From edbbfa4609f750304e79dd81c5bebe6892d39748 Mon Sep 17 00:00:00 2001 From: Surpris3E <94643805+catchmeifyoucaan@users.noreply.github.com> Date: Thu, 2 Jul 2026 15:52:05 +0100 Subject: [PATCH] security: add CODEOWNERS routing payment + submission logic to security team Added CODEOWNERS file to specify security review requirements for various directories. --- .github/CODEOWNERS | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/CODEOWNERS diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS new file mode 100644 index 0000000..ec6f540 --- /dev/null +++ b/.github/CODEOWNERS @@ -0,0 +1,22 @@ +# CODEOWNERS for Flow-Research/workstream +# Security team must review changes to payment and submission logic + +# Payment service - require security review +backend/payment/ @Flow-Research/security +backend/*/payment* @Flow-Research/security + +# Submission and checker logic - require security review +backend/checker/ @Flow-Research/security +backend/submission/ @Flow-Research/security + +# Workstream API runtime and settings - require security review +workstream/api/ @Flow-Research/security + +# Auth configuration - require security review +backend/auth/ @Flow-Research/security + +# CI/CD workflows - require security review +.github/workflows/ @Flow-Research/security + +# Environment / secrets config +.env* @Flow-Research/security