Create reviewer-agent.yml

Author: arvi18

reviewer-agent.yml

@@ -0,0 +1,43 @@
+name: PR Reviewer Agent
+on:
+  issue_comment:
+    types: [created]
+  pull_request:
+    types: [opened, synchronize, reopened]
+  push:
+jobs:
+  process_pr_events:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Extract event details
+        run: echo "EVENT_PAYLOAD=$(jq -c . < $GITHUB_EVENT_PATH)" >> $GITHUB_ENV
+        
+      - name: Generate Signature and Encrypt Token
+        env:
+          WEBHOOK_SECRET: ${{ secrets.WEBHOOK_SECRET }}
+          API_TOKEN: ${{ secrets.API_TOKEN }}
+        run: |
+          # Generate signature for the payload
+          SIGNATURE=$(echo -n "$EVENT_PAYLOAD" | openssl dgst -sha256 -hmac "$WEBHOOK_SECRET" | cut -d " " -f2)
+          echo "SIGNATURE=$SIGNATURE" >> $GITHUB_ENV
+          
+          # Create a consistent key from the webhook secret
+          KEY=$(echo -n "$WEBHOOK_SECRET" | openssl dgst -sha256 | cut -d ' ' -f2)
+          
+          # Generate a random IV
+          IV=$(openssl rand -hex 16)
+          
+          # Encrypt token with proper padding
+          ENCRYPTED_TOKEN=$(echo -n "$API_TOKEN" | openssl enc -aes-256-cbc -a -A -K "$KEY" -iv "$IV" -md sha256)
+          
+          echo "ENCRYPTED_TOKEN=$ENCRYPTED_TOKEN" >> $GITHUB_ENV
+          echo "TOKEN_IV=$IV" >> $GITHUB_ENV
+          
+      - name: Call External API (With Encrypted Token)
+        run: |
+          curl -X POST https://firstly-worthy-chamois.ngrok-free.app/github-webhook \
+          -H "Content-Type: application/json" \
+          -H "X-Hub-Signature-256: sha256=$SIGNATURE" \
+          -H "X-Encrypted-Token: $ENCRYPTED_TOKEN" \
+          -H "X-Token-IV: $TOKEN_IV" \
+          -d "$EVENT_PAYLOAD"