmox to FreeBSD
    • [INFRA] Set up Vaultwarden in a jail (for API key storage)
### Description Deploy a custom bot in a FreeBSD jail on srv01 that automatically reviews merge requests using the Deepseek API. This includes: - Create a minimal jail on srv01 (reference: [FreeBSD Jails Are Simple and Easy](https://freebsdfoundation.org/blog/freebsd-jails-are-simple-and-easy/)) - Create a dedicated Gitea bot account for posting reviews - Write a bot service (Go or Python) that: - Listens for Gitea webhooks on merge request open/update events - Fetches the diff from the Gitea API - Sends the diff to the Deepseek API with a code review prompt - Posts review comments back to the merge request via Gitea API - Configure webhooks on repos in Gitea to trigger the bot - Store the Deepseek API key securely in Vaultwarden - Set up logging and error handling - Set up Zabbix monitoring for the bot service ### Request Type New Service ### Justification Automated code reviews will catch issues early and improve code quality across all repos. ### Impact _No response_ ### Additional Context - **Dependencies:** - [INFRA] Migrate srv01 from Proxmox to FreeBSD - [INFRA] Set up Vaultwarden in a jail (for API key storage)
blakeridgway added the
infrastructure
 label 2026-04-11 09:07:00 -05:00
blakeridgway commented 2026-04-11 19:40:05 -05:00
Author
Owner
Copy Link

This is implemented now.

Gitea PR Reviewer

This is implemented now. [Gitea PR Reviewer](https://git.ridgwaysystems.org/RidgwaySystems/gitea-pr-reviewer)
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
bug
Something is not working
day-to-day
A small routine task for the current sprint
feature
A request for new functionality
high
High priority — needs immediate attention
infrastructure
A change to infrastructure services, DNS, firewall, etc.
low
medium
planned-outage
A scheduled maintenance window or service outage
security
A security concern or vulnerability
No Label
infrastructure
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
blakeridgway
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: RidgwaySystems/tickets#41
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?