ChingEnLin · ChingEnLin · May 14, 2026 · May 11, 2026 · May 11, 2026 · May 11, 2026
diff --git a/.github/workflows/claude-code-review.yml b/.github/workflows/claude-code-review.yml
@@ -0,0 +1,38 @@
+name: Claude Code Review
+
+on:
+  issue_comment:
+    types: [created]
+  pull_request_review_comment:
+    types: [created]
+
+jobs:
+  claude-review:
+    if: |
+      (github.event_name == 'issue_comment' && contains(github.event.comment.body, '@claude review')) ||
+      (github.event_name == 'pull_request_review_comment' && contains(github.event.comment.body, '@claude review'))
+
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: read
+      issues: read
+      id-token: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: Run Claude Code Review
+        id: claude-review
+        uses: anthropics/claude-code-action@v1
+        with:
+          claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}
+          plugin_marketplaces: 'https://github.com/anthropics/claude-code.git'
+          plugins: 'code-review@claude-code-plugins'
+          prompt: '/code-review:code-review ${{ github.repository }}/pull/${{ github.event.pull_request.number }}'
+          # See https://github.com/anthropics/claude-code-action/blob/main/docs/usage.md
+          # or https://code.claude.com/docs/en/cli-reference for available options
+
diff --git a/.github/workflows/claude.yml b/.github/workflows/claude.yml
@@ -0,0 +1,50 @@
+name: Claude Code
+
+on:
+  issue_comment:
+    types: [created]
+  pull_request_review_comment:
+    types: [created]
+  issues:
+    types: [opened, assigned]
+  pull_request_review:
+    types: [submitted]
+
+jobs:
+  claude:
+    if: |
+      (github.event_name == 'issue_comment' && contains(github.event.comment.body, '@claude')) ||
+      (github.event_name == 'pull_request_review_comment' && contains(github.event.comment.body, '@claude')) ||
+      (github.event_name == 'pull_request_review' && contains(github.event.review.body, '@claude')) ||
+      (github.event_name == 'issues' && (contains(github.event.issue.body, '@claude') || contains(github.event.issue.title, '@claude')))
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: read
+      issues: read
+      id-token: write
+      actions: read # Required for Claude to read CI results on PRs
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: Run Claude Code
+        id: claude
+        uses: anthropics/claude-code-action@v1
+        with:
+          claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}
+
+          # This is an optional setting that allows Claude to read CI results on PRs
+          additional_permissions: |
+            actions: read
+
+          # Optional: Give a custom prompt to Claude. If this is not specified, Claude will perform the instructions specified in the comment that tagged it.
+          # prompt: 'Update the pull request description to include a summary of changes.'
+
+          # Optional: Add claude_args to customize behavior and configuration
+          # See https://github.com/anthropics/claude-code-action/blob/main/docs/usage.md
+          # or https://code.claude.com/docs/en/cli-reference for available options
+          # claude_args: '--allowed-tools Bash(gh pr *)'
+
diff --git a/.gitignore b/.gitignore
@@ -50,3 +50,9 @@ deployment_note.txt
 
 # Temporary files
 development_plans.txt
+
+# claude files
+CLAUDE.md
+.claude/settings.local.json
+HANDOFF.md
+DESIGN_HANDBOOK.md
diff --git a/backend/routes/audit.py b/backend/routes/audit.py
@@ -1,8 +1,9 @@
 from fastapi import APIRouter, Header, Body, HTTPException
 from pydantic import BaseModel
 from typing import List, Dict, Any, Optional
-from services.audit_service import process_audit_question
+from services.audit_service import process_audit_question, get_recent_activity
 from services.gemini_service import VisualizationConfig
+from services.user_queries_service import get_user_id_from_token
 
 router = APIRouter()
 
@@ -18,16 +19,29 @@ class AuditQueryResponse(BaseModel):
     visualization: Optional[VisualizationConfig] = None
 
 
+class RecentActivityItem(BaseModel):
+    database_name: str
+    collection_name: str
+    operation: str
+    document_id: str
+    user_email: str
+    timestamp_utc: str
+
+
 @router.post("/query", response_model=AuditQueryResponse)
 def query_audit_log(
     body: AuditQueryRequest = Body(...), authorization: str = Header(...)
 ):
     if not authorization.startswith("Bearer "):
         raise HTTPException(status_code=401, detail="Invalid token format")
 
-    # We might want to validate the token here even if we don't use it for the pg connection directly yet
-    # user_token = authorization.replace("Bearer ", "")
-    # access_token = exchange_token_obo(user_token)
-
     response = process_audit_question(body.question)
     return AuditQueryResponse(**response)
+
+
+@router.get("/recent", response_model=List[RecentActivityItem])
+def recent_activity(authorization: str = Header(...), limit: int = 10):
+    if not authorization.startswith("Bearer "):
+        raise HTTPException(status_code=401, detail="Invalid token format")
+    user_email = get_user_id_from_token(authorization.replace("Bearer ", ""))
+    return get_recent_activity(user_email=user_email, limit=min(limit, 50))
diff --git a/backend/services/audit_service.py b/backend/services/audit_service.py
@@ -1,4 +1,4 @@
-from typing import Dict, Any
+from typing import Dict, Any, List
 from services.pg_connection import get_connection
 from services.gemini_service import generate_audit_sql, summarize_audit_results
 
@@ -36,6 +36,36 @@ def execute_audit_query(sql_query: str) -> list:
         return [{"error": str(e)}]
 
 
+def get_recent_activity(user_email: str, limit: int = 10) -> List[Dict[str, Any]]:
+    """Returns the most recent write_audit_log rows for a specific user."""
+    try:
+        conn = get_connection()
+        cur = conn.cursor()
+        cur.execute(
+            """
+            SELECT user_email, operation, database_name, collection_name, document_id, timestamp_utc
+            FROM write_audit_log
+            WHERE user_email = %s
+            ORDER BY timestamp_utc DESC
+            LIMIT %s
+            """,
+            (user_email, limit),
+        )
+        columns = [desc[0] for desc in cur.description]
+        rows = []
+        for row in cur.fetchall():
+            item = dict(zip(columns, row))
+            if hasattr(item.get("timestamp_utc"), "isoformat"):
+                item["timestamp_utc"] = item["timestamp_utc"].isoformat()
+            rows.append(item)
+        cur.close()
+        conn.close()
+        return rows
+    except Exception as e:
+        print(f"Error fetching recent activity: {e}")
+        return []
+
+
 def process_audit_question(question: str) -> Dict[str, Any]:
     """
     Orchestrates the process of answering a user's audit question:

diff --git a/backend/services/react_agent_service.py b/backend/services/react_agent_service.py
@@ -21,7 +21,6 @@
 from services.gemini_service import extract_python_code
 from services.mongo_service import execute_mongo_query, transform_mongo_result
 
-
 WRITE_METHODS = {
     "insert_one",
     "insert_many",