prepare-security-prs
Prepare Security PRs
Overview
Triage and prepare automated dependency PRs for merge with minimal risk:
- identify dependency bot PRs that actually need intervention
- resolve comments/check failures only when needed
- refresh stale branches safely
- detect superseded PRs
- keep diffs minimal and dependency-focused
Inputs
owner/repobot_filters(optional list, example:dependabot[bot],renovate[bot],snyk-bot)stale_threshold(default:behind_by > 50)test_depth(none,targeted,full; default:targeted)allow_branch_rewrite(true/false, default:false)
More from soyio-id/skills
commit-work
Review, organize, and commit pending changes. Split into logical commits, stage carefully, and write clear Conventional Commit messages. Use when the user asks to commit, stage changes, or organize work into commits.
10create-pr
Create a clear, review-ready pull request with gh CLI. Gather context from commits and diff, follow repository templates, push safely, and return the PR URL with merge guidance.
10using-git-worktrees
Use when starting feature work that needs isolation from current workspace or before executing implementation plans - creates isolated git worktrees with smart directory selection and safety verification
9create-worktree
Create an isolated worktree for a new branch, existing branch, or PR review. Prefer repo-local worktree commands when they exist, and fall back to vanilla git worktrees otherwise.
8fix-vulnerabilities
Fix multiple dependency vulnerabilities across multiple repos. Parses Vanta-style vulnerability entries, groups by repo, creates a single fix branch per repo, applies all fixes, verifies compatibility, and creates PRs after user approval. Use when the user says '/fix-vulnerabilities' or asks to fix vulnerabilities across repos.
7create-production-pr
Create a production promotion PR from main/master to production in an allowed repo or the current repo. Use the repo PR template when available, list included PRs, and generate a date-based title with production-only version suffixes.
6