Add Claude Code GitHub Workflow

[luoling8192]

🤖 Installing Claude Code GitHub App

This PR adds a GitHub Actions workflow that enables Claude Code integration in our repository.

What is Claude Code?

Claude Code is an AI coding agent that can help with:

• Bug fixes and improvements
• Documentation updates
• Implementing new features
• Code reviews and suggestions
• Writing tests
• And more!

How it works

Once this PR is merged, we'll be able to interact with Claude by mentioning @claude in a pull request or issue comment.
Once the workflow is triggered, Claude will analyze the comment and surrounding context, and execute on the request in a GitHub action.

Important Notes

• This workflow won't take effect until this PR is merged
• @claude mentions won't work until after the merge is complete
• The workflow runs automatically whenever Claude is mentioned in PR or issue comments
• Claude gets access to the entire PR or issue context including files, diffs, and previous comments

Security

• Our Anthropic API key is securely stored as a GitHub Actions secret
• Only users with write access to the repository can trigger the workflow
• All Claude runs are stored in the GitHub Actions run history
• Claude's default tools are limited to reading/writing files and interacting with our repo by creating comments, branches, and commits.
• We can add more allowed tools by adding them to the workflow file like:

allowed_tools: Bash(npm install),Bash(npm run build),Bash(npm run lint),Bash(npm run test)

There's more information in the Claude Code action repo.

After merging this PR, let's try mentioning @claude in a comment on any PR to get started!

[gemini-code-assist]

Note

Gemini is unable to generate a summary for this pull request due to the file types involved not being currently supported.

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: b2a579b678

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Restrict Claude triggers to trusted repository users

The job gate only checks for @claude text and does not verify commenter/author permissions, so any external user who can open an issue or comment can trigger this workflow and consume the Claude OAuth-backed automation. In public repos this enables untrusted users to run paid/privileged agent actions repeatedly; add an author-association or permission check in the job if (for example limiting to OWNER, MEMBER, or COLLABORATOR) before invoking the action.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Skip fork PR events when required secret is unavailable

This workflow runs on pull_request events but always requires secrets.CLAUDE_CODE_OAUTH_TOKEN; for PRs opened from forks, GitHub does not pass repository secrets to this event, so the Claude step gets an empty token and the review job fails noisily on every fork update. Add a fork guard (or use a trusted-event pattern) so fork PRs are skipped instead of hard-failing.

Useful? React with 👍 / 👎.