Set up the Pull Request Enricher AI agent
Overviewโ
This guide will walk you through setting up a "Pull Request Enricher" AI agent in Port.
By the end of this guide, your developers will receive automated, contextual comments on their pull requests to help streamline the review process.
Common use casesโ
- Automatically comment on new pull requests with assessments based on PR metadata.
- Highlight potential areas of concern.
- Provide context from related Jira tickets directly in the PR comments.
- Suggest relevant reviewers based on code changes.
Prerequisitesโ
This guide assumes you have:
- A Port account with the AI agents feature enabled.
- Appropriate permissions to create and configure AI agents.
- GitHub integration configured in your Port instance.
- Jira integration configured in your Port instance.
Set up data modelโ
First, we'll need to create the Pull Request Enricher AI agent in Port.
We will need to configure:
- The data sources it will use to analyze pull requests.
- The agent configuration that defines its capabilities.
- An automation to trigger the agent when new pull requests are opened.
Configure data source accessโ
For this guide, we will be using GitHub as our data source to provide comprehensive pull request analysis capabilities. Make sure you have Port's GitHub app installed and configured.
While this guide uses GitHub, you can enhance the agent's capabilities by adding other data sources like:
- PagerDuty for checking active incidents.
- Your software catalog services for broader context.
Create the agent configurationโ
-
Go to the AI Agents page of your portal.
-
Click on
+ AI Agent. -
Toggle
Json modeon. -
Copy and paste the following JSON schema:
Pull Request Enricher agent configuration (Click to expand)
{
"identifier": "pr_assistant_ai_agent",
"title": "PR Review Assistant",
"description": "AI agent that analyzes pull requests and provides helpful context for reviewers",
"icon": "Pipeline",
"properties": {
"description": "Comment on open PRs with additional context to assist developers",
"status": "active",
"allowed_blueprints": [
"githubPullRequest",
"githubRepository",
"githubUser",
"jiraIssue",
"_user",
"_team"
],
"prompt": "Analyze pull request details and provide a structured review in the following format:\n\nPR Description:\n Summarize the PR description and key properties in one sentence \n\nKey Points:\n{{ List up to 3 key insights about the changes }}\n\nObservations:\nProvide up to 3 observations using ๐ข for low risk, ๐ก for medium risk, and ๐ด for high risk\n\nRecommendations:\nList up to 3 optional recommendations for improvement.provide this in markdown form",
"execution_mode": "Automatic"
}
} -
Click on
Createto save the agent.
Create the automationsโ
We will need two automations:
- One to trigger the AI agent when a PR is opened.
- Another to post the agent's response as a comment.
Trigger PR enricher AI agentโ
-
Go to the Automations page.
-
Click on
+ Automation. -
Copy and paste the following JSON schema:
PR Enricher agent trigger automation (Click to expand)
{
"identifier": "pr_opened_to_agent",
"title": "Upon PR opened, trigger PR Assistant",
"description": "Automation to trigger PR Assistant when a new PR is opened",
"trigger": {
"type": "automation",
"event": {
"type": "ENTITY_CREATED",
"blueprintIdentifier": "githubPullRequest"
},
"condition": {
"type": "JQ",
"expressions": [
".diff.after.properties.status == \"open\""
],
"combinator": "and"
}
},
"invocationMethod": {
"type": "WEBHOOK",
"url": "https://api.getport.io/v1/agent/pr_review_assistant/invoke",
"synchronized": true,
"body": {
"prompt": "Analyze pull request with pull request identifier '{{ .event.diff.after.properties.prNumber }}'",
"labels": {
"source": "Automation",
"prNumber": "{{ .event.diff.after.properties.prNumber }}",
"repo": "{{ .event.diff.after.relations.repository }} "
}
}
},
"publish": true
} -
Click on
Createto save the automation.
Post PR enricher AI agent response on GitHubโ
This automation requires a GitHub Personal Access Token (PAT) with repo scope to post comments on pull requests.
