tessl-labs/pr-review-guardrails
Evidence-first pull request review with independent critique, selective challenger review, and human handoff.
89
92%
Does it follow best practices?
Impact
89%
1.36xAverage score across 43 eval scenarios
Risky
Do not use without reviewing
criteria.jsonevals/scenario-14/
{
"context": "Edge case: dependencies with known CVEs",
"type": "weighted_checklist",
"checklist": [
{
"name": "Catches vulnerable dependencies",
"description": "Identifies that the PR adds dependencies with known security vulnerabilities (CVEs)",
"max_score": 8
},
{
"name": "Names specific packages",
"description": "Names at least one specific vulnerable package and its risk (e.g. lodash prototype pollution, jsonwebtoken vulnerability)",
"max_score": 8
}
]
}evals
scenario-1
scenario-2
scenario-3
scenario-4
scenario-5
scenario-6
scenario-7
scenario-8
scenario-9
scenario-10
scenario-11
scenario-12
scenario-13
scenario-14
scenario-15
scenario-16
scenario-17
scenario-18
scenario-19
scenario-20
scenario-21
scenario-22
scenario-23
scenario-24
scenario-25
scenario-26
scenario-27
scenario-28
scenario-29
scenario-30
scenario-31
scenario-32
scenario-33
scenario-34
scenario-35
scenario-36
scenario-37
scenario-38
scenario-39
scenario-40
scenario-41
scenario-42
scenario-43
rules
skills
challenger-review
finding-synthesizer
fresh-eyes-review
human-review-handoff
pr-evidence-builder
review-retrospective