fix: derive commit identity from GitHub token owner

manuelkiessling · manuelkiessling · commit 7516f677963d · 2026-02-23T12:06:52.000+01:00
Replace repository-history-based git author/committer resolution with token-owner identity lookup via GitHub /user so commit attribution matches the configured product token owner. When the profile email is unavailable, derive a deterministic noreply address (&lt;id&gt;+&lt;login&gt;@users.noreply.github.com) while preserving stable name fallback to login.

Also keep env propagation unchanged for local and containerized runs (GITHUB_TOKEN, GH_TOKEN, GIT_AUTHOR_*, GIT_COMMITTER_*), add a dedicated TokenOwnerProfile DTO to satisfy boundary typing rules, and extend RealCursorCliAgentDriver tests to cover profile identity and noreply fallback behavior.
diff --git a/src/LlmIntegration/Infrastructure/Service/Dto/TokenOwnerProfile.php b/src/LlmIntegration/Infrastructure/Service/Dto/TokenOwnerProfile.php
@@ -0,0 +1,16 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\LlmIntegration\Infrastructure\Service\Dto;
+
+readonly class TokenOwnerProfile
+{
+    public function __construct(
+        public int    $id,
+        public string $login,
+        public string $name,
+        public string $email,
+    ) {
+    }
+}
diff --git a/src/LlmIntegration/Infrastructure/Service/RealCursorCliAgentDriver.php b/src/LlmIntegration/Infrastructure/Service/RealCursorCliAgentDriver.php
@@ -5,6 +5,7 @@
 namespace App\LlmIntegration\Infrastructure\Service;
 
 use App\LlmIntegration\Infrastructure\Service\Dto\CursorCliAgentRunResult;
+use App\LlmIntegration\Infrastructure\Service\Dto\TokenOwnerProfile;
 use App\WorkspaceManagement\Facade\Dto\WorkspaceInfoDto;
 use JsonException;
 use Psr\Log\LoggerInterface;
@@ -56,7 +57,7 @@ private function runLocally(
             'agentPath'     => $agentPath,
         ]);
 
-        $gitIdentity = $this->resolveGitIdentity($repoPath);
+        $gitIdentity = $this->resolveGitIdentity($githubToken);
         $env         = $this->buildEnvironment($cursorApiKey, $githubToken, $gitIdentity);
 
         $process = new Process(
@@ -92,7 +93,7 @@ private function runInContainer(
             'agentPath'     => $agentPath,
         ]);
 
-        $gitIdentity  = $this->resolveGitIdentity($repoPath);
+        $gitIdentity  = $this->resolveGitIdentity($githubToken);
         $containerEnv = $this->buildContainerEnvironment($cursorApiKey, $githubToken, $agentHome, $gitIdentity);
 
         $command = ['docker', 'exec'];
@@ -425,7 +426,7 @@ private function buildContainerEnvironment(string $cursorApiKey, string $githubT
     /**
      * @return array{authorName: string, authorEmail: string, committerName: string, committerEmail: string}
      */
-    private function resolveGitIdentity(string $repoPath): array
+    private function resolveGitIdentity(string $githubToken): array
     {
         $fallback = [
             'authorName'     => self::FALLBACK_GIT_NAME,
@@ -434,59 +435,80 @@ private function resolveGitIdentity(string $repoPath): array
             'committerEmail' => self::FALLBACK_GIT_EMAIL,
         ];
 
-        $process = new Process(
-            ['git', 'log', '-1', '--format=%an%n%ae%n%cn%n%ce'],
-            $repoPath,
-        );
-        $process->setTimeout(10);
-        $process->run();
-
-        if (!$process->isSuccessful()) {
+        $ownerProfile = $this->fetchGithubTokenOwnerProfile($githubToken);
+        if ($ownerProfile === null) {
             $this->logger->warning('[RealAgent] Falling back to default git identity', [
-                'reason' => 'git_log_failed',
-                'stderr' => mb_substr(trim($process->getErrorOutput()), 0, 300),
+                'reason' => 'github_user_lookup_failed',
             ]);
 
