Review PR Against SDLC Standard
review_pr_against_standardAnalyzes pull requests against configurable SDLC standards (basic, strict, security-focused) and enforces code ownership checks via CODEOWNERS.
Instructions
Review a pull request against Agentic SDLC standards.
Standards:
basic: Core checks (tests, description, draft status, commit count)
strict: basic + large diff detection, missing docs
security-focused: strict + mature secret-scanner CI evidence + supplemental patch heuristics, .env files, lockfile changes, dist files
Ownership check (independent of standard, runs when checkOwnership is true and a CODEOWNERS file exists): Matches changed files against .github/CODEOWNERS (or CODEOWNERS / docs/CODEOWNERS), and flags any matched owner who is neither the PR author, a requested reviewer, nor an actual reviewer.
Args:
owner, repo: Repository coordinates.
pullNumber (number): The PR to review.
standard: "basic" | "strict" | "security-focused". Default: "basic".
checkOwnership (boolean, default: true): Enable the CODEOWNERS ownership check.
Returns: Sorted findings by severity, test coverage signal, ownership routing gaps, release risk, and conclusion.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| repo | No | GitHub repo. Falls back to GITHUB_REPO. | |
| owner | No | GitHub owner. Falls back to GITHUB_OWNER. | |
| standard | No | Review standard: 'basic', 'strict', or 'security-focused'. | basic |
| workType | No | Optional explicit work type. When omitted, it is inferred from PR metadata and paths. | |
| pullNumber | Yes | The pull request number to review. | |
| checkOwnership | No | Check changed files against .github/CODEOWNERS and flag owners who were neither requested nor have reviewed. Requires read access to repo contents and PR reviewers/reviews. |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
| title | Yes | ||
| errors | Yes | ||
| findings | Yes | ||
| hasTests | Yes | ||
| standard | Yes | ||
| workType | Yes | ||
| conclusion | Yes | ||
| pullNumber | Yes | ||
| releaseRisk | Yes | ||
| policyDigest | Yes | ||
| policySources | Yes | ||
| policyDegraded | Yes | ||
| codeownersFound | Yes | ||
| totalChangedLines | Yes | ||
| workTypeReasoning | Yes | ||
| appliedPolicyRules | Yes | ||
| testCoverageSignal | Yes | ||
| workTypeConfidence | Yes | ||
| ownershipRoutingGaps | Yes | ||
| secretScannerEvidence | Yes |