d176defdef
- Add Claude code review workflows (custom and standard) - Add pragmatic code review slash command and subagent - Add security review slash command - Add security workflow template
25 lines
656 B
YAML
25 lines
656 B
YAML
name: Security Review
|
|
|
|
permissions:
|
|
pull-requests: write # Needed for leaving PR comments
|
|
contents: read
|
|
|
|
on:
|
|
pull_request:
|
|
|
|
jobs:
|
|
security:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
with:
|
|
ref: ${{ github.event.pull_request.head.sha || github.sha }}
|
|
fetch-depth: 2
|
|
|
|
- uses: anthropics/claude-code-security-review@main
|
|
with:
|
|
comment-pr: true
|
|
claude-api-key: ${{ secrets.ANTHROPIC_API_KEY }}
|
|
claude-model: claude-opus-4-1-20250805
|
|
custom-security-scan-instructions: "" # Add any custom instructions specific to your codebase here.
|