Skip to content

Add PR Code Security Workflow#9

Merged
luiz1361 merged 1 commit intomasterfrom
infra/add-pr-code-security-20260306122951
Mar 6, 2026
Merged

Add PR Code Security Workflow#9
luiz1361 merged 1 commit intomasterfrom
infra/add-pr-code-security-20260306122951

Conversation

@luiz1361
Copy link
Copy Markdown

@luiz1361 luiz1361 commented Mar 6, 2026
edited by coderabbitai Bot
Loading

Summary

Adds a GitHub Actions workflow that runs on every pull request targeting the default branch:

  • Secret Detection - reusable workflow from prisma/.github
  • Code Scanning - reusable workflow from prisma/.github

Both workflows are maintained centrally in prisma/.github and invoked via uses: with secrets: inherit.

Why

Ensures all PRs are scanned for leaked secrets and code security issues before merge.

Summary by CodeRabbit

  • Chores
    • Added automated security checks for pull requests to the master branch.

@luiz1361 luiz1361 self-assigned this Mar 6, 2026
@coderabbitai
Copy link
Copy Markdown

coderabbitai Bot commented Mar 6, 2026
edited
Loading

Walkthrough

A new GitHub Actions workflow file is added that triggers on pull requests to the master branch. The workflow defines two jobs—secret-detection and code-scanning—that each reuse external workflows from the prisma organization with secrets inherited, delegating security checks to those workflows.

Changes

Cohort / File(s) Summary
GitHub Actions Workflow
.github/workflows/pr-code-security.yml		 Introduces new PR code security workflow with two jobs: secret-detection and code-scanning, both reusing external workflows from the prisma organization and triggered on pull requests to master branch.
🚥 Pre-merge checks | ✅ 3
✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title accurately and concisely describes the main change: adding a GitHub Actions workflow for PR code security checks.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch infra/add-pr-code-security-20260306122951

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot]
coderabbitai Bot reviewed Mar 6, 2026
View reviewed changes
Copy link
Copy Markdown

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 2

ℹ️ Review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 681a2b1c-ce17-403e-8590-64a5469a6a69

📥 Commits

Reviewing files that changed from the base of the PR and between 0778dea and b3d4eb5.

📒 Files selected for processing (1)
  • .github/workflows/pr-code-security.yml

Comment thread .github/workflows/pr-code-security.yml
Comment thread .github/workflows/pr-code-security.yml
Nova-ZA
Nova-ZA approved these changes Mar 6, 2026
View reviewed changes
Copy link
Copy Markdown

@Nova-ZA Nova-ZA left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved.

@luiz1361 luiz1361 merged commit 419d656 into master Mar 6, 2026
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@Nova-ZA Nova-ZA Nova-ZA approved these changes

Assignees

@luiz1361 luiz1361

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@luiz1361 @Nova-ZA