mirror of
https://github.com/hyperdxio/hyperdx
synced 2026-04-21 21:37:41 +00:00
80 lines
3.5 KiB
YAML
80 lines
3.5 KiB
YAML
name: Claude Code Review
|
|
|
|
on:
|
|
# Disabled: upstream bug in claude-code-action SDK (https://github.com/anthropics/claude-code-action/issues/1013)
|
|
# pull_request_target:
|
|
# types: [opened, synchronize]
|
|
workflow_dispatch:
|
|
# Optional: Only run on specific file changes
|
|
# paths:
|
|
# - "src/**/*.ts"
|
|
# - "src/**/*.tsx"
|
|
# - "src/**/*.js"
|
|
# - "src/**/*.jsx"
|
|
|
|
jobs:
|
|
claude-review:
|
|
# Optional: Filter by PR author
|
|
# if: |
|
|
# github.event.pull_request.user.login == 'external-contributor' ||
|
|
# github.event.pull_request.user.login == 'new-developer' ||
|
|
# github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR'
|
|
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: write
|
|
pull-requests: write
|
|
issues: write
|
|
id-token: write
|
|
actions: read
|
|
|
|
steps:
|
|
# Checkout the fork's branch so Claude can read the actual PR code.
|
|
# Using head.repo.full_name + head.ref works for both fork and non-fork PRs.
|
|
- name: Checkout repository
|
|
uses: actions/checkout@v4
|
|
with:
|
|
repository: ${{ github.event.pull_request.head.repo.full_name }}
|
|
ref: ${{ github.event.pull_request.head.ref }}
|
|
fetch-depth: 0
|
|
|
|
- name: Run Claude Code Review
|
|
id: claude-review
|
|
uses: anthropics/claude-code-action@v1
|
|
with:
|
|
anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
|
|
allowed_bots: cursor,cursor[bot],claude,claude[bot]
|
|
github_token: ${{ secrets.GITHUB_TOKEN }} # Bypasses OIDC auth (required for pull_request_target)
|
|
allowed_non_write_users: '*' # Allows fork contributors to trigger reviews
|
|
prompt: |
|
|
REPO: ${{ github.repository }}
|
|
PR NUMBER: ${{ github.event.pull_request.number }}
|
|
|
|
Please review this pull request. Use the repository's CLAUDE.md for guidance on style and conventions.
|
|
|
|
**IMPORTANT: Keep your review SHORT and ACTIONABLE.**
|
|
|
|
Format your review as a concise bulleted list focusing ONLY on:
|
|
- Critical bugs or security issues (if any)
|
|
- Important code quality issues or violations of project patterns
|
|
- Must-fix items before merge
|
|
|
|
Skip minor style nitpicks, explanations of obvious issues, and lengthy justifications unless critical.
|
|
Each item should be: **Issue** → **Fix** (one line each when possible).
|
|
|
|
Example format:
|
|
- ❌ Unvalidated user input in API endpoint → Add input validation
|
|
- ⚠️ Missing error handling in async function → Wrap in try-catch
|
|
- 🔒 Hardcoded credentials in config.ts → Move to environment variables
|
|
|
|
If there are NO critical issues, simply say "✅ No critical issues found."
|
|
|
|
Note: If the team wants a more thorough review, they can comment on the PR requesting one.
|
|
|
|
Use `gh pr comment ${{ github.event.pull_request.number }} --edit-last --create-if-none` with your Bash tool to leave your review as a comment on the PR.
|
|
This will create a new comment if none exists, or edit the last comment if one exists.
|
|
|
|
# See https://github.com/anthropics/claude-code-action/blob/main/docs/usage.md
|
|
# or https://docs.claude.com/en/docs/claude-code/sdk#command-line for available options
|
|
claude_args: |
|
|
--allowedTools "mcp__github_inline_comment__create_inline_comment,Bash(gh issue view:*),Bash(gh search:*),Bash(gh issue list:*),Bash(gh pr comment:*),Bash(gh pr diff:*),Bash(gh pr view:*),Bash(gh pr list:*)"
|