codeburn/.github/workflows/firstlook.yml at 2ed1d5275c471bf3d71f6fc404c4fb23643401aa - vrr/codeburn - VRR Forge

vrr/codeburn

mirror of https://github.com/AgentSeal/codeburn.git synced 2026-04-28 06:59:37 +00:00

iamtoruk 2ed1d5275c chore: add firstlook workflow for PR author reputation check

Runs on every PR open/reopen/synchronize against getagentseal/firstlook
and fails the check when the author's score is 'unknown' (new or
untracked accounts). Skips bot accounts so dependabot and renovate pass
through.

This screens the same drive-by pattern that landed in PR #118 (octo-patch,
fresh automation account) without requiring a manual tier check on every
submission.

2026-04-21 06:17:56 -07:00

16 lines

338 B

YAML

Raw Blame History

 name: firstlook
 on:
   pull_request:
     types: [opened, reopened, synchronize]
 jobs:
   assess:
     runs-on: ubuntu-latest
     permissions:
       pull-requests: write
       contents: read
     steps:
       - uses: getagentseal/firstlook@main
         with:
           skip-users: 'dependabot[bot],renovate[bot]'
           fail-on: 'unknown'