             return $fallback;
         }
 
-        $lines = preg_split('/\r\n|\r|\n/', trim($process->getOutput())) ?: [];
-        if (count($lines) < 4) {
+        $login = trim($ownerProfile->login);
+        $name  = trim($ownerProfile->name);
+        $email = trim($ownerProfile->email);
+        $id    = $ownerProfile->id;
+
+        if ($login === '') {
             $this->logger->warning('[RealAgent] Falling back to default git identity', [
-                'reason'    => 'git_log_unparseable',
-                'lineCount' => count($lines),
+                'reason' => 'github_user_login_missing',
             ]);
 
             return $fallback;
         }
 
-        $identity = [
-            'authorName'     => trim((string) $lines[0]),
-            'authorEmail'    => trim((string) $lines[1]),
-            'committerName'  => trim((string) $lines[2]),
-            'committerEmail' => trim((string) $lines[3]),
+        $resolvedName  = $name  !== '' ? $name : $login;
+        $resolvedEmail = $email !== '' ? $email : sprintf('%d+%s@users.noreply.github.com', $id, $login);
+        $identity      = [
+            'authorName'     => $resolvedName,
+            'authorEmail'    => $resolvedEmail,
+            'committerName'  => $resolvedName,
+            'committerEmail' => $resolvedEmail,
         ];
 
-        if (
-            $identity['authorName']        === ''
-            || $identity['authorEmail']    === ''
-            || $identity['committerName']  === ''
-            || $identity['committerEmail'] === ''
-        ) {
-            $this->logger->warning('[RealAgent] Falling back to default git identity', [
-                'reason' => 'git_log_missing_fields',
-            ]);
+        $this->logger->info('[RealAgent] Using token-owner git identity', [
+            'source'          => $email !== '' ? 'token_owner_profile' : 'token_owner_noreply_fallback',
+            'authorName'      => $identity['authorName'],
+            'authorEmail'     => $identity['authorEmail'],
+            'tokenOwnerLogin' => $login,
+        ]);
 
-            return $fallback;
-        }
+        return $identity;
+    }
 
-        $this->logger->info('[RealAgent] Using repository-derived git identity', [
-            'authorName'     => $identity['authorName'],
-            'authorEmail'    => $identity['authorEmail'],
-            'committerName'  => $identity['committerName'],
-            'committerEmail' => $identity['committerEmail'],
+    protected function fetchGithubTokenOwnerProfile(string $githubToken): ?TokenOwnerProfile
+    {
+        $context = stream_context_create([
+            'http' => [
+                'method' => 'GET',
+                'header' => implode("\r\n", [
+                    'Authorization: Bearer ' . $githubToken,
+                    'Accept: application/vnd.github+json',
+                    'X-GitHub-Api-Version: 2022-11-28',
+                    'User-Agent: ProductBuilder-RealCursorCliAgentDriver',
+                ]),
+                'timeout'       => 10,
+                'ignore_errors' => true,
+            ],
         ]);
 
-        return $identity;
+        $response = file_get_contents('https://api.github.com/user', false, $context);
+        if (!is_string($response)) {
+            return null;
+        }
+
+        try {
+            /** @var array<string, mixed> $data */
+            $data = json_decode($response, true, 512, JSON_THROW_ON_ERROR);
+        } catch (JsonException) {
+            return null;
+        }
+
+        $id    = is_int($data['id'] ?? null) ? $data['id'] : 0;
+        $login = is_string($data['login'] ?? null) ? $data['login'] : '';
+        $name  = is_string($data['name'] ?? null) ? $data['name'] : '';
+        $email = is_string($data['email'] ?? null) ? $data['email'] : '';
+
+        return new TokenOwnerProfile($id, $login, $name, $email);
     }
 }
diff --git a/src/LlmIntegration/docs/cursor-integration.md b/src/LlmIntegration/docs/cursor-integration.md
@@ -179,7 +179,7 @@ The driver passes a minimal, explicit environment to the subprocess:
 | `CURSOR_API_KEY` | `product-config.yaml` → ProductConfig entity | Authenticates with the Cursor API |
 | `GITHUB_TOKEN` | `product-config.yaml` → ProductConfig entity | Allows the agent to interact with GitHub |
 | `GH_TOKEN` | Same as `GITHUB_TOKEN` | Compatibility variable for tools that expect `GH_TOKEN` |
-| `GIT_AUTHOR_*` / `GIT_COMMITTER_*` | Derived from repo latest commit, fallback to ProductBuilder bot identity | Ensures commits work even when workspace git config has no identity |
+| `GIT_AUTHOR_*` / `GIT_COMMITTER_*` | Derived from GitHub token owner (`GET /user`), with noreply fallback when profile email is missing | Ensures commits are attributed to token owner without mutating git config |
 | `HOME` | Inherited from container | Needed so the agent finds `~/.cursor/cli-config.json` and `~/.local/bin/` |
 | `PATH` | Inherited from container | Needed so the agent can invoke tools like `git`, `curl`, etc. |
 