Store this token as a secret in Port.
-
Create GitHub PAT:
Follow GitHub's guide to create a fine-grained personal access token with Read and Write permissions for Pull requests for the repositories you want the agent to comment on. -
Add Secret to Port:
- Click on the
...button in the top right corner of your Port application. - Click on Credentials.
- Click on the
Secretstab. - Click on
+ Secretand add the following secret:GITHUB_TOKEN- Your GitHub Personal Access Token
- Click on the
-
Go back to the Automations page
-
Click on
+ Automation -
Copy and paste the following JSON schema:
Post PR comment from agent response automation (Click to expand)
{
"identifier": "post_pr_comment",
"title": "Post PR comment from agent response",
"description": "Automation to post the agent's response as a PR comment",
"trigger": {
"type": "automation",
"event": {
"type": "ENTITY_CREATED",
"blueprintIdentifier": "_ai_invocations"
},
"condition": {
"type": "JQ",
"expressions": [
".event.diff.after.relations.agent == \"pr_review_assistant\"",
".event.diff.after.properties.status == \"Completed\""
],
"combinator": "and"
}
},
"invocationMethod": {
"type": "WEBHOOK",
"url": "https://api.github.com/repos/<YOUR_GITHUB_ORG>/<YOUR_GITHUB_REPO>/actions/workflows/post-pr-comment.yml/dispatches",
"method": "POST",
"headers": {
"Accept": "application/vnd.github+json",
"Authorization": "Bearer {{ .secrets.GITHUB_TOKEN }}",
"Content-Type": "application/json"
},
"body": {
"ref": "main",
"inputs": {
"comment": "{{ .event.diff.after.properties.response }}",
"pr": "{{ .event.diff.after.properties.prNumber }}",
"repo": "{{ .event.diff.after.relations.repository }}"
}
}
},
"publish": true
}Replace placeholdersMake sure to replace 'YOUR_GITHUB_ORG' and 'YOUR_GITHUB_REPO' in the
urlfield above with the actual organization and repository where yourpost-pr-comment.ymlworkflow resides. -
Click on
Createto save the automation.
Create the GitHub workflowโ
Now let's create the workflow file that contains the logic to post the comment.
We recommend creating a dedicated repository for the workflows that are used by Port actions.
In your dedicated workflow repository, ensure you have a .github/workflows directory.
-
Create a new file named
post-pr-comment.yml -
Copy and paste the following snippet:
Post PR comment workflow (Click to expand)
name: Comment on PR
on:
workflow_dispatch:
inputs:
comment:
description: 'The comment text to post'
required: true
type: string
repo:
description: 'Repository in "owner/repo" format (e.g., port-labs/puddle-integrations)'
required: true
type: string
pr:
description: 'Pull request number'
required: true
type: string
jobs:
comment:
runs-on: ubuntu-latest
steps:
- name: Set up Python
uses: actions/setup-python@v4
with:
python-version: '3.x'
- name: Install Python dependencies
run: |
pip install PyJWT requests cryptography
- name: Comment on PR using GitHub App
env:
PEM: ${{ secrets.PORT_GITHUB_APP_PEM }}
APP_ID: ${{ secrets.PORT_GITHUB_APP_ID }}
INSTALLATION_ID: ${{ secrets.PORT_GITHUB_APP_INSTALLATION_ID }}
COMMENT: ${{ github.event.inputs.comment }}
REPO: ${{ github.event.inputs.repo }}
PR_NUMBER: ${{ github.event.inputs.pr }}
run: |
python - <<'EOF'
import os, time, jwt, requests
# Load environment variables
pem = os.environ['PEM']
app_id = os.environ['APP_ID']
installation_id = os.environ['INSTALLATION_ID']
comment = os.environ['COMMENT']
repo = os.environ['REPO']
pr_number = os.environ['PR_NUMBER']
# Generate JWT (valid for 10 minutes)
now = int(time.time())
payload = {
'iat': now - 60,
'exp': now + (10 * 60),
'iss': app_id
}
jwt_token = jwt.encode(payload, pem, algorithm='RS256')
# Obtain an installation access token
headers = {
'Authorization': f'Bearer {jwt_token}',
'Accept': 'application/vnd.github+json'
}
token_url = f"https://api.github.com/app/installations/{installation_id}/access_tokens"
resp = requests.post(token_url, headers=headers)
resp.raise_for_status()
token = resp.json()['token']
# Comment on the pull request (PRs are issues in GitHub API)
owner, repo_name = repo.split('/')
comment_url = f"https://api.github.com/repos/{owner}/{repo_name}/issues/{pr_number}/comments"
comment_payload = {"body": comment}
headers = {
'Authorization': f'Bearer {token}',
'Accept': 'application/vnd.github.v3+json',
'Content-Type': 'application/json'
}
resp = requests.post(comment_url, headers=headers, json=comment_payload)
resp.raise_for_status()
print("Comment posted successfully!")
