fix(cpu): enable per-core CPU stats on macOS

[narthur]

Problem

On macOS, sysmon shows no per-core CPU bars even on machines with many cores — only the aggregate "CPU Usage" bar (which itself reads 0% on affected builds).

Root cause: gopsutil reads per-core CPU on macOS via host_processor_info, which requires cgo. The release workflow cross-compiled every target on ubuntu-latest, and Go cross-compilation forces CGO_ENABLED=0. So released macOS binaries shipped gopsutil's cgo-less stub, where cpu.Percent(interval, true) returns ErrNotImplementedError and an empty slice. collectStats discarded that error (perCoreCPU, _ := ...), leaving CPUCores empty and the per-core section blank. Since the overall average was also derived from that empty slice, aggregate CPU read 0% too.

Linux (/proc/stat) and Windows (syscalls) use pure-Go paths, so only macOS was affected.

Fix

• ci(release) — split the release into version → build (matrix) → release jobs. macOS binaries now build natively on macos-latest with CGO_ENABLED=1 (a single arm64 runner produces both darwin arches via the universal SDK); linux/windows keep cross-compiling on ubuntu-latest. Binaries are collected as artifacts and attached in a dedicated release job.
• build(scripts) — build.sh now takes a target (all | linux-windows | darwin) and sets CGO_ENABLED per target.
• fix(cpu) — stop discarding the cpu.Percent error; fall back to the aggregate reading so overall CPU usage still displays even if per-core data is unavailable (graceful degradation rather than a silent 0%).
• docs(readme) — note the cgo requirement for per-core stats on macOS.

Verification

Go isn't installed on my machine, so I couldn't build locally — build.sh passes bash -n and CI will compile all targets. The macOS build job in this PR's run is the real test: it must produce sysmon-darwin-{amd64,arm64} with cgo enabled. After merge, a released darwin binary should show populated per-core bars.

🤖 Generated with Claude Code

Summary by CodeRabbit

• Bug Fixes

  • More robust CPU reporting: falls back to aggregate CPU usage when per-core sampling fails, ensuring the CPU bar remains populated.

• Documentation

  • macOS note added explaining per-core CPU stats require cgo and how builds affect visibility.

• Tests

  • CI added to run formatting, vet, build, and unit tests; minor test formatting cleanup.

• Chores

  • Refined build and release pipeline and local build script to support matrixed cross-platform builds and streamlined release artifacts.

[coderabbitai]

Warning

Review limit reached

@narthur, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 5 minutes and 29 seconds. Learn how PR review limits work.

To continue reviewing without waiting, purchase usage credits in the billing tab.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository: PinePeakDigital/coderabbit/.coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: d10e764f-3911-4688-9a7c-ca86da93c9c4

📥 Commits

Reviewing files that changed from the base of the PR and between bcc8155 and cdf2aba.

📒 Files selected for processing (6)

• .github/dependabot.yml
• .github/workflows/ci.yml
• .github/workflows/cleanup-pr-releases.yml
• .github/workflows/release.yml
• README.md
• scripts/build.sh

📝 Walkthrough

Walkthrough

Build script converted to target-driven builds with platform-specific CGO; release workflow refactored into version/build/release jobs with a matrix and artifact uploads; new CI workflow added; collectStats() now falls back to aggregate CPU usage when per-core sampling fails; README documents macOS cgo dependency.

Changes

Build System and Release Pipeline Enhancement

Layer / File(s)	Summary
Build script target-driven refactor scripts/build.sh	Script refactored to parameterized targets (all, linux-windows, darwin), adds build_linux_windows() (CGO off) and build_darwin() (CGO on), TARGET parsing, validation, and updated messages.
Release workflow matrix and job structure .github/workflows/release.yml	Replaces single-step build/release with version + matrix build job that runs ./scripts/build.sh per-target and uploads sysmon-*, and a dependent release job that downloads artifacts into dist/ and creates the GitHub Release using needs.version.outputs.version; README/LICENSE removed from the release files list.
New CI workflow .github/workflows/ci.yml	Adds CI on pull_request and push to main with a test job across ubuntu-latest and macos-latest performing checkout, Go setup (cached), gofmt check, go vet, go build, and go test.
CPU stats sampling fallback and platform documentation main.go, README.md	collectStats() uses per-core cpu.Percent(..., true) when available, else falls back to aggregate cpu.Percent(..., false); README notes macOS per-core stats require cgo and that CGO_ENABLED=0 builds show only aggregate CPU.
Test formatting whitespace tweak main_test.go	Minor whitespace/blank-line formatting change around strings.Split(view, \"\\n\") and a minimum-lines assertion; no behavior change.