diff --git a/tests/Unit/LlmIntegration/RealCursorCliAgentDriverTest.php b/tests/Unit/LlmIntegration/RealCursorCliAgentDriverTest.php
@@ -3,6 +3,7 @@
 declare(strict_types=1);
 
 use App\LlmIntegration\Infrastructure\Service\CursorCliAgentBinaryManager;
+use App\LlmIntegration\Infrastructure\Service\Dto\TokenOwnerProfile;
 use App\LlmIntegration\Infrastructure\Service\RealCursorCliAgentDriver;
 use App\WorkspaceManagement\Facade\Dto\WorkspaceInfoDto;
 use Psr\Log\NullLogger;
@@ -112,6 +113,31 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
     ], JSON_THROW_ON_ERROR);
 }
 
+function buildDriver(CursorCliAgentBinaryManager $binaryManager, ?TokenOwnerProfile $tokenOwnerProfile = null): RealCursorCliAgentDriver
+{
+    $profile = $tokenOwnerProfile ?? new TokenOwnerProfile(
+        123456,
+        'token-owner',
+        'Token Owner',
+        'token-owner@example.com',
+    );
+
+    return new class($binaryManager, new NullLogger(), $profile) extends RealCursorCliAgentDriver {
+        public function __construct(
+            CursorCliAgentBinaryManager         $binaryManager,
+            NullLogger                          $logger,
+            private readonly ?TokenOwnerProfile $profile,
+        ) {
+            parent::__construct($binaryManager, $logger);
+        }
+
+        protected function fetchGithubTokenOwnerProfile(string $githubToken): ?TokenOwnerProfile
+        {
+            return $this->profile;
+        }
+    };
+}
+
 describe('RealCursorCliAgentDriver', function (): void {
     describe('successful agent execution with stream-json', function (): void {
         it('parses a full NDJSON stream with system, assistant, tool, and result events', function (): void {
@@ -126,7 +152,7 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
 
             runWithFakeAgent($ndjsonLines, function (string $workspacePath): void {
                 $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
-                $driver        = new RealCursorCliAgentDriver($binaryManager, new NullLogger());
+                $driver        = buildDriver($binaryManager);
 
                 $result = $driver->run('Test prompt', $workspacePath, 'fake-api-key', 'fake-github-token');
 
@@ -144,7 +170,7 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
 
             runWithFakeAgent($ndjsonLines, function (string $workspacePath): void {
                 $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
-                $driver        = new RealCursorCliAgentDriver($binaryManager, new NullLogger());
+                $driver        = buildDriver($binaryManager);
 
                 $result = $driver->run('Test prompt', $workspacePath, 'fake-api-key', 'fake-github-token');
 
@@ -163,7 +189,7 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
 
             runWithFakeAgent($ndjsonLines, function (string $workspacePath): void {
                 $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
-                $driver        = new RealCursorCliAgentDriver($binaryManager, new NullLogger());
+                $driver        = buildDriver($binaryManager);
 
                 $result = $driver->run('Test prompt', $workspacePath, 'fake-api-key', 'fake-github-token');
 
@@ -178,7 +204,7 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
         it('returns failure result when the process exits with non-zero code', function (): void {
             runWithFakeAgent([], function (string $workspacePath): void {
                 $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
-                $driver        = new RealCursorCliAgentDriver($binaryManager, new NullLogger());
+                $driver        = buildDriver($binaryManager);
 
                 $result = $driver->run('Test prompt', $workspacePath, 'bad-api-key', 'fake-github-token');
 
