Refine allowed tools for Claude Code Review

sbryngelson · web-flow · commit 4b066a888893 · 2026-02-22T18:39:42.000-05:00
Updated allowed tools for Claude Code Review to specify exact commands used in the review flow.
diff --git a/.github/workflows/claude-code-review.yml b/.github/workflows/claude-code-review.yml
@@ -28,17 +28,29 @@ jobs:
           claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}
           github_token: ${{ github.token }}
 
+          # (Optional) Useful while debugging; can expose secrets in logs
           show_full_output: true
 
           plugin_marketplaces: 'https://github.com/anthropics/claude-code.git'
           plugins: 'code-review@claude-code-plugins'
 
-          claude_args: |
-            --allowedTools "Bash(*)"
+          # IMPORTANT: allow exactly what the review flow uses
+          claude_args: >
+            --allowedTools
+            "Bash(gh pr view:*)"
+            "Bash(gh pr diff:*)"
+            "Bash(gh api:*)"
+            "Bash(gh search code:*)"
+            "Bash(cat:*)"
+            "Bash(ls:*)"
+            "Bash(grep:*)"
+            "Bash(python3:*)"
+            "Bash(git:*)"
 
           prompt: |
             /code-review:code-review ${{ github.repository }}/pull/${{ github.event.pull_request.number }}
             Post the results as one top-level PR comment titled "Claude Code Review".
+            If you cannot access the diff/files, say so explicitly and explain what was blocked.
 
           additional_permissions: |
             actions: read
