review-bot

0 followers · 0 following

• Joined on 2026-03-28

Repositories Projects Packages Public activity Starred repositories

review-bot commented on pull request johba/disinto#80 2026-03-31 21:08:07 +00:00

fix: feat: define vault action TOML schema for PR-based approval (#74)

AI Review

Summary

PR #80 adds the vault action TOML schema (docs, three examples, and a bash validator) for the PR-based…

review-bot approved johba/disinto#80 2026-03-31 21:08:07 +00:00

fix: feat: define vault action TOML schema for PR-based approval (#74)

AI Review: APPROVE — Schema, examples, and validator are correct and follow conventions; all referenced formulas exist

review-bot commented on pull request johba/disinto#79 2026-03-31 20:45:30 +00:00

fix: chore: tear down old vault scripts — prepare for PR-based vault (#73)

AI Review

Summary

PR #79 removes the old vault scripts (, , , , , , ) and updates every reference across docs, formulas, and…

review-bot approved johba/disinto#79 2026-03-31 20:45:30 +00:00

fix: chore: tear down old vault scripts — prepare for PR-based vault (#73)

AI Review: APPROVE — Clean teardown: all old vault scripts deleted, references updated, smoke test adjusted, transitional state documented.

review-bot commented on pull request johba/disinto#78 2026-03-31 20:22:43 +00:00

fix: chore(26c): update AGENTS.md and docs — remove action-agent references (#67)

AI Re-review (round 2)

Previous Findings

• bug dev/dev-poll.sh:326,548 formula guard still included action while docs…

review-bot approved johba/disinto#78 2026-03-31 20:22:43 +00:00

fix: chore(26c): update AGENTS.md and docs — remove action-agent references (#67)

AI Re-review (round 2): APPROVE — Previous finding fixed — action removed from dev-poll.sh formula guard patterns; docs and code now consistent

review-bot commented on pull request johba/disinto#78 2026-03-31 20:19:06 +00:00

fix: chore(26c): update AGENTS.md and docs — remove action-agent references (#67)

AI Review

Findings

• bug dev/dev-poll.sh:326,548: The formula guard regex still includes action in both the orphan scan…

review-bot suggested changes for johba/disinto#78 2026-03-31 20:19:06 +00:00

fix: chore(26c): update AGENTS.md and docs — remove action-agent references (#67)

AI Review: REQUEST_CHANGES — dev/AGENTS.md documents an incorrect label list — code still skips 'action' label but docs no longer mention it

review-bot commented on pull request johba/disinto#72 2026-03-31 19:57:45 +00:00

fix: chore(26a): delete action-agent.sh, action-poll.sh, and action/AGENTS.md (#65)

AI Re-review (round 2)

Previous Findings

• action-agent card in site/docs/architecture.html:401-404 → FIXED: card…

review-bot approved johba/disinto#72 2026-03-31 19:57:45 +00:00

fix: chore(26a): delete action-agent.sh, action-poll.sh, and action/AGENTS.md (#65)

AI Re-review (round 2): APPROVE — All previous findings fixed; cleanup is now complete

review-bot commented on pull request johba/disinto#72 2026-03-31 19:51:16 +00:00

fix: chore(26a): delete action-agent.sh, action-poll.sh, and action/AGENTS.md (#65)

AI Review

Summary

This PR correctly deletes action/action-agent.sh, action/action-poll.sh, and action/AGENTS.md, and…

review-bot suggested changes for johba/disinto#72 2026-03-31 19:51:16 +00:00

fix: chore(26a): delete action-agent.sh, action-poll.sh, and action/AGENTS.md (#65)

AI Review: REQUEST_CHANGES — Cleanup PR leaves stale action-agent references in docs, formula comments, smoke test, and log scan lists

review-bot commented on pull request johba/disinto#71 2026-03-31 19:33:32 +00:00

fix: Bug: docker-compose.yml has escaped backslashes in ${HOME} variables (#62)

AI Review

Summary\n\nFixes four lines in the embedded docker-compose YAML where and were written with a literal backslash.\n\n#…

review-bot approved johba/disinto#71 2026-03-31 19:33:32 +00:00

fix: Bug: docker-compose.yml has escaped backslashes in ${HOME} variables (#62)

AI Review: APPROVE — Correct fix: removes backslash-escaping from ${HOME} and ${PROJECT_NAME} in single-quoted heredoc so Docker Compose receives unescaped variable references it can substitute.

review-bot commented on pull request johba/disinto#70 2026-03-31 19:27:50 +00:00

fix: SECURITY: SOPS decryption without integrity verification (#61)

AI Re-review (round 4)

Previous Findings

• critical lib/env.sh:35 — sops --verify not a valid SOPS command, always…

review-bot approved johba/disinto#70 2026-03-31 19:27:50 +00:00

fix: SECURITY: SOPS decryption without integrity verification (#61)

AI Re-review (round 4): APPROVE — sops --verify regression removed; sops -d MAC/GCM verification is the correct mechanism

review-bot suggested changes for johba/disinto#70 2026-03-31 19:17:57 +00:00

fix: SECURITY: SOPS decryption without integrity verification (#61)

AI Review: REQUEST_CHANGES — sops --verify is not a standard SOPS command — if unrecognized, the verify gate always fails and breaks all env loading

review-bot commented on pull request johba/disinto#70 2026-03-31 19:17:56 +00:00

fix: SECURITY: SOPS decryption without integrity verification (#61)

AI Review

Summary

This PR adds a sops --verify pre-check before decryption, escalates warnings to errors with exit 1, and…

review-bot commented on pull request johba/disinto#70 2026-03-31 19:17:40 +00:00

fix: SECURITY: SOPS decryption without integrity verification (#61)

AI Re-review (round 2)

Summary

This PR adds a sops --verify pre-check before decryption, escalates warnings to errors with…

review-bot suggested changes for johba/disinto#70 2026-03-31 19:17:40 +00:00

fix: SECURITY: SOPS decryption without integrity verification (#61)

AI Re-review (round 2): REQUEST_CHANGES — sops --verify is not a standard SOPS command — if unrecognized, the verify gate always fails and breaks all env loading