@@ -195,7 +221,7 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
 
             runWithFakeAgent($ndjsonLines, function (string $workspacePath): void {
                 $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
-                $driver        = new RealCursorCliAgentDriver($binaryManager, new NullLogger());
+                $driver        = buildDriver($binaryManager);
 
                 $result = $driver->run('Test prompt', $workspacePath, 'bad-api-key', 'fake-github-token');
 
@@ -214,7 +240,7 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
 
             runWithFakeAgent($ndjsonLines, function (string $workspacePath): void {
                 $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
-                $driver        = new RealCursorCliAgentDriver($binaryManager, new NullLogger());
+                $driver        = buildDriver($binaryManager);
 
                 $result = $driver->run('Test prompt', $workspacePath, 'fake-api-key', 'fake-github-token');
 
@@ -232,7 +258,7 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
 
             runWithFakeAgent($ndjsonLines, function (string $workspacePath): void {
                 $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
-                $driver        = new RealCursorCliAgentDriver($binaryManager, new NullLogger());
+                $driver        = buildDriver($binaryManager);
 
                 $result = $driver->run('Test prompt', $workspacePath, 'fake-api-key', 'fake-github-token');
 
@@ -242,24 +268,52 @@ function buildResultLine(bool $isError, string $result, string $sessionId, ?int
             });
         });
 
-        it('injects fallback git identity and both GitHub token env vars', function (): void {
+        it('injects token-owner git identity and both GitHub token env vars', function (): void {
             runWithCustomFakeAgent(
                 'echo "A=${GIT_AUTHOR_NAME};AE=${GIT_AUTHOR_EMAIL};C=${GIT_COMMITTER_NAME};CE=${GIT_COMMITTER_EMAIL};GH=${GH_TOKEN};GT=${GITHUB_TOKEN}"',
                 function (string $workspacePath): void {
                     $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
-                    $driver        = new RealCursorCliAgentDriver($binaryManager, new NullLogger());
+                    $driver        = buildDriver($binaryManager, new TokenOwnerProfile(
+                        42,
+                        'octocat',
+                        'Mona Octocat',
+                        'mona@example.com',
+                    ));
 
                     $result = $driver->run('Test prompt', $workspacePath, 'fake-api-key', 'fake-github-token');
 
                     expect($result->success)->toBeTrue();
-                    expect($result->resultText)->toContain('A=ProductBuilder Bot');
-                    expect($result->resultText)->toContain('AE=productbuilder@noreply.github.com');
-                    expect($result->resultText)->toContain('C=ProductBuilder Bot');
-                    expect($result->resultText)->toContain('CE=productbuilder@noreply.github.com');
+                    expect($result->resultText)->toContain('A=Mona Octocat');
+                    expect($result->resultText)->toContain('AE=mona@example.com');
+                    expect($result->resultText)->toContain('C=Mona Octocat');
+                    expect($result->resultText)->toContain('CE=mona@example.com');
                     expect($result->resultText)->toContain('GH=fake-github-token');
                     expect($result->resultText)->toContain('GT=fake-github-token');
                 },
             );
         });
+
+        it('uses noreply email fallback when token owner has no profile email', function (): void {
+            runWithCustomFakeAgent(
+                'echo "A=${GIT_AUTHOR_NAME};AE=${GIT_AUTHOR_EMAIL};C=${GIT_COMMITTER_NAME};CE=${GIT_COMMITTER_EMAIL}"',
+                function (string $workspacePath): void {
+                    $binaryManager = new CursorCliAgentBinaryManager(new NullLogger());
+                    $driver        = buildDriver($binaryManager, new TokenOwnerProfile(
+                        42,
+                        'octocat',
+                        '',
+                        '',
+                    ));
+
+                    $result = $driver->run('Test prompt', $workspacePath, 'fake-api-key', 'fake-github-token');
+
+                    expect($result->success)->toBeTrue();
+                    expect($result->resultText)->toContain('A=octocat');
+                    expect($result->resultText)->toContain('C=octocat');
+                    expect($result->resultText)->toContain('AE=42+octocat@users.noreply.github.com');
+                    expect($result->resultText)->toContain('CE=42+octocat@users.noreply.github.com');
+                },
+            );
+        });
     });
 });