---

🎯 4 (Complex) | ⏱️ ~45 minutes

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'fix(cpu): enable per-core CPU stats on macOS' accurately summarizes the main objective of the PR: enabling per-core CPU statistics on macOS by fixing the cgo requirement and build process.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch fix/macos-per-core-cpu

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[Copilot]

Pull request overview

This PR fixes missing per-core CPU bars (and 0% aggregate CPU) on macOS by ensuring darwin release binaries are built with CGO enabled (required by gopsutil for per-core CPU stats), and by making CPU collection degrade gracefully when per-core data isn’t available.

Changes:

• Updates the release workflow to build Linux/Windows on ubuntu-latest and macOS on macos-latest, then publish artifacts from a dedicated release job.
• Extends scripts/build.sh with target selection and per-target CGO_ENABLED settings.
• Improves collectStats() to stop discarding per-core CPU errors and fall back to aggregate CPU usage.
• Documents the macOS/cgo requirement in the README.

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated 1 comment.

File	Description
scripts/build.sh	Adds build targets and toggles CGO per target (darwin builds with CGO enabled).
README.md	Documents that per-core CPU stats on macOS require CGO.
main.go	Handles cpu.Percent errors and falls back to aggregate CPU usage when per-core stats are unavailable.
.github/workflows/release.yml	Splits release into version/build/release jobs and builds darwin natively on macOS.

[coderabbitai]

Actionable comments posted: 3

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In @.github/workflows/release.yml:
- Around line 100-105: The workflow uses floating action tags; replace each
`uses:` entry with the corresponding immutable 40-hex commit SHA for those
actions (e.g., the occurrences of actions/checkout@v4,
ietf-tools/semver-action@v1, actions/setup-go@v6, actions/upload-artifact@v4,
actions/download-artifact@v4, softprops/action-gh-release@v1) by locating each
`uses:` line in .github/workflows/release.yml and updating the value to the
action's full commit SHA (owner/repo@<40-char-sha>); verify the SHAs against the
upstream repositories/releases, update all instances found, and run/validate the
workflow to ensure no breaking changes.
- Line 139: The workflow uses an outdated softprops action version; update the
GitHub Actions step that references "uses: softprops/action-gh-release@v1" to
the currently supported major release (e.g., change to
"softprops/action-gh-release@v3"); ensure the release job step named "Create
Release" (the step that contains the softprops/action-gh-release usage) is
updated accordingly and run on a compatible runner — if you must remain on Node
20 instead use "softprops/action-gh-release@v2.6.2".

In `@README.md`:
- Around line 43-46: Update the "Platform requirements" wording to reconcile
with the new "macOS note": change the Linux-only phrasing to indicate primary
support for Linux while noting macOS is supported with the caveat that per-core
CPU stats require cgo and will be empty if built with CGO_ENABLED=0; reference
the existing "macOS note" text and ensure the "Platform requirements" section
(or heading named Platform requirements) mentions macOS behavior and the CGO
caveat so the two sections are consistent.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository: PinePeakDigital/coderabbit/.coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 1436c9a9-46d7-4e69-936d-5fbded55b676

📥 Commits

Reviewing files that changed from the base of the PR and between a35fac3 and a30c9f4.

📒 Files selected for processing (4)

• .github/workflows/release.yml
• README.md
• main.go
• scripts/build.sh

[coderabbitai]

Actionable comments posted: 3

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In @.github/workflows/ci.yml:
- Around line 26-27: Replace floating tag references for GitHub Actions with
pinned commit SHAs: locate the uses entries for actions/checkout@v4 and
actions/setup-go@v6 in the CI workflow and replace the tag suffixes with the
corresponding full commit SHAs (e.g., actions/checkout@<commit-sha> and
actions/setup-go@<commit-sha>) so the workflow references immutable commits;
fetch the current commit SHA for each tag from the action's GitHub repo
releases/tags and update the workflow file accordingly, and optionally add a
short comment noting the pinned SHA and a process for updating it
(Dependabot/Renovate).
- Around line 26-27: The checkout step using actions/checkout@v4 currently
leaves the GitHub token persisted in .git/config; update the Checkout code block
to add the persist-credentials: false option so the actions/checkout@v4 step
does not persist credentials (i.e., set persist-credentials: false under the
checkout step using actions/checkout@v4).
- Around line 17-24: The CI job "test" currently has no timeout; add a
`timeout-minutes` key to the job definition for the test job (under the
top-level job named "test") to prevent indefinite hangs — e.g., set
`timeout-minutes` to a sensible value like 30 or 60 minutes; ensure the
`timeout-minutes` entry is at the same indentation level as `runs-on`/`strategy`
within the "test" job so GitHub Actions honors it.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository: PinePeakDigital/coderabbit/.coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: bf5b8e14-8e61-4140-bf40-070d58d5e653

📥 Commits

Reviewing files that changed from the base of the PR and between a30c9f4 and bcc8155.

📒 Files selected for processing (2)

• .github/workflows/ci.yml
• main_test.go