Implement branch protection rules

garyrutland · web-flow · commit 3860739e9422 · 2025-10-29T11:01:44.000Z
Added rules for review and status checks enforcement.
diff --git a/.github/settings.yml b/.github/settings.yml
@@ -30,3 +30,43 @@ rulesets:
     rules:
       - type: deletion
       - type: non_fast_forward
+  - name: Changes must be reviewed
+    target: branch
+    enforcement: active
+    bypass_actors:
+      - actor_id: null
+        actor_type: OrganizationAdmin
+        bypass_mode: pull_request
+    conditions:
+      ref_name:
+        include:
+          - "~DEFAULT_BRANCH"
+        exclude: []
+    rules:
+      - type: pull_request
+        parameters:
+          allowed_merge_methods:
+            - squash
+          dismiss_stale_reviews_on_push: true
+          require_code_owner_review: true
+          require_last_push_approval: true
+          required_approving_review_count: 1
+          required_review_thread_resolution: true
+  - name: Changes must pass status checks
+    target: branch
+    enforcement: active
+    bypass_actors:
+      - actor_id: null
+        actor_type: OrganizationAdmin
+        bypass_mode: pull_request
+    conditions:
+      ref_name:
+        include:
+          - "~DEFAULT_BRANCH"
+        exclude: []
+    rules:
+      - type: required_status_checks
+        parameters:
+          required_status_checks:
+            - context: linting / Linting
+          strict_required_status_checks_policy: true
