chore: add CodeRabbit configuration for AI-assisted code review

[smoparth]

Configure CodeRabbit with chill profile to only comment on actionable issues. Disables redundant linting tools (ruff, flake8, pylint) already handled by hatch/pre-commit. Enables security scanning (gitleaks, semgrep, shellcheck, checkov).

Pull Request Description

What

Why

• PR follows CONTRIBUTING.md guidelines

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 44b308fd-8bd5-49a8-bd59-56bedcebad81

📥 Commits

Reviewing files that changed from the base of the PR and between 6aa30af and ac7798f.

📒 Files selected for processing (1)

• .coderabbit.yaml

✅ Files skipped from review due to trivial changes (1)

• .coderabbit.yaml

---

📝 Walkthrough

Walkthrough

A new .coderabbit.yaml configuration file is added that defines CodeRabbit review behavior and defaults (language, tone, inheritance, early_access), enables/disables specific review artifacts and commit status behavior, configures tool usage (disables many format/lint tools; enables security/infrastructure scanners like gitleaks, semgrep, shellcheck, yamllint, actionlint, checkov), provides path-scoped review instructions and path exclusions, and enables auto-review with WIP/title exclusions and a local knowledge-base scope.

Changes

Cohort / File(s)	Summary
CodeRabbit Configuration .coderabbit.yaml	Introduces configuration file with review defaults (language, tone, early access), enables/disables specific code-quality and security tools, defines path-specific review instructions for tests, shell scripts, workflows, and markdown files, configures auto-review with exclusions for draft PRs and WIP titles, and sets local knowledge base scope.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Suggested labels

ci

Suggested reviewers

• LalatenduMohanty
• dhellmann

Poem

🐰 A config file so neat and clean,
Tools enabled, some unseen,
Security scanning takes the stage,
Workflows reviewed page by page,
Configuration hops into place! 🎉

🚥 Pre-merge checks | ✅ 2

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main change: adding a CodeRabbit configuration file for AI-assisted code review.
Description check	✅ Passed	The description is related to the changeset, explaining the CodeRabbit configuration with chill profile, disabled linting tools, and enabled security scanning tools.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.coderabbit.yaml:
- Around line 8-13: The tone_instructions string exceeds the 250-character
schema limit; update the value of tone_instructions to a concise version under
250 characters (e.g., ~199 chars) and remove or relocate any verbose guidance
elsewhere; ensure you edit the tone_instructions entry in .coderabbit.yaml and
re-run schema validation to confirm it passes.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 125e7e37-997e-4b50-b12a-d98cfaf6735b

📥 Commits

Reviewing files that changed from the base of the PR and between 9b399c8 and 6aa30af.

📒 Files selected for processing (1)

• .coderabbit.yaml

[rd4398]

This looks good to me. I will for @LalatenduMohanty and / or @tiran to take a look as well.

[tiran]

LGTM, thanks!

We can fine tune the rules when we have more experience with the tool.