Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Add Dependabot Alert Tools#631

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Merged
JoannaaKL merged 4 commits intomainfromlulu/dependabot-alert-tool
Jul 3, 2025
Merged

Conversation

LuluBeatson
Copy link
Contributor

@LuluBeatsonLuluBeatson commentedJul 3, 2025
edited
Loading

Add newdependabot toolset containing:

  • get_dependabot_alert
  • list_dependabot_alerts

Example prompts:

Are there any open, high/critical severity dependabot alerts in github/github-mcp-server?

What's the best course of action to fix dependabot alert {num} in {owner/repo}?

Note:
For filtering alerts when listing them, I've included state (default open) and severity enums. But they could have instead been comma-separated strings.

Closes:

JoannaaKL reacted with heart emoji
@LuluBeatsonLuluBeatson marked this pull request as ready for reviewJuly 3, 2025 10:40
@CopilotCopilotAI review requested due to automatic review settingsJuly 3, 2025 10:40
@LuluBeatsonLuluBeatson requested a review froma team as acode ownerJuly 3, 2025 10:40
Copy link
Contributor

@CopilotCopilotAI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others.Learn more.

Pull Request Overview

This PR introduces a new Dependabot toolset that allows fetching and listing Dependabot alerts in GitHub repositories.

  • Registers adependabot toolset in the main tool group with two read-only tools.
  • Implementsget_dependabot_alert andlist_dependabot_alerts handlers with full request/response logic.
  • Adds tests and updates documentation to expose the new tools.

Reviewed Changes

Copilot reviewed 5 out of 7 changed files in this pull request and generated no comments.

Show a summary per file
FileDescription
pkg/github/tools.goRegistered thedependabot toolset and addedToStringPtr
pkg/github/dependabot.goAdded implementations for the two Dependabot alert tools
pkg/github/dependabot_test.goCreated unit tests covering success and error scenarios
docs/remote-server.mdUpdated toolsets table to include Dependabot
README.mdListed Dependabot tools and detailed their parameters
Files not reviewed (2)
  • pkg/github/toolsnaps/get_dependabot_alert.snap: Language not supported
  • pkg/github/toolsnaps/list_dependabot_alerts.snap: Language not supported

@JoannaaKLJoannaaKL merged commit23f6f3a intomainJul 3, 2025
16 checks passed
@JoannaaKLJoannaaKL deleted the lulu/dependabot-alert-tool branchJuly 3, 2025 11:26
Sign up for freeto join this conversation on GitHub. Already have an account?Sign in to comment
Reviewers

Copilot code reviewCopilotCopilot left review comments

@JoannaaKLJoannaaKLJoannaaKL approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

2 participants
@LuluBeatson@JoannaaKL
[8]ページ先頭
©2009-2025 Movatter.jp