mirror of
https://github.com/xr843/Master-skill.git
synced 2026-05-10 13:26:25 +00:00
xianren
bd04ede817
Three governance-tier additions to convert Master-skill from a demo into a defensible long-lived project: **ETHICS.md** — mandatory governance document: - AI transparency: outputs are AI-synthesized, not masters' own words - Copyright tiers A (public domain, current 8), B (in-copyright, needs license), C (never admit: living masters, Buddhas/bodhisattvas, apocryphal figures), D (case-by-case) - Religious boundary: AI must refuse precept transmission, awakening certification, karmic diagnosis, spirit-medium framing, etc. - Dual-track content license: code MIT, master content CC BY-NC-SA 4.0, prompts CC BY 4.0 - Takedown + appeal channel with 48h / 7d SLAs **CHANGELOG.md** — Keep a Changelog format: - [Unreleased] captures the current governance + community + npm work - [0.3.0] retroactively documents the architectural rebuild (provenance, fidelity, NPX, multi-platform, HARD-GATE, two-stage review) - [0.2.0], [0.1.0] historical sections **CI fidelity smoke** — make HARD-GATE a real gate, not just documentation: - New `fidelity-smoke` job runs one basic-difficulty fixture against one master per PR; picks the master touched by the diff, else rotates by day-of-year for uniform coverage - Cost cap ≈ $0.05/PR (~10k-token system prompt × 1 request × Sonnet 4.6 pricing). Forks without ANTHROPIC_API_KEY get an advisory pass so external PRs can still land - `scripts/test-fidelity.py` gains `--max-tests N` flag; when capping, it sorts by difficulty (basic → intermediate → advanced) so smoke runs hit the reliable floor, not stress cases - Old `fidelity` job renamed to `fidelity-full` (still workflow_dispatch) README 声明 section now links to ETHICS.md so every reader sees the AI disclosure and boundary rules before copying master content. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
136 lines
4.2 KiB
YAML
136 lines
4.2 KiB
YAML
name: Validate & Test
|
||
|
||
on:
|
||
push:
|
||
paths:
|
||
- 'prebuilt/**'
|
||
- 'scripts/**'
|
||
- 'prompts/**'
|
||
- 'tools/**'
|
||
pull_request:
|
||
paths:
|
||
- 'prebuilt/**'
|
||
- 'scripts/**'
|
||
- 'prompts/**'
|
||
- 'tools/**'
|
||
|
||
jobs:
|
||
validate:
|
||
name: Validate SKILL.md & fidelity structure
|
||
runs-on: ubuntu-latest
|
||
steps:
|
||
- uses: actions/checkout@v4
|
||
|
||
- name: Set up Python
|
||
uses: actions/setup-python@v5
|
||
with:
|
||
python-version: '3.11'
|
||
|
||
- name: Install dependencies
|
||
run: pip install requests pypinyin pyyaml
|
||
|
||
- name: Lint SKILL.md frontmatter
|
||
run: python scripts/validate.py --strict
|
||
|
||
- name: Validate fidelity.jsonl structure
|
||
run: python scripts/validate-fidelity.py
|
||
|
||
- name: Dry-run fidelity tests
|
||
run: python scripts/test-fidelity.py --all --dry-run
|
||
|
||
fidelity-smoke:
|
||
name: Fidelity smoke (1 master × 1 fixture)
|
||
runs-on: ubuntu-latest
|
||
needs: validate
|
||
# Cost cap: one basic-difficulty question per PR, Sonnet 4.6 pricing
|
||
# with ~10k-token system prompt → under $0.05/PR. Forks have no secret
|
||
# access — treat missing secret as advisory pass so external PRs can land.
|
||
steps:
|
||
- uses: actions/checkout@v4
|
||
with:
|
||
fetch-depth: 0
|
||
|
||
- name: Set up Python
|
||
uses: actions/setup-python@v5
|
||
with:
|
||
python-version: '3.11'
|
||
|
||
- name: Install dependencies
|
||
run: pip install anthropic requests pypinyin
|
||
|
||
- name: Pick smoke target
|
||
id: pick
|
||
run: |
|
||
# If the PR touches a specific prebuilt master, smoke-test that one.
|
||
# Otherwise rotate by day-of-year so coverage stays uniform across 8.
|
||
BASE="${{ github.base_ref || 'main' }}"
|
||
CHANGED=$(git diff --name-only "origin/${BASE}...HEAD" 2>/dev/null \
|
||
| grep -oP 'prebuilt/\K[^/]+' | grep -v '^compare$' | head -n1 || true)
|
||
if [ -z "$CHANGED" ]; then
|
||
MASTERS=(xuanzang kumarajiva huineng zhiyi fazang yinguang ouyi xuyun)
|
||
IDX=$(( $(date +%j) % 8 ))
|
||
CHANGED=${MASTERS[$IDX]}
|
||
fi
|
||
echo "master=$CHANGED" >> "$GITHUB_OUTPUT"
|
||
echo "Smoke target: $CHANGED"
|
||
|
||
- name: Run fidelity smoke
|
||
env:
|
||
ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
|
||
run: |
|
||
if [ -z "${ANTHROPIC_API_KEY:-}" ]; then
|
||
echo "::warning::ANTHROPIC_API_KEY not configured — smoke is advisory on this run (expected on forks)."
|
||
echo '{"skipped": true, "reason": "no_api_key"}' > fidelity-smoke.json
|
||
exit 0
|
||
fi
|
||
python scripts/test-fidelity.py \
|
||
--master "${{ steps.pick.outputs.master }}" \
|
||
--max-tests 1 \
|
||
--json > fidelity-smoke.json
|
||
python - <<'PY'
|
||
import json, sys
|
||
with open("fidelity-smoke.json") as f:
|
||
data = json.load(f)
|
||
# --master returns a single-element list
|
||
r = data[0] if isinstance(data, list) else data
|
||
failed = r.get("failed", 0)
|
||
total = r.get("total", 0)
|
||
print(f"Fidelity smoke: {total - failed}/{total} passed for {r.get('master', '?')}")
|
||
sys.exit(1 if failed else 0)
|
||
PY
|
||
|
||
- name: Upload smoke results
|
||
if: always()
|
||
uses: actions/upload-artifact@v4
|
||
with:
|
||
name: fidelity-smoke-${{ github.run_id }}
|
||
path: fidelity-smoke.json
|
||
if-no-files-found: ignore
|
||
|
||
fidelity-full:
|
||
name: Fidelity tests — full suite (manual only)
|
||
runs-on: ubuntu-latest
|
||
if: github.event_name == 'workflow_dispatch'
|
||
needs: validate
|
||
steps:
|
||
- uses: actions/checkout@v4
|
||
|
||
- name: Set up Python
|
||
uses: actions/setup-python@v5
|
||
with:
|
||
python-version: '3.11'
|
||
|
||
- name: Install dependencies
|
||
run: pip install anthropic requests pypinyin
|
||
|
||
- name: Run fidelity tests
|
||
env:
|
||
ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
|
||
run: python scripts/test-fidelity.py --all --json > fidelity-results.json
|
||
|
||
- name: Upload results
|
||
uses: actions/upload-artifact@v4
|
||
with:
|
||
name: fidelity-results
|
||
path: fidelity-results.json
|