ci: add Claude issue triage workflow for bug reports#1011
Conversation
✅ Deploy Preview for viteplus-preview canceled.
|
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: d11e13d480
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
Adds a GitHub Actions workflow that triggers Claude Code to analyze newly opened bug issues. Includes security hardening: no user-controlled string interpolation in prompts, shallow clone, no persisted credentials, and read-only tool permissions. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
d11e13d to
3ade020
Compare
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 3ade0202bc
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
| uses: anthropics/claude-code-action@26ec041249acb0a944c0a47b6c0c13f05dbc5b44 # v1.0.70 | ||
| with: | ||
| claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }} |
There was a problem hiding this comment.
Allow non-maintainers to trigger issue triage
This anthropics/claude-code-action invocation is wired to issues.opened, but it does not pass github_token or configure allowed_non_write_users. Per the action's default access-control rules, that means it only runs for actors with write access, so bug reports opened by normal community users will be skipped instead of analyzed. On an OSS repo this makes the workflow effectively dead for the reporters it is supposed to help.
Useful? React with 👍 / 👎.
Summary
bug🤖 Generated with Claude Code