Comment left by Duo upon usage of Fix pipeline with Duo has no clue that it was posted by a bot
Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.
Summary
I used the Fix pipeline with Duo button on a failing MR pipeline. Duo ran an agent session which identified the root cause and posted a comment on the MR. However, this comment appears to have been posted from my user account. Also, there is no suffix / hint of any kind that the bot was posted by a bot who is using my credentials and not by me. This was confusing for reviewers.
Comment posted by Duo: https://ops.gitlab.net/gitlab-com/gl-infra/deployer/-/merge_requests/657#note_427403
Steps to reproduce
- Make a change which will fail the MR pipeline
- Open an MR with this change
- Confirm that the MR pipeline fails
- Use the
Fix pipeline with Duobutton on thePipelinestab in the MR - Notice that the comment posted by Duo appears to have been posted by the user who clicked on the
Fix pipeline with Duobutton. Notice that the text of the comment has no clue that the comment was posted by a bot.
Example Project
I ran into this bug on GitLab v18.5.1-ee over on the ops.gitlab.net GitLab instance which is accessible only to GitLab team members.
MR: https://ops.gitlab.net/gitlab-com/gl-infra/deployer/-/merge_requests/657#note_428798
What is the current bug behavior?
Duo posts a comment which appears to be from a real user and is indistinguishable from the user's other comments
What is the expected correct behavior?
Duo should add a message of some kind informing reviewers that the comment was posted by a bot and not by the user themself.
Relevant logs and/or screenshots
Link: https://ops.gitlab.net/gitlab-com/gl-infra/deployer/-/merge_requests/657#note_428798
Output of checks
Results of GitLab environment info
GitLab v18.5.1-ee running on ops.gitlab.net
Possible fixes
Not sure.
Patch release information for backports
Backfixes not required.
High-severity bug remediation
Not applicable.