pr-verify
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: Uses the GitHub CLI (
gh) to manage pull request states, including listing open PRs, viewing metadata, posting comments, and executing squash merges. - [COMMAND_EXECUTION]: Utilizes Git to create temporary worktrees in
/tmp/aionui-verify-*, perform conflict resolution through branching and merging, and push updates to PR branches using fork-aware logic. - [COMMAND_EXECUTION]: Executes project-specific testing and startup scripts (
bun run test,bun run start) to validate code changes before finalization. - [SAFE]: Accesses pull request comments and source code to perform analysis; this behavior is restricted to the repository context and uses specific comment markers (e.g.,
<!-- pr-review-bot -->) to parse relevant data safely. - [SAFE]: All identified file system operations and network activities (via
ghandgit) are directly aligned with the documented purpose of pull request verification and automation.
Audit Metadata