Skip to content

feat(coderd/x/chatd): inject personal skills into chats#25367

Closed
ibetitsmike wants to merge 1 commit into
graphite-base/25367from
mike/personal-skills-chatd
Closed

feat(coderd/x/chatd): inject personal skills into chats#25367
ibetitsmike wants to merge 1 commit into
graphite-base/25367from
mike/personal-skills-chatd

Conversation

@ibetitsmike

@ibetitsmike ibetitsmike commented May 14, 2026
edited
Loading

Copy link
Copy Markdown
Collaborator

Created by Mux on behalf of Mike.

Stack Context

This stack splits experimental personal skills into smaller reviewable PRs. This PR builds on #25366 and completes the feature wiring.

Stack order:

  1. feat: add personal skill resolver #25362 personal skill resolver
  2. feat: add personal skill storage, API, and SDK #25363 storage, permissions, and audit plumbing
  3. feat: add personal skill API and SDK #25364 API and SDK
  4. test: cover personal skill API #25365 API test coverage
  5. feat: support personal skills in chats #25366 chattool personal skill reads
  6. feat(coderd/x/chatd): inject personal skills into chats #25367 chatd prompt and tool wiring

What?

Injects personal skill metadata into chatd prompts, refreshes skill aliases when workspace context changes, and registers the skill-reading tools when personal or workspace skills are available.

Why?

This is the final integration point that makes stored personal skills available to chats without syncing them into workspace filesystems.

This was referenced May 14, 2026
Merged
Merged
Closed
@ibetitsmike Graphite App

ibetitsmike commented May 14, 2026
edited
Loading

Copy link
Copy Markdown
Collaborator Author

Warning

This pull request is not mergeable via GitHub because a downstack PR is open. Once all requirements are satisfied, merge this PR as a stack on Graphite.
Learn more

This stack of pull requests is managed by Graphite. Learn more about stacking.

This was referenced May 14, 2026
Merged
Merged
chatgpt-codex-connector[bot]
chatgpt-codex-connector Bot reviewed May 14, 2026
View reviewed changes

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 5acacdf669

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Comment thread coderd/x/chatd/chatd.go
Comment on lines +6546 to +6547
Roles: rbac.RoleIdentifiers{rbac.RoleMember()},
Scope: rbac.ScopeAll,

@chatgpt-codex-connector chatgpt-codex-connector Bot May 14, 2026

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P1 Badge Preserve request scopes when loading personal skills

userSkillContext fabricates a new subject with RoleMember and ScopeAll, then uses it for ListUserSkillMetadataByUserID and GetUserSkillByUserIDAndName. In chats started with a restricted API key, this bypasses the original token scopes, so a turn can read personal skills even when the caller did not grant user_skill:read. That is a privilege escalation relative to API key permissions; the chat worker should carry forward the admitted actor scope (or a persisted scoped subject) instead of unconditionally widening to ScopeAll.

Useful? React with 👍 / 👎.

@ibetitsmike ibetitsmike changed the base branch from mike/personal-skills-chattool to graphite-base/25367 May 14, 2026 20:41
@ibetitsmike

ibetitsmike commented May 14, 2026

Copy link
Copy Markdown
Collaborator Author

Created by Mux on behalf of Mike.

Closing because this chatd-only PR has been folded into #25366. That keeps the stack hermetic, since #25366 now contains the chattool and chatd integration together.

@ibetitsmike ibetitsmike deleted the mike/personal-skills-chatd branch May 14, 2026 20:42
@github-actions github-actions Bot locked and limited conversation to collaborators May 14, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

Assignees

@ibetitsmike ibetitsmike

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ibetitsmike