ci: wire org-wide security-scan + CODEOWNERS#16
Conversation
Standardization pass across public ResQ repos.
.github/workflows/security.yml Caller for the reusable security-scan
workflow in resq-software/.github with
languages=["actions"].
.github/CODEOWNERS Default owner.
Inherits CoC / Contributing / Security / Support / PR + issue templates
from resq-software/.github.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
|
Warning Rate limit exceeded
Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 59 minutes and 34 seconds. ⌛ How to resolve this issue?After the wait time has elapsed, a review can be triggered using the We recommend that you space out your commits to avoid hitting the rate limit. 🚦 How do rate limits work?CodeRabbit enforces hourly rate limits for each developer per organization. Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout. Please see our FAQ for further information. ℹ️ Review info⚙️ Run configurationConfiguration used: defaults Review profile: CHILL Plan: Pro Run ID: 📒 Files selected for processing (2)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request introduces a .github/CODEOWNERS file to define default ownership for the repository. Feedback indicates that the security workflow file mentioned in the PR description is missing from the current changes. Additionally, it is recommended to replace the individual global owner with a team to ensure better maintenance and review availability.
| @@ -0,0 +1,2 @@ | |||
| # Default owner for everything not matched by a more specific rule. | |||
There was a problem hiding this comment.
The pull request title and description indicate that this PR adds .github/workflows/security.yml to implement organization-wide security scanning. However, this file is missing from the current changes. Please include the intended workflow file to fulfill the PR's objective.
| @@ -0,0 +1,2 @@ | |||
| # Default owner for everything not matched by a more specific rule. | |||
| * @WomB0ComB0 | |||
There was a problem hiding this comment.
Using a single individual (@WomB0ComB0) as the global code owner is a maintenance risk. For an organization-level repository, it is recommended to use a team (e.g., @resq-software/maintainers) to ensure that PR reviews and repository management are not dependent on a single person's availability.
1 participant
Standardization pass. Adds:
.github/workflows/security.yml— caller for the reusablesecurity-scan.yml(CodeQL + Gitleaks + OSV + dependency-review)..github/CODEOWNERS— default owner.Repo already has
.github/dependabot.yml; left untouched. Inherits CoC / Contributing / Security / Support / PR + issue templates fromresq-software/.github.🤖 Generated with Claude Code