Fix workflow

ondrejmirtes · ondrejmirtes · commit 50876b042e76 · 2026-03-11T13:42:39.000+01:00
diff --git a/.github/workflows/claude-react-on-review-dispatch.yml b/.github/workflows/claude-react-on-review-dispatch.yml
@@ -0,0 +1,40 @@
+name: "Claude React On Review Dispatch"
+
+on:
+  workflow_run:
+    workflows: ["Claude React On Review"]
+    types: [completed]
+
+jobs:
+  dispatch:
+    runs-on: ubuntu-latest
+    if: github.event.workflow_run.conclusion == 'success'
+    permissions:
+      contents: read
+      actions: write
+    steps:
+      - name: Harden the runner (Audit all outbound calls)
+        uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
+        with:
+          egress-policy: audit
+
+      - name: Download review context
+        id: download
+        uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
+        continue-on-error: true
+        with:
+          name: review-context
+          run-id: ${{ github.event.workflow_run.id }}
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Trigger Claude PR Review
+        if: steps.download.outcome == 'success'
+        env:
+          GH_TOKEN: ${{ secrets.PHPSTAN_BOT_TOKEN }}
+        run: |
+          pr_number=$(cat pr_number.txt)
+          review_id=$(cat review_id.txt)
+          gh workflow run claude-pr-review.yml \
+            -f pr_number="$pr_number" \
+            -f review_id="$review_id" \
+            --repo phpstan-bot/phpstan-src
diff --git a/.github/workflows/claude-react-on-review.yml b/.github/workflows/claude-react-on-review.yml
@@ -5,19 +5,23 @@ on:
     types: [submitted]
 
 jobs:
-  claude:
+  save-context:
     runs-on: ubuntu-latest
-    permissions:
-      contents: read
-      actions: write
     if: github.event.pull_request.user.login == 'phpstan-bot'
     steps:
       - name: Harden the runner (Audit all outbound calls)
         uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
         with:
           egress-policy: audit
 
-      - name: Trigger Claude Review PR
-        env:
-          GH_TOKEN: ${{ github.token }}
-        run: gh workflow run claude-pr-review.yml -f pr_number=${{ github.event.pull_request.number }} -f review_id=${{ github.event.review.id }} --repo phpstan-bot/phpstan-src
+      - name: Save review context
+        run: |
+          echo "${{ github.event.pull_request.number }}" > pr_number.txt
+          echo "${{ github.event.review.id }}" > review_id.txt
+
+      - uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        with:
+          name: review-context
+          path: |
+            pr_number.txt
+            review_id.txt
