potiuk opened a new pull request, #347: URL: https://github.com/apache/airflow-steward/pull/347
## Summary - Apply the flow discipline from #346 (the `pr-management-triage` refactor) to `security-issue-triage`. - Add Golden rule 7: Steps 1–4 run uninterrupted, Step 5 is the single human checkpoint. - Bump `gh issue list --limit 100` → `--limit 1000` so Step 1 fetches the full needs-triage backlog in one call (security backlogs don't approach four-digit counts in practice). - Drop the "echo list and confirm before Step 2" prompt — it duplicated the Step 5 confirm screen. - Three narrow cases still stop and ask: empty result set, CVE selector matching multiple trackers, `--retriage` on 50+ trackers. ## Why The skill was already mostly batch-shaped (parallel enrichment, full-list Step 5 confirm), but the pre-Step-2 confirm interrupted the maintainer right when the long enrichment phase was about to start. Removing it lets the maintainer run the skill and walk away during the enrichment, mirroring the pattern from #346. ## Test plan - [ ] `skill-and-tool-validate` exits 0 (verified locally; pre-existing soft warnings not introduced here). - [ ] Run `/security-issue-triage` on a small needs-triage queue (1–3 trackers) and confirm Steps 1–4 run without any prompt. - [ ] Run `/security-issue-triage --retriage` on a 50+ tracker selection and confirm the safety-stop fires. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
