From 27113eb919218437e77d24e7b26be9049518572b Mon Sep 17 00:00:00 2001
From: anupsv <anupsv@users.noreply.github.com>
Date: Sun, 10 Aug 2025 20:58:20 -0700
Subject: [PATCH 1/3] Create claude-security-reviewer.yaml

---
 claude-security-reviewer.yaml | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 claude-security-reviewer.yaml

diff --git a/claude-security-reviewer.yaml b/claude-security-reviewer.yaml
new file mode 100644
index 0000000000..b7ba6bb6ea
--- /dev/null
+++ b/claude-security-reviewer.yaml
@@ -0,0 +1,22 @@
+name: Security Review
+
+permissions:
+  pull-requests: write
+  contents: read
+
+on:
+  pull_request:
+
+jobs:
+  security:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # 4.2.2
+        with:
+          ref: ${{ github.event.pull_request.head.sha || github.sha }}
+          fetch-depth: 2
+          
+
+      - uses: Layr-Labs/security-shared-workflows/actions/claude-pr-review@713409e1ebdd156dcc1b5dced0f0fbb063b0fee5
+        with:
+          claude-api-key: ${{ secrets.ORG_ANTHROPIC_API_KEY }}

From cedfc68dd1e2ee688cf05dda21530c20bf44198c Mon Sep 17 00:00:00 2001
From: anupsv <anupsv@users.noreply.github.com>
Date: Sun, 10 Aug 2025 21:02:31 -0700
Subject: [PATCH 2/3] Update claude-security-reviewer.yaml

---
 claude-security-reviewer.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/claude-security-reviewer.yaml b/claude-security-reviewer.yaml
index b7ba6bb6ea..f584eb8ef2 100644
--- a/claude-security-reviewer.yaml
+++ b/claude-security-reviewer.yaml
@@ -6,6 +6,8 @@ permissions:
 
 on:
   pull_request:
+    branches:
+      - main
 
 jobs:
   security:

From 253aa675eb03488ddfc85ad8eee09cf67362a252 Mon Sep 17 00:00:00 2001
From: anupsv <anupsv@users.noreply.github.com>
Date: Sun, 10 Aug 2025 21:20:47 -0700
Subject: [PATCH 3/3] Rename claude-security-reviewer.yaml to
 .github/workflows/claude-security-reviewer.yaml

---
 .../workflows/claude-security-reviewer.yaml                       | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename claude-security-reviewer.yaml => .github/workflows/claude-security-reviewer.yaml (100%)

diff --git a/claude-security-reviewer.yaml b/.github/workflows/claude-security-reviewer.yaml
similarity index 100%
rename from claude-security-reviewer.yaml
rename to .github/workflows/claude-security-reviewer.yaml