chore: CodeRabbit triage for v0.2.8

[github-actions]

CodeRabbit Triage: v0.2.8

Metric	Value	Δ vs Previous
PRs analyzed	13	-17 ↓
Critical issues	3	-20 ↓
Major issues	35	-85 ↓
Issues per PR	2.9	-1.9 ↓
Coverage gaps	32	-93 ↓

Trend

Release	Date	PRs	Critical	Major	Per PR	Gaps
v0.2.0	2026-04-10	30	23	120	4.8	125
v0.2.8	2026-05-21	13	3	35	2.9	32

Top Uncovered Patterns

1. Credential sidecar authentication mechanism is undefined. (3 occurrences, impact: 9) — other
2. Fix TypeScript compilation error in mock typing. (2 occurrences, impact: 8) — frontend
3. Do not silently drop server-version failure states (2 occurrences, impact: 6) — api-server, cli
4. Prefer the current user's credential file before scanning the directory. (2 occurrences, impact: 6) — runner
5. Credential bootstrap wrapper is missing for this sidecar flow (also applies to google/Dockerfile). (1 occurrences, impact: 4) — other
6. Handle the marshal/write error paths instead of discarding them. (1 occurrences, impact: 3) — api-server
7. Avoid printing raw errors in user-facing version output (1 occurrences, impact: 3) — cli
8. Document git credential HTTP endpoint in MCP server spec or clarify relation to MCP transport. (1 occurrences, impact: 3) — other
9. Add gitlab-mcp to the MCP Servers table. (1 occurrences, impact: 3) — other
10. Update legacy runner credential flow references to match sidecar isolation (1 occurrences, impact: 3) — other

Recommended Guardrails

CLAUDE.md Conventions

• Credential sidecar authentication mechanism is undefined.: Enforce via convention (needs specific rule)
• Fix TypeScript compilation error in mock typing.: Enforce via convention (needs specific rule)
• Do not silently drop server-version failure states: Enforce via convention (needs specific rule)
• Prefer the current user's credential file before scanning the directory.: Enforce via convention (needs specific rule)
• Credential bootstrap wrapper is missing for this sidecar flow (also applies to google/Dockerfile).: Enforce via convention (needs specific rule)
• Handle the marshal/write error paths instead of discarding them.: Enforce via convention (needs specific rule)
• Avoid printing raw errors in user-facing version output: Enforce via convention (needs specific rule)
• Document git credential HTTP endpoint in MCP server spec or clarify relation to MCP transport.: Enforce via convention (needs specific rule)
• Add gitlab-mcp to the MCP Servers table.: Enforce via convention (needs specific rule)
• Update legacy runner credential flow references to match sidecar isolation: Enforce via convention (needs specific rule)

Hookify Rules

• PreToolUse hook for credential sidecar authentication mechanism is undefined. enforcement in TypeScript code
• PreToolUse hook for fix typescript compilation error in mock typing. enforcement in TypeScript code
• PreToolUse hook for do not silently drop server-version failure states enforcement in TypeScript code
• PreToolUse hook for prefer the current user's credential file before scanning the directory. enforcement in Python code
• PreToolUse hook for credential bootstrap wrapper is missing for this sidecar flow (also applies to google/dockerfile). enforcement in TypeScript code
• PreToolUse hook for handle the marshal/write error paths instead of discarding them. enforcement in TypeScript code
• PreToolUse hook for avoid printing raw errors in user-facing version output enforcement in TypeScript code
• PreToolUse hook for document git credential http endpoint in mcp server spec or clarify relation to mcp transport. enforcement in TypeScript code
• PreToolUse hook for add gitlab-mcp to the mcp servers table. enforcement in TypeScript code
• PreToolUse hook for update legacy runner credential flow references to match sidecar isolation enforcement in TypeScript code

[netlify]

✅ Deploy Preview for cheerful-kitten-f556a0 canceled.

Name	Link
🔨 Latest commit	495e966
🔍 Latest deploy log	https://app.netlify.com/projects/cheerful-kitten-f556a0/deploys/6a175f0eb788fb0009f0d896