Skip to content

Comments

Add claude GitHub actions#2487

Open
mmagician wants to merge 6 commits intonextfrom
add-claude-github-actions-1771770168827
Open

Add claude GitHub actions#2487
mmagician wants to merge 6 commits intonextfrom
add-claude-github-actions-1771770168827

Conversation

@mmagician
Copy link
Collaborator

@mmagician mmagician commented Feb 22, 2026

Would be good to try and automate some things:

  • PR labeling
  • auto fixes of CI
  • allowing us to tag @ claude in issues and PRs and ask to work on stuff, summarize, or review code

mmagician and others added 4 commits February 22, 2026 15:36
@mmagician
"Claude PR Assistant workflow"
1563598
@mmagician @claude
feat: add Claude PR triage and CI auto-fix workflows
9c82259 
- claude-pr-triage.yml: labels PRs on open/edit/sync based on changed
  files and PR content (type, area, size labels)
- claude-ci-autofix.yml: triggers on test/build/lint failures, checks
  the actor has write/maintain/admin access, then attempts a minimal
  fix on a new branch and opens a PR with the changes

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@mmagician @claude
feat: add maintainer permission checks to Claude workflows
2a60385 
- claude.yml: restrict @claude mentions to maintainers via
  collaborator permission check
- claude-pr-triage.yml: use author_association for pr-from-maintainers
  label; remove size labels; drop ZK-rollup description

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@mmagician @claude
fix: use author_association instead of collaborator API for permissio…
4bf93ad 
…n checks

getCollaboratorPermissionLevel requires admin token access which
GITHUB_TOKEN does not have. Switch to author_association from the
event payload (claude.yml) and pulls.get() (claude-ci-autofix.yml)
which only require read access.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@mmagician mmagician added the no changelog This PR does not require an entry in the `CHANGELOG.md` file label Feb 22, 2026
@cursor
Copy link

cursor bot commented Feb 22, 2026

You have run out of free Bugbot PR reviews for this billing cycle. This will reset on March 10.

To receive reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial.

github-advanced-security[bot]
github-advanced-security bot found potential problems Feb 22, 2026
View reviewed changes
@mmagician @claude
fix: prevent pwn request vulnerability in claude-ci-autofix workflow
86a04e3 
Restrict workflow_run trigger to PRs from the same repository
(not forks) to prevent untrusted code execution in a privileged
context (CWE-829, CodeQL alert #14).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@mmagician mmagician force-pushed the add-claude-github-actions-1771770168827 branch from b0e9853 to 86a04e3 Compare February 22, 2026 15:47
@mmagician mmagician added the pr-from-maintainers PRs that come from internal contributors or integration partners. They should be given priority label Feb 22, 2026
@bobbinth
Copy link
Contributor

bobbinth commented Feb 23, 2026

PR labeling

Shouldn't PR author be pretty well positioned to know what labels to attach to the PR? And it should be relatively low effort (shouldn't take more than a few seconds).

auto fixes of CI

I'm a bit weary of having the committed code automatically modified. Wouldn't it cause more work to verify that the automated changes were correct than to make CI fixes in the first place?

allowing us to tag @ claude in issues and PRs and ask to work on stuff, summarize, or review code

Why do we need this? Couldn't the PR author run Claud locally to get the same results?

@mmagician
Copy link
Collaborator Author

mmagician commented Feb 23, 2026

Shouldn't PR author be pretty well positioned to know what labels to attach to the PR? And it should be relatively low effort (shouldn't take more than a few seconds).

Indeed, although I think if we can remove as much friction from mundane tasks, it would be to an overall benefit of faster development.

I'm a bit weary of having the committed code automatically modified. Wouldn't it cause more work to verify that the automated changes were correct than to make CI fixes in the first place?

Two points to this:

  1. The code won't be automatically modified, but instead there'll be a branch created with the fixes. I do that with copilot today already e.g. asking copilot to fix fmt from the GitHub interface will cause copilot to open a new branch against the current PR branch.
  2. I imagine these will be trivial things like linting, spellcheck, fmt, etc. Verifying the changes is typically lower effort than checking out the branch, running the job, fixing the issue, commit and push, all of which are manual steps.

Why do we need this? Couldn't the PR author run Claude locally to get the same results?

Absolutely, but again to my points above I'd like to remove as many manual steps as possible. Furthermore, this will allow reviewers to trigger claude workflows. See e.g. how I asked copilot to address nits on Philipp's PR, prompting him to simply accept the changes, rather than triggering that same workflow locally and waiting for completion. This significantly cuts out dev cycles in my (limited so far, but still positive overall) experience with prompting agents from GitHub UI.
The goal is to enable us to do similar things with claude as is already possible with copilot - hopefully with even better results.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@PhilippGackstatter PhilippGackstatter Awaiting requested review from PhilippGackstatter

@bobbinth bobbinth Awaiting requested review from bobbinth

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

no changelog This PR does not require an entry in the `CHANGELOG.md` file pr-from-maintainers PRs that come from internal contributors or integration partners. They should be given priority

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mmagician @bobbinth