feat(claude): allow the claude bot to trigger AI reviews#33
Closed
sfreudenthaler wants to merge 1 commit into
Closed
feat(claude): allow the claude bot to trigger AI reviews#33sfreudenthaler wants to merge 1 commit into
sfreudenthaler wants to merge 1 commit into
Conversation
claude-code-action blocks workflow runs initiated by bot actors unless they are in allowed_bots, which was unset. Bot-initiated PRs/pushes from the Claude Code GitHub App (actor "claude", type Bot) therefore failed auto-review with "Workflow initiated by non-human actor". Expose an allowed_bots input on the orchestrator and executor and pass it to both claude-code-action steps (Anthropic API + Bedrock). Default it to "claude" org-wide so the Claude Code GitHub App can trigger reviews; consumers can pass "" to block all bots or "*" to allow any. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
|
You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard. |
Member
Author
|
Closing without merge — decided this isn't worth changing right now. The auto-review block on bot-initiated runs is an acceptable edge case; the current GITHUB_TOKEN + read-only setup keeps things safe. Can revisit later (see #32). |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Problem
Bot-initiated auto-reviews fail at the
anthropics/claude-code-action@v1gate with:Example: dotCMS/infrastructure-as-code run 27365580499 — a PR whose triggering push came from the Claude Code GitHub App (actor
claude, typeBot). Since Claude is our daily driver, these runs should be reviewed, not blocked.allowed_botsis a dedicated input toclaude-code-action(not aclaude_argsCLI flag), so it was previously unreachable through the orchestrator/executor and defaulted to "no bots allowed."Change
allowed_botsinput to claude-orchestrator.yml and claude-executor.yml.claude-code-actionsteps in the executor (Anthropic API + Bedrock paths).claudeorg-wide, so the Claude Code GitHub App can trigger reviews on every consumer repo without per-repo config.allowed_bots: ""to block all bots, orallowed_bots: "*"to allow any (e.g. dependabot, renovate).Anthropic path only — the bedrock-generic executor does not use
claude-code-actionand has no such gate.Rollout
Consumers pinned at
@v3.0.0pick this up after a new tag (e.g.v3.1.0) is cut and their pin is bumped. A follow-up PR bumps the pin indotCMS/infrastructure-as-code.Validation
yaml.safe_loadpasses on both workflows.actionlint(rhysd/actionlint:1.7.7) clean.🤖 Generated with Claude Code