Remind inactive pull request reviewers and gently nudge authors to delete merged branches. Works across either:
- An entire organization (auto-discovers repositories)
- A personal user account
- An explicit list of repositories (
owner/repoor justrepowhen combined with a singleowner)
Usable as a GitHub Action or a small CLI (Node 18+).
- Detects open PRs with requested reviewers who haven't left a review within a threshold (default 12h) and comments reminders.
- Detects merged PRs whose source branches still exist and comments asking for cleanup.
- Auto-discovers repositories for an org or user (with optional inclusion of forks / archived repos).
- Dry-run mode for safe trial runs.
Create a workflow, e.g. .github/workflows/repo-guardian.yml:
name: Repo Guardian
on:
schedule:
- cron: '0 * * * *' # hourly
workflow_dispatch: {}
jobs:
remind:
runs-on: ubuntu-latest
permissions:
contents: read
pull-requests: write
issues: write
steps:
- name: Run Repo Guardian (org-wide auto discovery)
uses: MCKanpolat/RepoGuardian@V1
with:
owner: your-org-or-username
review_hours: 12
max_closed_lookback_days: 14
dry_run: false steps:
- name: Specific repositories
uses: MCKanpolat/RepoGuardian@V1
with:
repos: your-org/repo-one,your-org/repo-two
review_hours: 6 steps:
- name: Implicit owner
uses: MCKanpolat/RepoGuardian@V1
with:
owner: your-org
repos: repo-one,repo-two with:
owner: your-org
include_forks: true
include_archived: true with:
owner: your-org
dry_run: trueThe default GITHUB_TOKEN needs pull-requests: write and issues: write to create reminder comments.
If you need to use a PAT instead (e.g., cross-repo or org-level constraints):
steps:
- name: Repo Guardian with PAT
uses: MCKanpolat/RepoGuardian@V1
with:
owner: your-org
github_token: ${{ secrets.MY_PAT }}Ensure the PAT has at least repo scope (private repos) or public_repo (public-only).
| Input | Description | Default |
|---|---|---|
github_token |
Custom token (defaults to ${{ github.token }}) |
(auto) |
owner |
Org or username (required if repos not set) |
|
repos |
Comma list of owner/repo or repo (needs owner) |
|
review_hours |
Hours before reminding reviewers | 12 |
max_closed_lookback_days |
Days window to scan merged PRs | 14 |
dry_run |
Log only, no comments | false |
include_forks |
Include forks on auto-discovery | false |
include_archived |
Include archived repos | false |
Install globally (optional):
npm install -g repo-guardianRun with environment variables:
GITHUB_TOKEN=ghp_yourToken OWNER=your-org node remind-reviewers.jsOr via the installed binary:
GITHUB_TOKEN=ghp_yourToken OWNER=your-org repo-guardianLimit to explicit repositories:
GITHUB_TOKEN=token REPOS=owner1/repoA,owner2/repoB repo-guardianImplicit owner form:
GITHUB_TOKEN=token OWNER=your-org REPOS=repoA,repoB repo-guardianDry run:
GITHUB_TOKEN=token OWNER=your-org DRY_RUN=true repo-guardianAdditional toggles:
INCLUDE_FORKS=true INCLUDE_ARCHIVED=true ...0success1configuration or runtime error
Install deps:
npm installRun locally (dry run):
GITHUB_TOKEN=token OWNER=your-org DRY_RUN=true node remind-reviewers.js- Reviewer inactivity is approximated using PR creation time vs. first review; it does not currently track the exact time each reviewer was requested individually.
- Branch cleanup comments only appear for merged PRs whose head branch still exists.
- Pagination stops early for merged PR scanning when older than the lookback window.
- Per-reviewer request timestamp tracking
- Slack / Teams notification bridge
- Config file support (YAML) for advanced rules
MIT