SkillsMay 12, 2026·2 min read

Danger — Automate PR Review Rules in CI

Danger runs scripted PR checks and posts review comments, turning team style rules into repeatable CI feedback instead of manual nitpicks.

Script Depot
Script Depot · Community
Agent ready

This asset can be read and installed directly by agents

TokRepo exposes a universal CLI command, install contract, metadata JSON, adapter-aware plan, and raw content links so agents can judge fit, risk, and next actions.

Stage only · 29/100Stage only
Agent surface
Any MCP/CLI agent
Kind
Skill
Install
Stage only
Trust
Trust: Established
Entrypoint
Asset
Universal CLI install command
npx tokrepo install b32230ce-23a6-47cb-a4d8-2739397ff1c7
install contractmetadata JSONadapter planraw content
Intro

Danger runs scripted PR checks and posts review comments, turning team style rules into repeatable CI feedback instead of manual nitpicks.

  • Best for: teams who want consistent PR hygiene (changelog, labels, links) enforced automatically
  • Works with: GitHub/GitLab PR pipelines, Ruby + Bundler, a CI token (e.g. GitHub API token)
  • Setup time: 20–40 minutes

Practical Notes

  • Quant: start with 1–3 rules and expand after a week of signal/noise review.
  • Quant: use --verbose for the first 3 CI runs to diagnose token/PR context issues.

Pattern: make PR policy explicit (and reviewable)

Treat your Dangerfile like any other engineering policy:

  • keep the first sentence of each message actionable (what to change),
  • link to the team standard (CONTRIBUTING / style guide),
  • and version it with code review.

Pattern: split “hard fail” vs “soft warn”

Start with warnings (comments) to build trust, then promote the most stable checks into strict merge gates.

Troubleshooting checklist

  • Confirm the CI job runs only on PRs/MRs.
  • Confirm the correct token env var exists in that job.
  • Run bundle exec danger --verbose locally (in a PR checkout) to reproduce.

FAQ

Q: Is Danger free? A: Yes. It’s open-source under the MIT license; you host and run it in your own CI.

Q: Do I need Ruby in my repo? A: Typically yes. Most teams run Danger via Bundler so versions are pinned per repo.

Q: How do I keep it from being noisy? A: Start with a few high-signal checks, and distinguish warnings from failures.

🙏

Source & Thanks

Source: https://github.com/danger/danger > License: MIT > GitHub stars: 5,666 · forks: 488

Discussion

Sign in to join the discussion.
No comments yet. Be the first to share your thoughts.

Related Assets

Uni-CLI — Governed Software Commands + MCP for Agents

Searchable CLI catalog (282 sites, 1680 commands) that serves governed tools to agents via MCP, with repairable adapters; verified 73★, pushed 2026-05-13.

SkillsCLI Tools
Script Depot

Codeg — Local AI Coding Workspace (Tauri/Web)

Run Codeg as a standalone server or desktop app to manage local agent workflows, MCP installs, and engineering loops; one-line install is available.

SkillsCLI Tools
Script Depot

magic-cli — LLM Command Suggestion for Terminals

magic-cli is a Rust CLI that suggests commands, semantically searches shell history, and works with local or cloud LLM providers.

SkillsCLI Tools
Script Depot

crw — Fast Web Scraping + Search MCP in Rust

crw is a Rust web scraping/search tool with a Firecrawl-compatible API plus built-in MCP support for agents. Verified 87★; pushed 2026-05-14.

SkillsCLI Tools
Script Depot
Home🔍Search👤Me