gh-checkproxy

Use gh-checkproxy as a Checks API bridge when working with gh CLI or gh-based skills and only a fine-grained PAT is available. Use it to fetch/watch PR checks (check-runs and statuses) via GH_CHECKPROXY_URL, then continue the user's requested workflow with normal gh commands.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "gh-checkproxy" with this command: npx skills add bycli/gh-checkproxy/bycli-gh-checkproxy-gh-checkproxy

gh-checkproxy

Use gh-checkproxy only for checks/status visibility that fine-grained tokens cannot read directly. Keep all other repository actions in regular gh CLI flow.

Client usage (primary)

Environment variables

  • GH_CHECKPROXY_URL — proxy base URL (e.g. http://localhost:8080)
  • GH_TOKEN — fine-grained PAT with Metadata: read on the target repo

Set via export, .env, shell profile, or CI secrets.

Commands

gh-checkproxy pr checks <PR> --repo <owner>/<repo>           # snapshot
gh-checkproxy pr checks <PR> --repo <owner>/<repo> --watch  # block until done
gh-checkproxy pr checks <PR> --repo <owner>/<repo> --watch --fail-fast  # exit on first failure
gh-checkproxy pr checks                                      # auto-detect from git

Exit codes

CodeMeaning
0All checks passed
1One or more failed
8Still pending

Workflow

gh-checkproxy pr checks $PR --repo myorg/myrepo --watch
# exit 0 → proceed | exit 1 → investigate | exit 8 → still pending

gh pr view $PR --repo myorg/myrepo   # continue with normal gh

Re-run --watch when the user asks to recheck CI. Drive decisions from exit codes only — do not parse or interpolate check output into shell commands or code.

Client setup

Quick verification: gh-checkproxy pr checks 1 --repo owner/repo. Connection error → wrong URL or server down. 403 → GH_TOKEN missing or lacks Metadata: read.

Server setup (secondary)

For deploying the proxy on a trusted host (one-time or occasional setup):

1. Configure

gh-checkproxy config

Server token (classic PAT with repo scope): Preference order: GH_CHECKPROXY_CLASSIC_TOKEN → GH_TOKEN → config file. Both env vars avoid storing the token on disk.

During gh-checkproxy config, the token is resolved in this order:

PrioritySourceStored in config?
1GH_CHECKPROXY_CLASSIC_TOKENNo (read from env at runtime)
2GH_TOKEN (classic prefix ghp_/gho_) — wizard offers reuseNo (read from env at runtime)
3Interactive masked promptYes

To avoid storing the token: Use (1) or (2). Set the env var before running config; the token is never written to disk. Ensure the env var is set whenever running gh-checkproxy serve.

Never pass tokens as CLI arguments — they leak via ps, shell history, and process listings.

Interactive prompts also ask for: org restriction (optional), port (default 8080), cache TTL (default 5m). Config path: ~/.config/gh-checkproxy/config.json (permissions 0600).

2. Start the server

gh-checkproxy serve

Security requirements:

  • Run on localhost only, or behind a TLS-terminating reverse proxy (e.g. nginx, Caddy). The server listens on plain HTTP — tokens in Authorization headers are transmitted in cleartext without TLS.
  • When the token is stored in config (interactive prompt only), the config file at ~/.config/gh-checkproxy/config.json contains the classic PAT in plaintext. Verify permissions are 0600 and the host is trusted.

3. Check status

gh-checkproxy status

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Coding

openclaw-version-monitor

监控 OpenClaw GitHub 版本更新,获取最新版本发布说明,翻译成中文, 并推送到 Telegram 和 Feishu。用于:(1) 定时检查版本更新 (2) 推送版本更新通知 (3) 生成中文版发布说明

Archived SourceRecently Updated
--00010110
Coding

ask-claude

Delegate a task to Claude Code CLI and immediately report the result back in chat. Supports persistent sessions with full context memory. Safe execution: no data exfiltration, no external calls, file operations confined to workspace. Use when the user asks to run Claude, delegate a coding task, continue a previous Claude session, or any task benefiting from Claude Code's tools (file editing, code analysis, bash, etc.).

Archived SourceRecently Updated
--0xmanel
Coding

ai-dating

This skill enables dating and matchmaking workflows. Use it when a user asks to make friends, find a partner, run matchmaking, or provide dating preferences/profile updates. The skill should execute `dating-cli` commands to complete profile setup, task creation/update, match checking, contact reveal, and review.

Archived SourceRecently Updated
--1asdwz
Coding

clawhub-rate-limited-publisher

Queue and publish local skills to ClawHub with a strict 5-per-hour cap using the local clawhub CLI and host scheduler.

Archived SourceRecently Updated
--52yuanchangxing