EOFRequired GitHub SecretsFor this workflow to function properly, you need to add the following secrets to your GitHub repository:
PORT_GITHUB_APP_PEM: The private key of your GitHub App in PEM format.PORT_GITHUB_APP_ID: The App ID of your GitHub App.PORT_GITHUB_APP_INSTALLATION_ID: The installation ID of your GitHub App in this repository.
-
Commit and push the changes to your repository.
Example responseโ
The PR Enricher agent will automatically comment on new pull requests with information like:
## Pull Request Review: Feature/Payment Gateway Integration
### PR Details
This PR implements Stripe payment processing with 3D Secure authentication and adds feature flags for gradual rollout. Created by Alex Chen from the payments team.
### PR Description
This pull request introduces a new payment gateway integration with Stripe, enabling secure credit card processing with 3D Secure authentication and compliance with PCI-DSS requirements.
### Key Points
1. Adds a new `PaymentService` that implements the payment gateway interface with Stripe-specific logic.
2. Includes comprehensive error handling for payment failures, network issues, and fraud detection.
3. Adds feature flags to gradually roll out the payment system to different user segments.
### Observations
- **Security Impact**: ๐ด Handles sensitive payment information requiring thorough security review and PCI compliance verification.
- **Test Coverage**: ๐ก Integration tests with Stripe's test environment included, but mock tests for failure scenarios need expansion.
- **Performance**: ๐ข Initial load testing shows payment processing completes in <200ms for 99% of transactions.
### Recommendations
- **Security Review**: Request dedicated review from security team to verify proper handling of payment tokens and credentials.
- **Documentation**: Add detailed documentation about the Stripe integration configuration and failure handling for on-call engineers.
- **Monitoring**: Consider adding additional logging and alerting for payment failures to quickly identify issues in production.
*This integration significantly expands our payment capabilities while maintaining our security standards. The feature flags provide a safe rollout strategy.*
Best practicesโ
To get the most out of your PR Enricher agent:
-
Ensure PR-Jira Linking: Verify that your Port setup correctly establishes relations between
githubPullRequestentities andjiraIssueentities. -
Start with basic assessment: Begin with simple risk assessment and gradually add more context as you see how the agent performs.
-
Monitor responses: Regularly review the agent's comments to ensure they're helpful and accurate.
-
Iterate on the prompt: Refine the prompt based on the quality of responses and specific needs of your team.
-
Test the workflow: Create test pull requests to verify the entire flow works as expected.
-
Troubleshoot: If you're not getting the expected results, check our troubleshooting guide for common issues and solutions.
Possible enhancementsโ
You can further enhance the PR Enricher setup by:
- Adding more data sources like PagerDuty for incident context or additional Git providers for broader repository visibility.
- Configuring automated actions such as reviewer assignment, PR labeling, or creating follow-up Jira tickets.
- Customizing risk assessment criteria to align with your organization's specific guidelines and monitoring usage patterns.