fix: guard TaskBounty candidate issue updates

.github/workflows/taskbounty-scout.yml

@@ -33,6 +33,11 @@ jobs:
           TASKBOUNTY_API_KEY: ${{ secrets.TASKBOUNTY_API_KEY }}
           TASKBOUNTY_AGENT_ID: ${{ secrets.TASKBOUNTY_AGENT_ID }}
         run: |
+          if [ -n "$TASKBOUNTY_API_KEY" ] && [ -n "$TASKBOUNTY_AGENT_ID" ]; then
+            echo "TASKBOUNTY_HAS_API_ACCESS=true" >> "$GITHUB_ENV"
+          else
+            echo "TASKBOUNTY_HAS_API_ACCESS=false" >> "$GITHUB_ENV"
+          fi
           python scripts/taskbounty_scout.py
           python scripts/claim_queue.py
 
@@ -56,7 +61,7 @@ jobs:
         env:
           GH_TOKEN: ${{ github.token }}
         run: |
-          if [ ! -s taskbounty_report.md ]; then
+          if [ ! -s taskbounty_report.md ] || [ "${TASKBOUNTY_HAS_API_ACCESS:-false}" != "true" ]; then
             exit 0
           fi
           title="TaskBounty candidates"

tests/test_taskbounty_workflow.py

@@ -0,0 +1,12 @@
+from pathlib import Path
+
+
+WORKFLOW = Path(__file__).resolve().parents[1] / ".github/workflows/taskbounty-scout.yml"
+
+
+def test_taskbounty_candidate_issue_requires_agent_api_access():
+    workflow = WORKFLOW.read_text()
+
+    assert "TASKBOUNTY_HAS_API_ACCESS=true" in workflow
+    assert "TASKBOUNTY_HAS_API_ACCESS=false" in workflow
+    assert '[ "${TASKBOUNTY_HAS_API_ACCESS:-false}" != "true" ]' in workflow