From 63486a261c8ee70195160f27f603928437fe7f29 Mon Sep 17 00:00:00 2001
From: therealmarv <1050582+therealmarv@users.noreply.github.com>
Date: Wed, 17 Sep 2025 17:07:22 +0300
Subject: [PATCH 1/5] add CLA.md

---
 CLA.md | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 CLA.md

diff --git a/CLA.md b/CLA.md
new file mode 100644
index 00000000..8c736503
--- /dev/null
+++ b/CLA.md
@@ -0,0 +1,3 @@
+# Contributor license agreement PLACEHOLDER
+
+TODO: The placeholder needs to be replaced by the real one before merging this PR!

From 609e6f8c127ac0a3ea50c943c3051ca150939112 Mon Sep 17 00:00:00 2001
From: therealmarv <1050582+therealmarv@users.noreply.github.com>
Date: Wed, 17 Sep 2025 17:57:36 +0300
Subject: [PATCH 2/5] add cla ci workflow

---
 .github/workflows/cla.yml | 43 +++++++++++++++++++++++++++++++++++++++
 1 file changed, 43 insertions(+)
 create mode 100644 .github/workflows/cla.yml

diff --git a/.github/workflows/cla.yml b/.github/workflows/cla.yml
new file mode 100644
index 00000000..13493feb
--- /dev/null
+++ b/.github/workflows/cla.yml
@@ -0,0 +1,43 @@
+name: "CLA Assistant"
+on:
+  issue_comment:
+    types: [created]
+  pull_request_target:
+    types: [opened, closed, synchronize]
+
+# Explicit write permissions so the action can commit signatures and set statuses
+permissions:
+  actions: write
+  contents: write
+  pull-requests: write
+  statuses: write
+
+jobs:
+  CLAAssistant:
+    runs-on: ubuntu-latest
+    steps:
+      - name: "CLA Assistant"
+        if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the CLA Document and I hereby sign the CLA') || github.event_name == 'pull_request_target'
+        uses: contributor-assistant/github-action@v2.6.1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          # PERSONAL_ACCESS_TOKEN is only needed when storing signatures in a remote repo/org
+          # PERSONAL_ACCESS_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
+        with:
+          # JSON file committed by the action; do not pre-create this file
+          path-to-signatures: 'signatures/version1/cla.json'
+          # Full GitHub blob URL to CLA.md committed in this repository (required)
+          path-to-document: 'https://github.com/safeinsights/management-app/blob/otter-303-add-cla-confirmation/CLA.md'
+          # Branch that stores the signatures file; MUST NOT be protected
+          branch: 'otter-303-add-cla-confirmation'
+          # Exempt known users/bots from signing (optional)
+          allowlist: 'dependabot[bot],bot*'
+          # Optional customizations (uncomment to use)
+          # create-file-commit-message: 'Create CLA signatures file'
+          # signed-commit-message: '$contributorName has signed the CLA in $owner/$repo#$pullRequestNo'
+          # custom-notsigned-prcomment: 'Please read and sign our CLA by replying with the signature phrase.'
+          # custom-pr-sign-comment: 'I have read the CLA Document and I hereby sign the CLA'
+          # custom-allsigned-prcomment: 'All contributors have signed the CLA.'
+          # lock-pullrequest-aftermerge: true
+          # suggest-recheck: true
+          # use-dco-flag: false

From d1bee27ffcf5a0d7dfe65915d4f3da5154929628 Mon Sep 17 00:00:00 2001
From: therealmarv <1050582+therealmarv@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:06:35 +0300
Subject: [PATCH 3/5] add ready_for_review

---
 .github/workflows/cla.yml | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/.github/workflows/cla.yml b/.github/workflows/cla.yml
index 13493feb..5e10069b 100644
--- a/.github/workflows/cla.yml
+++ b/.github/workflows/cla.yml
@@ -3,7 +3,7 @@ on:
   issue_comment:
     types: [created]
   pull_request_target:
-    types: [opened, closed, synchronize]
+    types: [opened, closed, synchronize, ready_for_review]
 
 # Explicit write permissions so the action can commit signatures and set statuses
 permissions:
@@ -21,8 +21,6 @@ jobs:
         uses: contributor-assistant/github-action@v2.6.1
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          # PERSONAL_ACCESS_TOKEN is only needed when storing signatures in a remote repo/org
-          # PERSONAL_ACCESS_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
         with:
           # JSON file committed by the action; do not pre-create this file
           path-to-signatures: 'signatures/version1/cla.json'

From a420fb0c5a71dae41bc171267ca42f84a8bbd200 Mon Sep 17 00:00:00 2001
From: therealmarv <1050582+therealmarv@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:28:49 +0300
Subject: [PATCH 4/5] point CLA check to main for production, testing happens
 in new temp branches

---
 .github/workflows/cla.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/cla.yml b/.github/workflows/cla.yml
index 5e10069b..ae6bec01 100644
--- a/.github/workflows/cla.yml
+++ b/.github/workflows/cla.yml
@@ -25,9 +25,9 @@ jobs:
           # JSON file committed by the action; do not pre-create this file
           path-to-signatures: 'signatures/version1/cla.json'
           # Full GitHub blob URL to CLA.md committed in this repository (required)
-          path-to-document: 'https://github.com/safeinsights/management-app/blob/otter-303-add-cla-confirmation/CLA.md'
+          path-to-document: 'https://github.com/safeinsights/management-app/blob/main/CLA.md'
           # Branch that stores the signatures file; MUST NOT be protected
-          branch: 'otter-303-add-cla-confirmation'
+          branch: 'main'
           # Exempt known users/bots from signing (optional)
           allowlist: 'dependabot[bot],bot*'
           # Optional customizations (uncomment to use)

From 8179fe31dae5e988d3dd18f039bdb85e4239f45a Mon Sep 17 00:00:00 2001
From: therealmarv <1050582+therealmarv@users.noreply.github.com>
Date: Thu, 25 Sep 2025 00:20:13 +0300
Subject: [PATCH 5/5] change CLA placeholder

---
 CLA.md | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

diff --git a/CLA.md b/CLA.md
index 8c736503..6f6fe420 100644
--- a/CLA.md
+++ b/CLA.md
@@ -1,3 +1,14 @@
-# Contributor license agreement PLACEHOLDER
+# Contributor license agreement
 
-TODO: The placeholder needs to be replaced by the real one before merging this PR!
+## Assignment of Rights
+
+By submitting any contribution to this project, you hereby irrevocably assign,
+transfer, and convey to SafeInsights all right, title, and interest in and to
+such contribution, including all copyright, patent rights, and other
+intellectual property rights therein. You represent and warrant that you have
+the legal right and authority to make this assignment, that your contribution is
+your original work or properly licensed to you, and that your contribution does
+not violate any third-party rights. This assignment covers all contributions you
+make to the project, including but not limited to source code, documentation,
+bug fixes, enhancements, and any other materials, whether submitted via pull
+request, patch, email, or any other method.