Add velocity-based rate limiting to prevent GitHub secondary rate limits #1198
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This change addresses GitHub API rate limit issues by adding proactive throttling to githubreconciler while refactoring existing SDK code into a shared package. NO BEHAVIOR CHANGES to existing rate limiter - this is a pure refactor to enable code reuse. The rate limiter implementation in modules/github-bots/sdk has been in production use via WithSecondaryRateLimitWaiter() and is battle-tested. This commit extracts that proven implementation into a shared package and applies it to githubreconciler. Changes: - Create new pkg/httpratelimit package with shared rate limiter - Copied line-by-line from modules/github-bots/sdk/ratelimit.go - Same logic for monitoring GitHub rate limit headers - Same behavior for pausing/retrying requests - Enhanced comments and log messages only - Integrate rate limiter into pkg/githubreconciler (NEW) - Transport chain: OAuth2 -> Rate Limiting -> Metrics - Proactively throttles requests to prevent 403/429 errors - Works transparently without code changes - Refactor modules/github-bots/sdk to use shared implementation - Maintains 100% backward compatibility - All existing tests pass without modification - Reduces code duplication (170+ lines removed) - Add deprecation notices pointing to new shared package The SDK rate limiter is already used in production and tested. This refactor enables githubreconciler to benefit from the same proven implementation while maintaining a single source of truth for rate limiting logic. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <[email protected]>
This commit implements proactive rate limiting based on request velocity to prevent GitHub's secondary rate limits, which don't provide warning headers before triggering. Changes: - Add DefaultMaxRequestsPerSecond (15 RPS) constant - Update NewTransport() to accept maxRequestsPerSecond parameter - Update githubreconciler to use configurable rate limiting - Update all callers and tests to pass rate limit parameter Secondary rate limits are triggered by request velocity (req/sec), not total quota. Unlike primary rate limits, they provide no predictive headers - requests simply fail with 403 + Retry-After when hit. The fix enforces a conservative 15 RPS default with burst capacity, preventing burst patterns that trigger secondary limits. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <[email protected]> Signed-off-by: James Rawlings <[email protected]>
rawlingsj
force-pushed
the
fix-secondary-rate-limits-v2
branch
from
ae578df to
6484f2e
Compare
Change NewTransport signature from positional parameters to variadic
options pattern for better flexibility and future extensibility.
BREAKING CHANGE: Callers of NewTransport must update to use options:
Before:
NewTransport(base, time.Minute) // Old 2-param version
After:
NewTransport(base) // Uses defaults (15 RPS, 1 min retry)
NewTransport(base, WithDefaultRetryAfter(time.Minute))
NewTransport(base, WithMaxRequestsPerSecond(20))
NewTransport(base,
WithDefaultRetryAfter(time.Minute),
WithMaxRequestsPerSecond(20))
Benefits:
- Explicit configuration via named options
- Future-proof for adding new options without more breaking changes
- Sensible defaults for common cases
All internal callers updated. All tests pass.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
This PR reworks the rate limiting implementation to prevent GitHub's secondary rate limits, which are based on request velocity (requests/second) rather than total quota. The implementation is split into commits
for easier review:
Commit 1: Refactor existing rate limiter (no behavior change)
"Add proactive GitHub API rate limiting with shared implementation" (
fb6a29d)pkg/httpratelimitpackagegithubreconciler(new usage)Commit 2: Add velocity-based rate limiting (new functionality)
"Add velocity-based rate limiting to prevent GitHub secondary rate limits" (
32a00ad)DefaultMaxRequestsPerSecond = 15.0constantBurstMultiplier = 2constantNewTransport()to acceptmaxRequestsPerSecparameterrate.Inf) to actual RPS-based rate limitingThe Problem
Our previous approach (PR #1195) attempted to proactively throttle based on
X-RateLimit-Remainingheaders. However, testing with a rate limit reproducer revealed that secondary rate limits don't provide thesewarning headers:
Key insight: Secondary limits are triggered by request velocity (req/sec), not total quota. GitHub doesn't provide predictive headers - requests simply fail with 403 + Retry-After when hit.
How It Works
Before:
After:
Example: With 15 RPS limit and 2x burst, we can handle occasional bursts of 30 requests but maintain an average of 15 req/sec, staying well below GitHub's undocumented secondary limit threshold.
Backward Compatibility
Testing
Validated with rate limit reproducer tool that can trigger secondary limits on demand.
Future Work