From fc6b525a555495d91589e021c9e168120cbb84b6 Mon Sep 17 00:00:00 2001
From: Eddie A Tejeda <669988+eddietejeda@users.noreply.github.com>
Date: Mon, 1 Jun 2026 19:16:03 -0700
Subject: [PATCH] fix: skip Claude review for Dependabot PRs instead of trying
 to approve

GITHUB_TOKEN cannot approve PRs (org policy disables write permissions
for Actions). Generating the app token requires HOTDATA_AUTOMATION_PRIVATE_KEY
which is inaccessible in Dependabot-triggered runs. Simply succeed so
the required status check passes; PR approval is handled separately.
---
 .github/workflows/claude-pr-review.yml | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/claude-pr-review.yml b/.github/workflows/claude-pr-review.yml
index 4d3d78b..9d151ff 100644
--- a/.github/workflows/claude-pr-review.yml
+++ b/.github/workflows/claude-pr-review.yml
@@ -22,11 +22,9 @@ jobs:
         with:
           fetch-depth: 1
 
-      - name: Auto-approve Dependabot bump
+      - name: Skip review for Dependabot bump
         if: github.event.pull_request.user.login == 'dependabot[bot]'
-        run: gh pr review ${{ github.event.pull_request.number }} --approve --body "Automated dependency bump — auto-approved."
-        env:
-          GH_TOKEN: ${{ github.token }}
+        run: echo "Dependabot bump — skipping Claude review."
 
       - name: Generate GitHub App token
         if: github.event.pull_request.user.login != 'dependabot[bot]'