// Work with GitHub through the `gh` CLI, including issues, pull requests, reviews, Actions runs, releases, repository metadata, API queries, and CLI authentication/setup on persistent environments.
Analyze Bridge agent execution logs from ~/.bridge/sessions, reconstruct the agent's actual runtime behavior, and explain tool execution, failures, retries, and artifacts from persisted session files.
Debug and validate OpenBridge on a real macOS desktop through mini-machine plus full VNC computer-use. Use when local broker automation is not enough, when you need end-to-end GUI verification on macOS, or when local changes should be pushed to a branch and rebuilt from a fresh machine clone instead of transferred manually.
Read, create, and review DOCXs guidance
Convert files between formats. Use for Document conversion, Image format conversion, and Audio/Video format conversion.
Work with Linear through the `linear` CLI, including issue listing, creation, updates, comments, team/project/label lookup, JSON issue views, and CLI authentication/setup on persistent environments.
Read, create, and review PDFs
| name | github |
| description | Work with GitHub through the `gh` CLI, including issues, pull requests, reviews, Actions runs, releases, repository metadata, API queries, and CLI authentication/setup on persistent environments. |
Use this skill whenever the task involves GitHub and the gh CLI is available or should be made available. Prefer direct gh commands over browser-only workflows for operations that have stable CLI support.
gh api or GraphQL for fields not exposed by first-class subcommands.gh on a persistent VM when the user needs reusable GitHub CLI access.--repo owner/name when outside the target repository or when ambiguity is possible.--json with --jq for machine-readable output instead of parsing tables.RequestOAuthAuthorization to connect the user's GitHub account, then pass the saved credential to Exec.credential_env.Before running a device-flow login or asking the user for a token, check whether a GitHub OAuth credential already exists:
ListOAuthCredentials.github credential is available and active, use its alias in Exec.credential_env; replace "default" below with the actual alias returned by ListOAuthCredentials:
[{"env_var":"GH_TOKEN","provider":"github","alias":"default","value":"access_token"}]
RequestOAuthAuthorization with provider: "github", a short stable alias such as "default", and a concise reason. Request scopes that match the task, for example ["repo"] for private repository read/write, ["read:org"] for organization metadata, and ["workflow"] only when workflow file changes or Actions operations require it.authorization_url with the user and wait for them to confirm they completed authorization.CompleteOAuthAuthorization with the returned state. If it returns completed, retry the GitHub command with Exec.credential_env using the returned alias. If it returns pending, ask the user to finish the browser flow. If it returns failed or expired, start a fresh authorization flow.Managed OAuth keeps tokens out of the transcript. Do not print the token or try to read it directly; inject it only for the subprocess that needs GitHub access. gh honors GH_TOKEN, so a full gh auth login is usually unnecessary when using this flow.
gh --version
gh auth status -h github.com
git remote -v
When the repository is known:
gh repo view owner/name --json nameWithOwner,defaultBranchRef,viewerPermission
Search issues:
gh issue list --repo owner/name --search "login timeout session expired" --json number,title,state,url,labels,updatedAt
View an issue:
gh issue view 123 --repo owner/name --json number,title,body,state,url,labels,assignees,comments
Create an issue:
gh issue create --repo owner/name --title "Investigate login timeout on macOS" --body "..."
Update or comment:
gh issue edit 123 --repo owner/name --add-label bug --add-assignee @me
gh issue comment 123 --repo owner/name --body "..."
List and view PRs:
gh pr list --repo owner/name --state open --json number,title,author,headRefName,baseRefName,isDraft,reviewDecision,statusCheckRollup
gh pr view 55 --repo owner/name --json number,title,body,state,url,files,commits,reviews,comments
Check out a PR when code inspection is needed:
gh pr checkout 55 --repo owner/name
Create or update a PR:
gh pr create --repo owner/name --base main --head feature-branch --title "Title" --body "..."
gh pr edit 55 --repo owner/name --title "New title" --body "..."
Review, comment, and merge:
gh pr review 55 --repo owner/name --comment --body "..."
gh pr review 55 --repo owner/name --approve --body "..."
gh pr merge 55 --repo owner/name --squash --delete-branch
Use the repository's merge policy and user instructions when choosing merge mode.
Check PR checks:
gh pr checks 55 --repo owner/name
List and inspect workflow runs:
gh run list --repo owner/name --limit 20
gh run view <run-id> --repo owner/name --json status,conclusion,event,headBranch,headSha,jobs
gh run view <run-id> --repo owner/name --log-failed
Rerun only when requested or when it is clearly part of the task:
gh run rerun <run-id> --repo owner/name --failed
gh release list --repo owner/name
gh release view v1.2.3 --repo owner/name --json tagName,name,body,isDraft,isPrerelease,assets
gh release create v1.2.3 --repo owner/name --title "v1.2.3" --notes "..."
gh run download <run-id> --repo owner/name --dir /tmp/artifacts
Use REST when it is straightforward:
gh api repos/owner/name/pulls/55 --jq '{title, state, user: .user.login}'
Use GraphQL for review threads, project items, or nested data:
gh api graphql -f query='
query($owner:String!, $repo:String!, $number:Int!) {
repository(owner:$owner, name:$repo) {
pullRequest(number:$number) {
title
reviewThreads(first:50) {
nodes { isResolved comments(first:10) { nodes { body author { login } } } }
}
}
}
}' -F owner=owner -F repo=name -F number=55
If gh is already authenticated, use it. If setup is required on a persistent VM, prefer the managed OAuth flow above and run gh commands with Exec.credential_env. Install gh using the platform package manager or GitHub's documented package source when needed.
Preferred verification:
gh auth status -h github.com
gh api user --jq '.login'
If normal browser handoff is inconvenient in the local VM, use a device flow:
https://github.com/login with allowed domain github.com.python3, Playwright for Python, Chromium, xvfb, and Chromium runtime libraries on the VM if browser automation is needed./tmp/github-cookies.json.gh auth login --hostname github.com --git-protocol https --web --skip-ssh-key process and keep it running.xvfb-run to open https://github.com/login/device, reuse saved cookies, enter the one-time code, and authorize the CLI.Important details for the GitHub device page:
user-code-0 through user-code-8; skip the hidden hyphen input.xvfb-run -a may be more reliable than headless Chromium for the final authorization button.gh auth status fails: authenticate or explain the missing credentials.HTTP 404 from gh api: check repository name, token scopes, and whether the authenticated user has access.gh error and do not retry blindly.