Lib.rs

Command line utilities | Web programmingHTTP server | Configuration
#pull-request #block #github #bot #editor-config #cerberus

bin+lib cerberus-mergeguard

Block github pull request merges until all status checks have passed

by heathcliff26

11 unstable releases (3 breaking)

Uses new Rust 2024

0.3.5 Oct 1, 2025
0.3.4 Sep 1, 2025
0.3.3 Aug 1, 2025
0.3.2 Jul 1, 2025
0.0.2 May 31, 2025

#1077 in Command line utilities

Download history 86/week @ 2025-06-25 67/week @ 2025-07-02 12/week @ 2025-07-09 127/week @ 2025-07-30 6/week @ 2025-08-06 98/week @ 2025-08-27 24/week @ 2025-09-03 5/week @ 2025-09-10 143/week @ 2025-10-01 8/week @ 2025-10-08

152 downloads per month

Apache-2.0

115KB
2.5K SLoC

CI Coverage Status Editorconfig Check Generate test cover report Renovate

cerberus-mergeguard

Use cerberus bot to combine conditional workflows in big monorepos with required status checks.

Instead of having empty runs, crazy bash magic or other tricks, you only need to mark the "cerberus-mergeguard" status as required.

Table of Contents

Usage

CLI Args

$ cerberus-mergeguard help
Guard PRs from merging until all triggered checks have passed

Usage: cerberus-mergeguard [OPTIONS] <COMMAND>

Commands:
  server   Run the bot and listen for webhook events on /webhook
  create   Create a new pending status check for a commit
  refresh  Refresh the state of the status check of a commit
  status   Check the status of a commit
  version  Print the version and exit
  help     Print this message or the help of the given subcommand(s)

Options:
      --log <LOG>        Log level to use, overrides the level given in the config file
  -c, --config <CONFIG>  Path to the config file [default: /config/config.yaml]
  -h, --help             Print help

Image location

Container Registry Image
Github Container ghcr.io/heathcliff26/cerberus-mergeguard
Docker Hub docker.io/heathcliff26/cerberus-mergeguard

Tags

There are different flavors of the image:

Tag(s) Description
latest Last released version of the image
rolling Rolling update of the image, always build from main branch.
vX.Y.Z Released version of the image

Setup

Creating a github app

In order to create and update status checks, github requires an app. To create a github app follow these steps:

  1. Open github.com
  2. Login to your account
  3. Go to Settings -> Developer Settings
  4. Under "Github Apps" click "New Github App"
  5. Fill out all required fields
    • GitHub App name: The display name of your app, e.g. Cerberus Mergeguard
    • Homepage URL: URL to your Website
    • Webhook URL: The URL where your bot is running, e.g. https://example.org/webhook
    • Webhook Secret: Optional create a random string to enter here, to verify that webhook requests are sent by github
    • Permissions -> Repository permissions:
      • Checks: Read/Write
      • Issues: Read
      • Pull requests: Read
    • Events:
      • Check run
      • Issue comment
      • Pull request
  6. After creating your app, go to your app -> "Private Keys" and generate a new key

Installing your app

After you have created your app, navigate to it (Settings -> Developer Settings -> Your App).

In the "Installed App" tab install the app to your profile and select which repositories you want to use it for.

Running the bot

Before you run the bot, copy both the example configuration and your app private key to a folder.

Afterwards ensure you fill out all required attributes in the configuration file. The example has descriptions of the values.

Finally run the bot with

podman run -d -p 8080:8080 -v /path/to/config/:/config/ ghcr.io/heathcliff26/cerberus-mergeguard:latest

(Optional) Installing binary in CLI

You can download the latest binary from the releases page.

Alternatively you can use cargo with cargo install cerberus-mergeguard.

Credits

The avatar picture has been created with Google Gemini.

Dependencies

~93MB
~2M SLoC