GitHub Action

Add governance compliance checks to your CI/CD pipeline with the Curate-Me GitHub Action. The action verifies gateway connectivity and reports your organization’s harness score on every push or pull request.

Quick Setup

Create .github/workflows/governance.yml in your repository:


name: Governance Check
 
on:
  push:
    branches: [main]
  pull_request:
    branches: [main]
 
jobs:
  governance:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
 
      - name: Governance check
        uses: Curate-Me-ai/platform/.github/actions/governance-check@main
        with:
          api-key: ${{ secrets.CM_API_KEY }}

Inputs

Input	Required	Default	Description
`api-key`	Yes	—	Your Curate-Me API key (`cm_sk_...`)
`gateway-url`	No	`https://api.curate-me.ai`	Gateway URL (override for self-hosted)

What It Checks

The action runs two checks:

Harness score — Calls /gateway/admin/governance-score and reports your organization’s score out of 100. If the score is below 50, a GitHub Actions warning annotation is emitted.
Gateway connectivity — Confirms the gateway /health endpoint is reachable and healthy.

Storing Your API Key

Add your Curate-Me API key as a repository secret:

Go to your repository Settings > Secrets and variables > Actions
Click New repository secret
Name: CM_API_KEY
Value: your cm_sk_... key from the dashboard

Custom Gateway URL

If you run a self-hosted gateway, override the default URL:


- name: Governance check
  uses: Curate-Me-ai/platform/.github/actions/governance-check@main
  with:
    api-key: ${{ secrets.CM_API_KEY }}
    gateway-url: https://gateway.internal.yourcompany.com

Example Output

A passing run looks like this in your workflow logs:


Harness Score: 82/100
Gateway: healthy

If your score drops below 50, you will see a warning annotation on the workflow summary:


::warning::Harness Score below 50. Review your governance policies.

Combining With Other Checks

You can add the governance check alongside your existing test and lint jobs:


name: CI
 
on: [push, pull_request]
 
jobs:
  test:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - run: npm test
 
  governance:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: Curate-Me-ai/platform/.github/actions/governance-check@main
        with:
          api-key: ${{ secrets.CM_API_KEY }}

Next Steps

Gateway Quickstart — Set up your first governed LLM request
Governance Chain — Understand the 6-step policy pipeline
Cost Tracking — Monitor LLM spend in CI and production