# CODEOWNERS
# Defines required reviewers per path. GitHub enforces these on PRs.
# https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/customizing-your-repository/about-code-owners
#
# Format: <pattern>  <@user or @org/team>
# Last matching rule wins.

# Default: maintainers review everything not explicitly matched below
*                                   @sf-build/maintainers

# Core agent orchestration — RFC required, senior review only
packages/pi-agent-core/             @sf-build/maintainers
src/resources/extensions/sf/       @sf-build/maintainers

# AI/LLM provider integrations
packages/pi-ai/                     @sf-build/maintainers

# Terminal UI
packages/pi-tui/                    @sf-build/maintainers

# Native bindings — platform-specific, needs careful review
native/                             @sf-build/maintainers

# CI/CD and release pipeline — high blast radius
.github/                            @sf-build/maintainers
scripts/                            @sf-build/maintainers
Dockerfile                          @sf-build/maintainers

# Security-sensitive files — always require maintainer sign-off
.secretscanignore                   @sf-build/maintainers
scripts/secret-scan.sh              @sf-build/maintainers
scripts/install-hooks.sh            @sf-build/maintainers

# Contributor-facing docs — keep accurate, maintainers approve
CONTRIBUTING.md                     @sf-build/maintainers
VISION.md                           @sf-build/maintainers