Reusable GitHub Actions workflows for the organization.
Note: All workflows run on self-hosted runners (
AI-Tools-VM).
Scans for verified secrets in your codebase using TruffleHog.
# .github/workflows/security.yml
name: Security
on:
push:
branches: [main]
pull_request:
branches: [main]
jobs:
gitleaks:
uses: Mike-Jenkins-Org/.github/.github/workflows/gitleaks.yml@mainOnly reports verified secrets (credentials that are confirmed active) to reduce false positives.
Enables @claude mentions on issues and pull requests. Claude will respond to mentions and can help with code reviews, issue triage, and implementation tasks.
# .github/workflows/claude.yml
name: Claude
on:
issue_comment:
types: [created]
issues:
types: [opened, assigned]
pull_request_review_comment:
types: [created]
pull_request_review:
types: [submitted]
jobs:
claude:
uses: Mike-Jenkins-Org/.github/.github/workflows/claude.yml@mainUses Claude OAuth for authentication (no API key required).
Standardized Python linting and testing.
# .github/workflows/ci.yml
name: CI
on:
push:
branches: [main]
pull_request:
branches: [main]
jobs:
ci:
uses: Mike-Jenkins-Org/.github/.github/workflows/python-ci.yml@main
with:
source-dir: src/your-package| Input | Required | Default | Description |
|---|---|---|---|
source-dir |
Yes | - | Source directory to lint and test (e.g., src/wai) |
python-version |
No | 3.10 |
Python version to use |
run-mypy |
No | true |
Whether to run mypy type checking |
mypy-strict |
No | false |
If true, mypy failures block the build |
- Create a new workflow in
.github/workflows/ - Use
workflow_calltrigger to make it reusable - Document inputs in this README