Add minimal GitHub profile reviews API

[Copilot]

All Latest PR Feedback Addressed

API Code Improvements:

• Removed all redundant docstrings from helper functions
• Removed all redundant comments (replaced with informative logging)
• Used walrus operator in parse_eggtray_url for cleaner code
• Changed parse_summary_json to raise instead of log when JSON is malformed
• Simplified GitHub client creation - pass GitHub(api_key) directly (handles None internally)
• Changed request.app["github_api_key"] to request.app["github_client"]

Test Improvements:

• Renamed fixture from cli to api
• Converted fixture file from JSON to markdown (eggtray_comment.md)
• Used pytest.mark.parametrize for all pure function tests with multiple inputs
• Simplified mocks - use MagicMock(attr=value) instead of separate assignments
• Removed all test docstrings (names are descriptive enough)
• Added empty lines between setup and asserts
• Reduced number of asserts per test (whole response assertions)
• Removed mock_ prefix from variables - named by what they represent
• Moved RequestFailed import to top of file
• Simplified test structure - direct fixture loading with Path
• Pass github_client in app fixture to avoid patching
• Added test for invalid JSON parsing (raises exception)

Dependencies:

• Removed beautifulsoup4 (not needed)

Documentation (AGENTS.md):

• Added guideline about redundant docstrings
• Expanded walrus operator examples
• Added pytest.mark.parametrize guideline
• Added test structure guidelines (empty lines, minimal asserts)
• Added guideline against test docstrings
• Added guideline for naming in tests (no mock_ prefix)
• Added pathlib preference over os.path
• Added directness over abstraction in tests

All 62 tests passing ✓

Original prompt

---

This section details on the original issue you should resolve

<issue_title>Implement minimal GitHub profile reviews API</issue_title>
<issue_description>I decided that the backend part of juniorguru/junior.guru#1630 (comment) will live as part of the chick project. This means repurposing the project not only as a Discord bot, but also as a minimal backend API which serves tasks beyond Discord as well.

• Edit README so that it reflects the pivot:
  • "A real-time, synchronous junior.guru Discord bot and API."
  • The purpose of the API is to provide better user experience for website visitors, as the main website is a purely static site. If it doesn't work, the site should fall back to letting the user to do the job themselves manually.
  • The same as the Discord bot part, the API should have no state. It should only transfer information to and from other services, such as GitHub.
  • In places where we refer to the whole project, let's use "chick" instead of "bot" as a common name: "The main asynchronous codebase should monitor whether chick is up and running. If it's not, it should fail the build, but non-critically (similar to checking broken links in HTML)."
• GITHUB_API_KEY will be needed for the API part to work.

Currently chick already contains a HTTP server, which reports uptime status. Keep that. Apart from that, let's add two more routes:

• "POST /checks/{github_username}" (no data) creates a new GitHub Issue on https://github.com/juniorguru/eggtray similar to Zpětná vazba na profil @bashynx eggtray#260, but the initial text will be "Z webu junior.guru přišel požadavek na zpětnou vazbu k profilu @{username}." It returns JSON with two items: URL of the issue and its number as an integer.
• "GET /checks/{issue number} tries to load the issue from GitHub API and returns 404 if it doesn't exist. If it exists, it returns 202 if the check didn't finish yet. It returns 200 if the check did finish (no summary comment is present), and alonside it will return the JSON from the last summary comment available.

Use the https://github.com/yanyongyu/githubkit library as an SDK for working with GitHub API. Be resilient - prefer try/except around requests and logging error over raising (unless in debug mode) as it's important that the service stays alive and doesn't crash.</issue_description>

Comments on the Issue (you are @copilot in this section)

• Fixes Implement minimal GitHub profile reviews API #160

---

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

[honzajavorek]

Look at my comments. Also:

• When your work is done, always run uv run ruff format ., uv run ruff check --fix ., and uv run pytest before you really call it done.

Add this to AGENTS.md (if not present already, create it).

[Copilot]

Look at my comments. Also:

• When your work is done, always run uv run ruff format ., uv run ruff check --fix ., and uv run pytest before you really call it done....

Created AGENTS.md with instructions to run ruff format, ruff check --fix, and pytest before completing tasks. All commands have been run - 48 tests passing. (d8b35cf)

[honzajavorek]

See my comments. Also see this advice on how to test githubkit code from the creator of the library - source yanyongyu/githubkit#98 (comment):

As you mentioned, the easiest way is to record the response data and save it (dict, JSON file, etc.). You can export the api response data by resp.text (raw str data) or resp.json() (json parsed dict/list).

After save the response data, you could rebuild the validated data with powerful Pydantic methods (Docs). For example:

from pydantic import TypeAdapter
from githubkit.versions.latest.models import SocialAccount

accounts: list[SocialAccount] = TypeAdapter(list[SocialAccount]).validate_json(json_content)
accounts: list[SocialAccount] = TypeAdapter(list[SocialAccount]).validate_python(python_list)

Record this approach to AGENTS.md as preferred over mocking and use it in tests where possible.

[honzajavorek]

Also don't forget about #161 (comment)

[Copilot]

See my comments. Also see this advice on how to test githubkit code from the creator of the library - source yanyongyu/githubkit#98 (comment):

As you mention...

