review-bot

review-bot suggested changes for johba/disinto#70

2026-03-31 19:14:37 +00:00

fix: SECURITY: SOPS decryption without integrity verification (#61)

AI Review: REQUEST_CHANGES — sops --verify is not valid SOPS syntax; should be 'sops verify' — would break .env.enc loading on all agents

review-bot commented on pull request johba/disinto#70

2026-03-31 19:14:36 +00:00

fix: SECURITY: SOPS decryption without integrity verification (#61)

AI Review

Security Fix: SOPS Integrity Verification

The intent is correct — adding a pre-decryption integrity check addresses…

review-bot approved johba/disinto#69

2026-03-31 18:53:39 +00:00

fix: SECURITY: Unquoted curl URLs with variables in API calls (#60)

AI Re-review (round 2): APPROVE — Dead code removed; validate_url guards are correct and complete

review-bot commented on pull request johba/disinto#69

2026-03-31 18:53:38 +00:00

fix: SECURITY: Unquoted curl URLs with variables in API calls (#60)

AI Re-review (round 2)

Previous Findings

forge_api_call() dead code → FIXED: function and the adjacent `codeberg_api_a…

review-bot commented on pull request johba/disinto#69

2026-03-31 18:45:35 +00:00

fix: SECURITY: Unquoted curl URLs with variables in API calls (#60)

AI Review

Summary

This PR adds a validate_url() helper and inserts validation guards before every curl call that uses a URL…

review-bot suggested changes for johba/disinto#69

2026-03-31 18:45:35 +00:00

fix: SECURITY: Unquoted curl URLs with variables in API calls (#60)

AI Review: REQUEST_CHANGES — forge_api_call() is dead code with no callers — duplicates forge_api() and should be removed

review-bot commented on pull request johba/disinto#63

2026-03-31 18:28:03 +00:00

fix: SECURITY: Replace eval usage with safer alternatives (#59)

AI Re-review (round 2)

Previous Findings

critical mirrors.sh drops MIRROR_ prefix → FIXED: + correctly restores…

review-bot approved johba/disinto#63

2026-03-31 18:28:03 +00:00

fix: SECURITY: Replace eval usage with safer alternatives (#59)

AI Re-review (round 2): APPROVE — All previous findings addressed; changes are correct and complete

review-bot commented on pull request johba/disinto#63

2026-03-31 18:20:35 +00:00

fix: SECURITY: Replace eval usage with safer alternatives (#59)

AI Review

Summary

Good motivation: replacing eval with safer alternatives is the right security direction. The `issue-lifecycl…

review-bot suggested changes for johba/disinto#63

2026-03-31 18:20:35 +00:00

fix: SECURITY: Replace eval usage with safer alternatives (#59)

AI Review: REQUEST_CHANGES — mirrors.sh drops the MIRROR_ prefix — all mirrors silently broken

review-bot commented on pull request johba/disinto#64

2026-03-31 18:16:32 +00:00

docs: rewrite SKILL.md to focus on external project setup

AI Review

Summary

Docs-only PR restructuring SKILL.md to focus on external project setup. Changes are accurate, well-organized,…

review-bot approved johba/disinto#64

2026-03-31 18:16:32 +00:00

docs: rewrite SKILL.md to focus on external project setup

AI Review: APPROVE — Clean docs rewrite — accurate TOML template, correct step renumbering, improved init guidance

review-bot approved johba/disinto#58

2026-03-29 12:49:01 +00:00

fix: refactor: rename vault-runner → runner and vault-run → run (#43)

AI Review: APPROVE — Rename is thorough and consistent; one unused export is minor and non-breaking

review-bot commented on pull request johba/disinto#58

2026-03-29 12:49:00 +00:00

fix: refactor: rename vault-runner → runner and vault-run → run (#43)

AI Review

Summary

Pure rename refactor: vault-runner → runner (service name), vault-run → run (CLI subcommand),…

review-bot approved johba/disinto#56

2026-03-29 11:42:31 +00:00

fix: fix: save full Claude session log on no_push for debugging (#49)

AI Re-review (round 2): APPROVE — Both previous findings addressed:

review-bot commented on pull request johba/disinto#56

2026-03-29 11:42:30 +00:00

fix: fix: save full Claude session log on no_push for debugging (#49)

AI Re-review (round 2)

Previous Findings

bug dev/dev-agent.sh:476-477 (cp missing `

review-bot commented on pull request johba/disinto#57

2026-03-29 11:38:28 +00:00

fix: fix: dev-poll.sh in-progress scan falls through on waiting PRs (#55)

AI Review

Summary\n\nThis PR fixes a fall-through bug in the in-progress issue scan (Priority 1). When an issue had an open PR…

review-bot approved johba/disinto#57

2026-03-29 11:38:28 +00:00

fix: fix: dev-poll.sh in-progress scan falls through on waiting PRs (#55)

AI Review: APPROVE — Correct minimal fix: adds missing exit 0 to prevent fall-through from waiting-PR branch into Priority 1.5 stuck-PR scan

review-bot commented on pull request johba/disinto#56

2026-03-29 11:29:41 +00:00

fix: fix: save full Claude session log on no_push for debugging (#49)

AI Review

Issues

bug dev/dev-agent.sh:476-477: The cp ... && log chain has no `

review-bot suggested changes for johba/disinto#56

2026-03-29 11:29:41 +00:00

fix: fix: save full Claude session log on no_push for debugging (#49)

AI Review: REQUEST_CHANGES — Missing