ENGINEERING
Block dependency-upgrade PRs when a HuggingFace model license changes
Watches the HuggingFace model cards your repos depend on, and when a model's license changes it fails the open dependency-upgrade pull request and posts the diff so a human can…
How it runs
The automated pipeline, trigger to output.
- TriggerDependency-upgrade PR opened or updatedGitHub
- ActionRead pinned HuggingFace models from repo manifestGitHub
- ActionFetch current license for each model cardHugging Face
- ActionLook up last-cleared license per modelPostgres
- LogicBranch: did any license change?
- ActionSet PR commit status pass/failGitHub
- OutputComment old vs new license on the PRGitHub
What it does
This workflow keeps your dependency-bump pull requests honest about licensing. It reads the list of HuggingFace models a repo pins, fetches each model card's current license, and compares it to the license recorded the last time the model was cleared. If a license changed (for example Apache-2.0 to a custom non-commercial RAIL license), it marks the upgrade PR's status check as failed and comments the before/after license so nobody merges a now-restricted model by accident.
When to use it
Use it on any repo that ships HuggingFace models in production and runs automated dependency upgrades (Dependabot, Renovate, or a manual bump). It's the guardrail that stops a silent license downgrade from riding in on a routine version bump.
How it works
- 1A pull request labeled `deps` opens or updates on GitHub.
- 2The workflow reads the repo's model manifest to list every pinned HuggingFace model.
- 3It fetches each model card's license field from HuggingFace.
- 4A branch compares each license against the last-cleared value stored in Postgres.
- 5If any license changed, it sets the PR commit status to failed; otherwise it passes.
- 6It posts a GitHub PR comment listing each model and its old vs new license.
Set it up
What you configure once, before turning it on.
- 1Connect GitHubRepos, issues, pull requests, actions.
- 2Connect Hugging FaceModels, datasets, spaces — the open-source hub.
- 3Connect PostgresAny Postgres URL — query, write, migrate.
- 4Set each agent's modelWe leave models unset so you pick the tier — fast + cheap, or top-quality.
- 5Tune it to your dataEdit the prompts, filters, and field mappings so it matches how your team works.
- 6Test, then turn it onRun once against a sample, confirm the output, then enable the trigger.
More Engineering workflows
Upgrade Impact Router to Module Code Owners
Maps a dependency-bump PR's affected modules to their CODEOWNERS, then DMs each owner on Slack with only the changelog slice that touches code they own.
Re-Voice IVR Prompts on Phone-Tree Config Merge
When a phone-tree config change merges in GitHub, regenerates the ElevenLabs audio for any prompt whose script changed in the diff and opens a follow-up PR adding the new audio…
Agent reviews model-license fit and suggests compliant swaps on the PR
When a PR adds a Hugging Face model, an agent reads the model card and license, judges fit against your commercial-use policy.
Scan for deprecated endpoints and email consumers a weekly sunset countdown
On a weekly schedule, scans the OpenAPI spec for endpoints marked deprecated with a sunset date, and emails each consuming team a countdown of how many days remain before removal.
Publish a versioned API changelog to Confluence on each release tag
On a new semver release tag, gathers the contract changes since the last release and writes a clean.
Gate breaking API PRs behind downstream consumer acknowledgement
When a PR introduces a breaking contract change, comments the impact summary back on the PR, applies a blocking label.
Run it inside a business
This workflow drops into a full company template. Import the org, and this is one of the playbooks its agents run.
Run this workflow in your colony.
14-day trial. No DevOps. No Sales call. Provisioned in under a minute.