Skip to content

Commit

Permalink
adding a workflow for reviewing code changes using stepsecurity code …
Browse files Browse the repository at this point in the history
…reviewer
  • Loading branch information
ashishkurmi committed Apr 30, 2023
1 parent 5d5d342 commit b4ed311
Showing 1 changed file with 23 additions and 0 deletions.
23 changes: 23 additions & 0 deletions .github/workflows/code-review.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
name: Code Review
on:
pull_request:
branches:
- main
- int
jobs:
code-review:
name: int tests
runs-on: ubuntu-latest
permissions:
contents: read
pull-requests: write
steps:
- name: Harden Runner
uses: step-security/harden-runner@6b3083af2869dc3314a0257a42f4af696cc79ba3
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs

- name: Code Review
uses: docker://ghcr.io/step-security/code-reviewer/int:latest # docker pull ghcr.io/step-security/code-reviewer/int:latest
env:
PAT: ${{ secrets.GITHUB_TOKEN }}

0 comments on commit b4ed311

Please sign in to comment.