Steve Dignam

Digging into the output a bit more, here's the output in a less verbose form where the key is the package name and the value is the number of CVEs...

Nice, I love that smaller image size!

Yeah seems like it could fit behind a config flag, something like, `require_skipped_checks = true` We need to update the evaluation logic: https://github.com/chdsbd/kodiak/blob/008d21849650667fda2f23401d988896d264f6e9/bot/kodiak/evaluation.py#L868-L914 Currently we check the failing checks and...

Hmm, I'm curious what the API would be like in terms of the config settings & labels for the PR to trigger the behavior. Having labels override more settings is...

Another thing Kodiak has to balance is rate limits. The GitHub API has rather strict rate limits so Kodiak has to keep track of API requests to ensure it doesn't...

For self hosting you can create your own GitHub app that you control if that's what you mean https://kodiakhq.com/docs/self-hosting As part of the setup process the GitHub app subscribes to...

Looking into the Personal Access Tokens it seems they can be granted access to various scopes, but there isn't a way to setup web hook events for PR changes. I...

@okainov Oh yup you're right, my mistake So currently Kodiak doesn't support using a personal access token, but I don't see why we couldn't update it to Currently we configure...

Does https://github.com/smarkets/marge-bot cover your use case? I haven't used it but it describes itself as a merge bot for gitlab. semi related: https://github.com/chdsbd/kodiak/issues/411

Currently Kodiak doesn't support adding labels once the PR is merged. I think we'd to update the config with a new option and make another call to GitHub after the...