claude-code-github-workflow/.github/workflows/claude-code-review.yml at main · alirezarezvani/claude-code-github-workflow · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
# ─────────────────────────────────────────────────────────────────
# Claude Code Review Workflow (OPTIONAL)
# ─────────────────────────────────────────────────────────────────
# This workflow provides AI-powered code review using Claude Code.
#
# ⚠️ SETUP REQUIRED:
# This workflow requires the CLAUDE_CODE_OAUTH_TOKEN secret to be configured.
# If the secret is not set, the workflow will be skipped automatically.
#
# To enable:
# 1. Go to repository Settings > Secrets and variables > Actions
# 2. Add a new secret: CLAUDE_CODE_OAUTH_TOKEN
# 3. Get your token from: https://claude.com/settings/oauth-tokens
#
# Automatically skips:
# - Dependabot PRs (no need for AI review of dependency updates)
# - When CLAUDE_CODE_OAUTH_TOKEN is not configured
#
# Author: Alireza Rezvani
# Date: 2025-11-06
# ─────────────────────────────────────────────────────────────────

name: Claude Code Review

on:
  pull_request:
    types: [opened, synchronize]
    # Optional: Only run on specific file changes
    # paths:
    #   - "src/**/*.ts"
    #   - "src/**/*.tsx"
    #   - "src/**/*.js"
    #   - "src/**/*.jsx"

jobs:
  claude-review:
    # Skip for dependabot PRs (no need for AI review of dependency updates)
    # Also skip if CLAUDE_CODE_OAUTH_TOKEN is not configured (optional feature)
    if: |
      github.actor != 'dependabot[bot]' &&
      secrets.CLAUDE_CODE_OAUTH_TOKEN != ''

    # Optional: Filter by PR author
    # Additional filters can be added:
    #   github.event.pull_request.user.login == 'external-contributor' ||
    #   github.event.pull_request.user.login == 'new-developer' ||
    #   github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR'

    runs-on: ubuntu-latest
    permissions:
      contents: read
      pull-requests: read
      issues: read
      id-token: write

    steps:
      - name: Checkout repository
        uses: actions/checkout@v6
        with:
          fetch-depth: 1

      - name: Run Claude Code Review
        id: claude-review
        uses: anthropics/claude-code-action@v1
        with:
          claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}
          prompt: |
            REPO: ${{ github.repository }}
            PR NUMBER: ${{ github.event.pull_request.number }}

            Please review this pull request and provide feedback on:
            - Code quality and best practices
            - Potential bugs or issues
            - Performance considerations
            - Security concerns
            - Test coverage

            Use the repository's CLAUDE.md for guidance on style and conventions. Be constructive and helpful in your feedback.

            Use `gh pr comment` with your Bash tool to leave your review as a comment on the PR.

          # See https://github.com/anthropics/claude-code-action/blob/main/docs/usage.md
          # or https://docs.claude.com/en/docs/claude-code/cli-reference for available options
          claude_args: '--allowed-tools "Bash(gh issue view:*),Bash(gh search:*),Bash(gh issue list:*),Bash(gh pr comment:*),Bash(gh pr diff:*),Bash(gh pr view:*),Bash(gh pr list:*)"'