MetaMask
chore: Update Cursor issue analysis as a GitHub workflow (v0.2.0)
Description
It updates the previous GitHub workflow file with these things:
- Cursor CLI
- Creating a GitHub comment with a Cursor response
When there is a new issue that's either (sev1 or sev2), it's assigned to the team-confirmations and it's not from an external contributor, it will trigger a Cursor issue analysis.
Changelog
CHANGELOG entry: null
Related issues
Fixes:
Manual testing steps
Screenshots/Recordings
Before
After
Pre-merge author checklist
- [ ] I’ve followed MetaMask Contributor Docs and MetaMask Mobile Coding Standards.
- [ ] I've completed the PR template to the best of my ability
- [ ] I’ve included tests if applicable
- [ ] I’ve documented my code using JSDoc format if applicable
- [ ] I’ve applied the right labels on the PR (see labeling guidelines). Not required for external contributors.
Pre-merge reviewer checklist
- [ ] I've manually tested the PR (e.g. pull and build branch, run the app, test code being changed).
- [ ] I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and or screenshots.
[!NOTE] Enhances the issue-analysis workflow to run Cursor CLI on eligible issues (excluding external contributors), securely fetch/analyze content, and post a formatted analysis comment.
- CI Workflow (
.github/workflows/cursor-issue-analysis.yml):
- Trigger/Filter: Runs on
issues(opened/labeled) only when labeledteam-confirmationsand (Sev1-highorSev2-normal) and notexternal-contributor.- Analysis Flow:
- Skips if an existing comment contains
## Cursor Analysis.- Installs Cursor CLI; sets read-only Cursor permissions (
.cursor/permissions.jsondeniesShell(*)andWrite(*)).- Fetches issue details via
gh, base64-encodes for safe passing, builds a secured prompt with a warning, runscursor-agent, and base64-encodes the result.- Posts a formatted comment headed
## Cursor Analysiswith a caution note and footer.- Prompt (
.github/cursorPrompts/issue-analysis.md):
- Removes the
@cursordirective; retains concise analysis instructions.Written by Cursor Bugbot for commit 8413745c8863fff757be4eaf7b873866818a4c7b. This will update automatically on new commits. Configure here.
CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
🔍 Smart E2E Test Selection
- Selected E2E tags: None (no tests recommended)
- Risk Level: low
- AI Confidence: 98%
click to see 🤖 AI reasoning details
The changes are limited to GitHub Actions workflow files and a markdown prompt template:
.github/cursorPrompts/issue-analysis.md- Minor text change removing@cursorprefix from a prompt template.github/workflows/cursor-issue-analysis.yml- Updates to a GitHub Actions workflow for automated issue analysis using Cursor CLI
These changes:
- Do not modify any application source code
- Do not affect any E2E test infrastructure (Detox, wdio, appwright)
- Do not touch any core modules, controllers, or Engine
- Are purely CI/CD automation for issue triage/analysis
- Have no impact on wallet functionality, UI, or user flows
The workflow runs on issue events (labeled) and is completely independent of the mobile app build/test process. No E2E tests are needed to validate these changes as they don't affect the application being tested.
Quality Gate passed
Issues
0 New issues
0 Accepted issues
Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code
See analysis details on SonarQube Cloud
![sonarqubecloud[bot] avatar](https://avatars.githubusercontent.com/in/12526?v=4 "Published by a pub.dev verified publisher"){kind=small}