iterate-pr
Automates the process of iterating on pull requests until all CI checks pass, addressing feedback efficiently.
Install this skill
Security score
The iterate-pr skill was audited on Mar 7, 2026 and we found 9 security issues across 2 threat categories, including 6 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 14 | **Important**: All scripts must be run from the repository root directory (where `.git` is located), not from the skill directory. Use the full path to the script via `${CLAUDE_SKILL_ROOT}`. |
Template literal with variable interpolation in command context
| 22 | ```bash |
Template literal with variable interpolation in command context
| 42 | ```bash |
Template literal with variable interpolation in command context
| 70 | Run `${CLAUDE_SKILL_ROOT}/scripts/fetch_pr_feedback.py` to get categorized feedback already posted on the PR. |
Template literal with variable interpolation in command context
| 122 | Run `${CLAUDE_SKILL_ROOT}/scripts/fetch_pr_checks.py` to get structured failure data. |
Template literal with variable interpolation in command context
| 155 | 1. Run `uv run ${CLAUDE_SKILL_ROOT}/scripts/fetch_pr_checks.py` to get current CI status |
Template literal with variable interpolation in command context
| 159 | a. Run `uv run ${CLAUDE_SKILL_ROOT}/scripts/fetch_pr_feedback.py` for new review feedback |
Template literal with variable interpolation in command context
| 163 | 5. After all checks pass, do a final feedback check: `sleep 10`, then run `uv run ${CLAUDE_SKILL_ROOT}/scripts/fetch_pr_feedback.py`. Address any new high/medium feedback — if changes are needed, retu |
External URL reference
| 40 | Fetches and categorizes PR review feedback using the [LOGAF scale](https://develop.sentry.dev/engineering-practices/code-review/#logaf-scale). |