feat(pass): documentation #127

	name: PR Review
	on:
	issue_comment: # Enables /review command in PR comments
	types: [created]
	pull_request_review_comment: # Captures feedback on review comments for learning
	types: [created]
	pull_request: # Triggers auto-review on PR open (same-repo branches only; fork PRs use /review)
	types: [ready_for_review, opened]

	permissions:
	contents: read # Required at top-level so `issue_comment` events can read repository contents.

	jobs:
	review:
	uses: docker/cagent-action/.github/workflows/review-pr.yml@d98096f432f2aea5091c811852c4da804e60623a # v1.4.1
	# Scoped to the job so other jobs in this workflow aren't over-permissioned
	permissions:
	contents: read # Read repository files and PR diffs
	pull-requests: write # Post review comments and approve/request changes
	issues: write # Create security incident issues if secrets are detected in output
	checks: write # (Optional) Show review progress as a check run on the PR
	id-token: write # Required for OIDC authentication to AWS Secrets Manager

Provide feedback