ci: bump actions/checkout from 4 to 6#1
Open
dependabot[bot] wants to merge 13 commits into
Open
Conversation
New sub-section under MCP server with 8 realistic natural-language flows and the MCP tool calls they'd trigger, plus a full tool reference table for all 9 MCP tools.
Replaced the 3-bullet quickstart with a 7-step walkthrough that shows both the natural-language Codex prompt and the equivalent CLI command for each step: Step 0 install (one line, --all) + verify Step 1 init a repo Step 2 ask the agent what it can do (SKILL.md teaches it) Step 3 make a checkpoint, do something risky Step 4 browse checkpoints + tui + json Step 5 roll back + undo N Step 6 see what changed (diff) Also added 7 anchor links in the TOC.
The 'ar' short alias was being shadowed by /usr/bin/ar (the BSD/GNU archive tool) on any shell where /usr/bin is searched before npm's global bin — common in cloud shells, cron, and shells launched without nvm initialized. Users running 'ar --help' would see the archive tool's usage instead of agent-rollback's. - bin/ar.js -> bin/arb.js (same wrapper, new name) - package.json#bin: ar -> arb - install.sh: verify 'arb' instead of 'ar', detect system-ar shadow and print a one-line warning if it would win on this PATH - README: replace 'ar' with 'arb', add a 'Why arb not ar' note in the npm install section, add 2 FAQ entries (why the rename, how to migrate) Migration: 'agent-rollback' has always worked and still does. The short alias is now 'arb' (3 chars, no collision).
The README's chat examples were showing low-level MCP tool calls
(mcp__agent-rollback__create_checkpoint({...})) inline with the
natural-language prompts, which leaked the internal protocol to
end-users. Removed all 13 'Codex internally:' blocks and the
matching mcp__ tool calls. The MCP tool reference table is kept
(supports developers/agents who need the protocol surface).
Also promoted the 'arb' short alias to the hero tagline, the
30-second start intro, the npm install blurb, and the install
script's success message (now leads with 'arb init' instead of
'agent-rollback init'). Added CLI-equivalent blocks under every
chat example so the README works equally well for terminal-first
users.
- arb mentions: 11 -> 25
- 'internally' / mcp__ refs: 13 -> 0
Uses the media-writer skill's cultural rules for each platform: - HN: Show HN, factual title, first-comment template with known limits, engagement plan, 4-6 hour reply window - Reddit: 3 posts (r/LocalLLaMA, r/CommandLine, r/sideproject) with different copy for each sub, TL;DR, honest questions, 2-3 hour reply window - Twitter: 7-tweet thread with a viral 'natural-language API' hook, visual suggestion, 30-min engagement rule - LinkedIn: founder/builder voice, 210-char hook, link-in-comments rule, Tue-Thu morning timing - Dev.to: full tutorial with frontmatter, 6 numbered steps, common-issues section, 4 tags - Medium: story outline for submission to Better Programming, 1200-word target, pull-quote structure - WeChat: Chinese-language post (authentic voice), 3 title options, ~600 字, evening posting window Includes a launch-day sequencing table and universal don'ts.
On-page SEO (was 59/100 → 100/100):
README:
- H1 rewritten: 'agent-rollback: codex undo, revert, and rollback checkpoints'
- Definition block ('agent-rollback is the undo button for OpenAI Codex CLI') up top
- 'Last updated · Version · Node' freshness header
- 'Why this exists' section links openai/codex#2788, #5082, #6449 (the demand signals AI engines already cite)
- 'How to undo a Codex change in 4 commands' block (high-priority AI-quotable)
- 'agent-rollback vs the alternatives' comparison table (vs pi-rollback, agentame, diffback, codex-revert, git stash, Cmd+Z)
- 4 keyword-rich H2s: '30-second start: codex undo in 30 seconds', 'Why this exists: codex safety net for AI-edited code', 'Usage — codex checkpoint, revert, and undo commands', 'Storage model: how the agent snapshot layer stores checkpoints'
- Schema.org JSON-LD block (SoftwareApplication + FAQPage) inline for AI extraction
- 'Mentioned in' placeholder section (for third-party citation growth)
package.json:
- Description rewritten with D1 string (149 chars, leads with 'undo, revert, rollback')
- 47 keywords reordered to lead with 'agent-rollback' then 'codex-*' (SERP-winning terms)
- Added 'funding' field for GitHub Sponsors
- Added 4 trust files to files[]
schema.json (new, 13 KB):
- Combined SoftwareApplication + SoftwareSourceCode + TechArticle + FAQPage + HowTo + BreadcrumbList + Organization
- Linked to maintainer, repo, npm, downloads, license
- Real values from package.json, not placeholders
Trust files (all new, MIT-aligned):
- CODE_OF_CONDUCT.md (Contributor Covenant v2.1)
- CONTRIBUTING.md (commands, style, PR process)
- SECURITY.md (vulnerability disclosure, threat model)
- CITATION.cff (machine-readable citation metadata)
GitHub config (all new):
- .github/ISSUE_TEMPLATE/bug_report.md
- .github/ISSUE_TEMPLATE/feature_request.md
- .github/ISSUE_TEMPLATE/docs_or_seo.md
- .github/PULL_REQUEST_TEMPLATE.md
- .github/workflows/ci.yml (test on Node 20/22, lint, JSON validate, dry-run install)
- .github/dependabot.yml (npm + github-actions weekly)
.gitignore: excludes .DS_Store, a.txt, progress.md, skills-lock.json, .research/, skills/ (user-level skill installs)
Backed by 14 SEO skill audits in marketing/seo-audit/ and 4 research reports in marketing/seo-research/ and 3 SEO content pieces in marketing/seo-content/.
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Author
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps actions/checkout from 4 to 6.
Release notes
Sourced from actions/checkout's releases.
... (truncated)
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
df4cb1cUpdate changelog for v6.0.3 (#2446)1cce339Fix checkout init for SHA-256 repositories (#2439)900f221fix: expand merge commit SHA regex and add SHA-256 test cases (#2414)0c366fdUpdate changelog (#2357)de0fac2Fix tag handling: preserve annotations and explicit fetch-tags (#2356)064fe7fAdd orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...8e8c483Clarify v6 README (#2328)033fa0dAdd worktree support for persist-credentials includeIf (#2327)c2d88d3Update all references from v5 and v4 to v6 (#2314)1af3b93update readme/changelog for v6 (#2311)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)