Skip to content

fix: skip Claude review for Dependabot PRs instead of trying to approve#14

Merged
eddietejeda merged 1 commit into
mainfrom
fix/dependabot-skip-review
Jun 2, 2026
Merged

fix: skip Claude review for Dependabot PRs instead of trying to approve#14
eddietejeda merged 1 commit into
mainfrom
fix/dependabot-skip-review

Conversation

@eddietejeda
Copy link
Copy Markdown
Contributor

@eddietejeda eddietejeda commented Jun 2, 2026

Summary

  • Changes "Auto-approve Dependabot bump" to "Skip review for Dependabot bump" — just echoes and succeeds instead of calling gh pr review --approve

Why

The gh pr review --approve call fails because:

  1. GITHUB_TOKEN cannot approve PRs (org policy disables write permissions for Actions workflows)
  2. The GitHub App token approach requires HOTDATA_AUTOMATION_PRIVATE_KEY, which is inaccessible in Dependabot-triggered runs (Secret source: Dependabot)

The "review" status check just needs to pass for Dependabot PRs — the PR approval itself is handled out-of-band (engineer approval or ruleset bypass).

Test plan

@eddietejeda
fix: skip Claude review for Dependabot PRs instead of trying to approve
fc6b525 
GITHUB_TOKEN cannot approve PRs (org policy disables write permissions
for Actions). Generating the app token requires HOTDATA_AUTOMATION_PRIVATE_KEY
which is inaccessible in Dependabot-triggered runs. Simply succeed so
the required status check passes; PR approval is handled separately.
@eddietejeda eddietejeda merged commit 89b0e98 into main Jun 2, 2026
1 check passed
@eddietejeda eddietejeda deleted the fix/dependabot-skip-review branch June 2, 2026 02:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@claude claude[bot] claude[bot] approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@eddietejeda