Smart Healing: Stabilize CI & Automation

[SMSDAO]

Removes unsafe automation. Adds deterministic CI. Ensures env placeholder. Non-destructive.

[Copilot]

Pull request overview

Removes automated “self-healing/apply” workflows and replaces the existing multi-job pipeline with a minimal, deterministic CI workflow.

Changes:

• Deleted the Copilot-driven automation workflow that could mutate branches/branch protections and deploy from comments.
• Replaced the “Comprehensive Pipeline” CI with a single validate job that runs npm ci, lint, typecheck, tests, and build on Node 20 for main.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 3 comments.

File	Description
.github/workflows/copilot-universal-auto.yml	Removes comment-triggered automation that could apply changes, push fixes, deploy, or alter branch protection.
.github/workflows/ci.yml	Simplifies CI to a single deterministic validation job on Node 20.

[Copilot]

The workflow file appears to start with a UTF-8 BOM (invisible character before name). This can cause subtle parsing/tooling issues. Please remove the BOM so the first line begins with plain name: CI.

Suggested change

	name: CI
	name: CI

[Copilot]

npm ci requires a lockfile (e.g., package-lock.json/npm-shrinkwrap.json) and will fail if only package.json exists. Consider gating this step on the presence of a lockfile (or falling back to npm install) to keep CI deterministic but not brittle.

Suggested change

	if: hashFiles('package.json') != ''
	if: hashFiles('package-lock.json') != '' || hashFiles('npm-shrinkwrap.json') != ''
	- run: npm install
	if: hashFiles('package.json') != '' && hashFiles('package-lock.json') == '' && hashFiles('npm-shrinkwrap.json') == ''

[Copilot]

The previous CI invoked npm run type-check, but this workflow runs npm run typecheck. With --if-present, this can silently skip type checking if the repository script is still named type-check, reducing CI coverage. Align the script name with what the repo defines (e.g., run type-check) or run both explicitly.

Suggested change

	- run: npm run lint --if-present
	- run: npm run lint --if-present
	- run: npm run type-check --if-present

[github-actions]

⚠️ Railway Preview Deployment Skipped

Preview deployment was skipped because required secrets are not configured.

Required Secrets

Repository maintainers need to configure these secrets in repository settings:

• RAILWAY_TOKEN - Railway API authentication token
• RAILWAY_PROJECT_ID - Railway project ID (should be 2077acd9-f81f-47ba-b8c7-8bf6905f45fc)
• SOLANA_RPC_URL - Solana RPC endpoint URL
• WALLET_PRIVATE_KEY - Wallet private key (base58 format)
• ADMIN_USERNAME - Admin panel username
• ADMIN_PASSWORD - Admin panel password
• JWT_SECRET - JWT secret for authentication

How to Configure

1. Go to repository Settings → Secrets and variables → Actions
2. Add the required secrets
3. Re-run this workflow or push a new commit

For more information, see the Railway deployment documentation.