Skip to content

CODEOWNERS Standard

Every repository has a .github/CODEOWNERS file. The default rule identifies the service-owning team, with narrower rules for sensitive paths.

* @dataready-ai/nexa-service-owners
/.github/workflows/ @dataready-ai/platform-engineering
/Dockerfile @dataready-ai/platform-engineering @dataready-ai/nexa-service-owners
/infrastructure/ @dataready-ai/platform-engineering
/charts/ @dataready-ai/platform-engineering
/security/ @dataready-ai/security-engineering

Reusable workflow files, composite actions, scripts, and release tags are owned by Platform Engineering. Security-sensitive scanner configuration is co-owned by Security. Application teams contribute through reviewed PRs but cannot bypass ownership by copying modified common workflows locally.

CODEOWNER review is required on protected branches. Stale approvals are dismissed when relevant code changes. Teams designate at least two maintainers to avoid a single-person bottleneck.