GitHub App
First-class GitHub integration that installs on an organization (rather than per-user). Uses short-lived installation tokens, supports webhooks, and is the modern alternative to OAuth Apps and personal access tokens.
Why It Matters
Roboticks is a GitHub App, not a GitHub Action or an OAuth-token integration. The App model gives short-lived per-install tokens, HMAC-verified webhooks, and Check Runs that can block PR merges.
How Roboticks Implements It
The Roboticks GitHub App installs on an org. Webhooks (pull_request, push, workflow_run, check_suite, installation) route through HMAC verification into a FIFO SQS queue. Check Runs post back with requirement coverage; OIDC tokens from GitHub Actions exchange for short-lived Roboticks tokens.