dependabot-pr-handler
Installation
SKILL.md
Dependabot PR Handler Skill
Automated skill for reviewing, validating, and safely merging Dependabot pull requests in the Fusion Framework monorepo.
Dependencies: This skill uses:
pnpm-dependency-analysisskill for impact assessment and blast radius calculationnpm-researchskill for changelog, security, and breaking changes analysis
Operating Modes
Default to Full mode unless the user explicitly chooses Audit-only or Validate.
- Audit-only: Research + build/test/lint locally. Comments optional. No post/push/merge.
- Validate: Install + build + test + lint. Prepare comments. All actions gated by consent.
- Full: End-to-end with required comments, consent-gated push/merge.