Conversation
yrobla
requested review from
ChrisJBurns,
JAORMX,
amirejaz,
jerm-dro and
jhrozek
as code owners
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 7df1246a58
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
There was a problem hiding this comment.
Pull request overview
This PR adds operator-managed HMAC secret generation and injection for vMCP Session Management V2, removing the need for users to manually create and wire a Kubernetes Secret when enabling session token binding.
Changes:
- Operator: create
{vmcp-name}-hmac-secretwhensessionManagementV2: trueand mount it into the vMCP Deployment asVMCP_SESSION_HMAC_SECRET. - Tests: add controller-level unit tests for secret generation and a new E2E suite validating secret creation/injection behavior.
- Docs: document automatic secret management behavior when deploying via the ToolHive operator.
Reviewed changes
Copilot reviewed 5 out of 5 changed files in this pull request and generated 5 comments.
Show a summary per file
| File | Description |
|---|---|
cmd/thv-operator/controllers/virtualmcpserver_controller.go |
Ensures HMAC Secret exists (when SessionManagementV2 enabled) and adds generator helper. |
cmd/thv-operator/controllers/virtualmcpserver_deployment.go |
Injects VMCP_SESSION_HMAC_SECRET env var sourced from the generated Secret. |
cmd/thv-operator/controllers/virtualmcpserver_hmac_secret_test.go |
Unit tests for generateHMACSecret() output validity/uniqueness. |
test/e2e/thv-operator/virtualmcp/virtualmcp_hmac_secret_test.go |
E2E validation of Secret creation/shape/ownership and env var injection behavior. |
cmd/vmcp/README.md |
Adds operator-focused documentation for automatic secret management. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
test/e2e/thv-operator/virtualmcp/virtualmcp_hmac_secret_test.go
Outdated
Show resolved
Hide resolved
Codecov Report❌ Patch coverage is Additional details and impacted files@@ Coverage Diff @@
## main #4008 +/- ##
==========================================
- Coverage 68.60% 68.46% -0.15%
==========================================
Files 444 444
Lines 45178 45288 +110
==========================================
+ Hits 30995 31005 +10
- Misses 11781 11882 +101
+ Partials 2402 2401 -1 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
github-actions
bot
added
size/L
yrobla
force-pushed
the
issue-3867-v1
branch
2 times, most recently
from
910dabb to
32e911d
Compare
github-actions
bot
added
size/XL
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
Large PR Detected
This PR exceeds 1000 lines of changes and requires justification before it can be reviewed.
How to unblock this PR:
Add a section to your PR description with the following format:
## Large PR Justification
[Explain why this PR must be large, such as:]
- Generated code that cannot be split
- Large refactoring that must be atomic
- Multiple related changes that would break if separated
- Migration or data transformationAlternative:
Consider splitting this PR into smaller, focused changes (< 1000 lines each) for easier review and reduced risk.
See our Contributing Guidelines for more details.
This review will be automatically dismissed once you add the justification section.
github-actions
bot
added
size/XL
github-actions
bot
added
size/XL
github-actions
bot
dismissed
their stale review
Large PR justification has been provided. Thank you!
|
✅ Large PR justification has been provided. The size review has been dismissed and this PR can now proceed with normal review. |
There was a problem hiding this comment.
Pull request overview
Copilot reviewed 6 out of 6 changed files in this pull request and generated 3 comments.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
github-actions
bot
added
size/XL
github-actions
bot
added
size/XL
github-actions
bot
added
size/XL
Automatically generate and manage HMAC secrets when SessionManagementV2 is enabled in VirtualMCPServer resources, eliminating manual secret creation. Also add e2e and integration tests to validate the functionality Related-to: #3867
github-actions
bot
added
size/XL
Automatically generate and manage HMAC secrets when SessionManagementV2 is enabled in VirtualMCPServer resources, eliminating manual secret creation.
Large PR Justification
This is an atomic PR that implements a single functionality and it's adding comprehensive tests. Cannot be split.
Related-to: #3867