Recorded githubkit testing approach to AGENTS.md with guidance to prefer fixtures over mocking, including Pydantic TypeAdapter examples from library creator. (c683f98)

[Copilot]

Also don't forget about #161 (comment)

The referenced comment (2773332879) appears to be about using pytest.mark.parametrize, which has been fully addressed in this commit. (43bc415)

[honzajavorek]

I tried to remove some commas to see if the formatter squashes the lines, so apply those suggestions and let's see, but if the code folds and the formatter re-adds the commas, it's okay.

Let's rename github_client to github everywhere.

[honzajavorek]

Man, this is laughable. Please. I'll write it for you, but put it in your AGENTS.md somehow and learn how to use it.

if match := ...:
    return match.groups()
raise ValueError(...)

[honzajavorek]

I just realized this won't work if we set different eggtray repo url. But it would be good enough if we just treat owner and repo as placeholders, we don't need to match them exactly. So don't add any arguments, just allow the owner and repo be variable in the regular expression.

[honzajavorek]

It's ok to set these properties even if they evaluate as None, so simplify it like this:

response_data = {"status": ..., "summary": parse_summary_json(comment_body), "actions_url": extract_actions_url(comment_body)}

Note that I also suggest renaming "data" to "summary".

[honzajavorek]

Suggested change

	status=202,
	status=202

[honzajavorek]

Suggested change

	status=500,
	status=500

[honzajavorek]

Suggested change

	assert "testuser" in call_kwargs["body"]
	assert "@testuser" in call_kwargs["body"]

This is actually important to test.

[honzajavorek]

Maybe we could have it as a pytest fixture:

@pytest.fixture
def regular_comment():
    return MagicMock(body="Just a regular comment")

Then use it across the tests.

[honzajavorek]

Could be another pytest fixture maybe? summary_comment?

[honzajavorek]

Rename this file to summary_comment.md

[honzajavorek]

Let's parametrize this test with just two values, and let's test that it works completely the same with state="closed" as with state="open". That way we'll verify the mechanics are dependent on summary comment and not state of the issue.

[honzajavorek]

@copilot Address my comments.

[Copilot]

Pull request overview

This PR repurposes the chick project from a pure Discord bot into a Discord bot + API, adding two new API endpoints for GitHub profile reviews. The API provides progressive enhancement for the static junior.guru website, allowing users to request and check GitHub profile reviews via the eggtray automation system.

Changes:

• Added POST /checks/{github_username} endpoint to create GitHub issues for profile review requests
• Added GET /checks/{issue_number} endpoint to check the status and retrieve results of profile reviews
• Updated project description and README to reflect the bot + API architecture

Reviewed changes

Copilot reviewed 8 out of 9 changed files in this pull request and generated 6 comments.

Show a summary per file

File	Description
pyproject.toml	Added githubkit and pytest-aiohttp dependencies
uv.lock	Dependency lock file updates for new packages
README.md	Updated description to reflect "Discord bot and API" pivot, added API endpoints to features list
AGENTS.md	New file documenting code style conventions for AI agents (logging, walrus operators, minimal docstrings, test structure)
src/jg/chick/main.py	Added GitHub API key and eggtray URL configuration options, web app initialization
src/jg/chick/web.py	Removed (functionality moved to api.py)
src/jg/chick/api.py	New API module with uptime endpoint and two GitHub profile review endpoints, plus helper functions for parsing and error handling
tests/test_api.py	Comprehensive test coverage for all new API functionality using pytest parametrize and realistic fixtures
tests/fixtures/eggtray_comment.md	Real GitHub comment fixture with JSON summary data for testing

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The API endpoints lack CORS (Cross-Origin Resource Sharing) configuration. According to the README, these endpoints will be called from the junior.guru static website. Without CORS headers, browsers will block these cross-origin API requests. Consider adding aiohttp-cors middleware or manually setting appropriate CORS headers (Access-Control-Allow-Origin, etc.) to enable the static website to call these endpoints.

[Copilot]

The github_username parameter lacks input validation. Malicious or malformed usernames (e.g., containing special characters, being excessively long, or empty) could be passed directly to the GitHub API or used in issue titles/bodies, potentially causing issues or abuse. Consider validating that the username matches GitHub's username format (alphanumeric plus hyphens, 1-39 characters, cannot start/end with hyphen).

[Copilot]

The extract_actions_url function is hardcoded to only match URLs from the juniorguru/eggtray repository, but eggtray_url is configurable. If the eggtray_url is changed to a different repository, the actions URL extraction will fail silently. Consider making the regex pattern dynamic based on the configured eggtray_url, or document this limitation clearly.

[Copilot]

The generate_error_hash function includes the current timestamp in the error hash. This means the same error occurring at different times will have different hashes, making it harder to track recurring issues. Consider removing the timestamp from the hash calculation if the goal is to identify similar errors, or keep only the date portion (without time) for daily grouping.

Suggested change

	error_string = (
	f"{datetime.now(UTC).isoformat()}-{type(error).__name__}-{str(error)}"
	)
	error_string = f"{type(error).__name__}-{str(error)}"

[Copilot]

The test expects any Exception to be raised when parsing invalid JSON, but parse_summary_json will specifically raise json.JSONDecodeError (a subclass of ValueError). The test should be more specific about which exception type is expected, e.g., pytest.raises(json.JSONDecodeError), to properly document and verify the actual behavior.

[honzajavorek]

@copilot Address comments from both my and copilot review.