Add Claude Code GitHub Workflow

[justin808]

🤖 Installing Claude Code GitHub App

This PR adds a GitHub Actions workflow that enables Claude Code integration in our repository.

What is Claude Code?

Claude Code is an AI coding agent that can help with:

• Bug fixes and improvements
• Documentation updates
• Implementing new features
• Code reviews and suggestions
• Writing tests
• And more!

How it works

Once this PR is merged, we'll be able to interact with Claude by mentioning @claude in a pull request or issue comment.
Once the workflow is triggered, Claude will analyze the comment and surrounding context, and execute on the request in a GitHub action.

Important Notes

• This workflow won't take effect until this PR is merged
• @claude mentions won't work until after the merge is complete
• The workflow runs automatically whenever Claude is mentioned in PR or issue comments
• Claude gets access to the entire PR or issue context including files, diffs, and previous comments

Security

• Our Anthropic API key is securely stored as a GitHub Actions secret
• Only users with write access to the repository can trigger the workflow
• All Claude runs are stored in the GitHub Actions run history
• Claude's default tools are limited to reading/writing files and interacting with our repo by creating comments, branches, and commits.
• We can add more allowed tools by adding them to the workflow file like:

allowed_tools: Bash(npm install),Bash(npm run build),Bash(npm run lint),Bash(npm run test)

There's more information in the Claude Code action repo.

After merging this PR, let's try mentioning @claude in a comment on any PR to get started!

Summary by CodeRabbit

• Chores
  • Enhanced code review workflow to trigger on additional pull request events (ready for review, reopened) in addition to existing events.
  • Updated workflow documentation references and clarified configuration options.
  • Improved workflow security and permissions handling.

[coderabbitai]

Caution

Review failed

The pull request is closed.

Walkthrough

Two GitHub Actions workflows are modified: claude-code-review.yml gains expanded PR trigger types, adjusted permissions (read instead of write), removal of inline secrets, and integration with the Claude Code Review action. The claude.yml workflow receives minor documentation and URL updates.

Changes

Cohort / File(s)	Summary
Claude Code Review Workflow .github/workflows/claude-code-review.yml	Extended PR trigger types from [opened, synchronize] to [opened, synchronize, ready_for_review, reopened]. Changed job permissions to pull-requests: read and issues: read (retaining id-token: write). Removed inline CLAUDE_CODE_OAUTH_TOKEN assignment. Added checkout step with fetch-depth: 1 and integrated Claude Code Review action with OAuth token, plugin configuration, and prompts.
Claude Workflow Documentation .github/workflows/claude.yml	Updated documentation references and URLs from old docs path to code.claude.com. Minor formatting adjustment to OAuth token comment line.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Poem

🐰 A workflow enhanced, with Claude now in place,
PR triggers broadened, permissions embraced,
From secrets inline to OAuth so clean,
The finest code review you've ever seen!

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch add-claude-github-actions-1770794833388

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

🚀 Quick Review App Commands

Welcome! Here are the commands you can use in this PR:

/deploy-review-app

Deploy your PR branch for testing

/delete-review-app

Remove the review app when done

/help

Show detailed instructions, environment setup, and configuration options.

---

[github-actions]

✅ Review app for PR #697 was successfully deleted

View Completed Delete Logs

Control Plane Organization

[greptile-apps]

Greptile Overview

Greptile Summary

This PR migrates the Claude Code Review workflow from a centralized reusable workflow (shakacode/.github) to a local implementation with plugin-based review functionality. The claude.yml file receives minor documentation updates.

Key Changes:

• Replaced reusable workflow call with direct anthropics/claude-code-action@v1 implementation
• Added plugin marketplace and code-review plugin configuration
• Added trigger types: ready_for_review and reopened
• Added optional configuration examples (file path filters, PR author filters)
• Critical Issue: Permissions downgraded from write to read for pull-requests and issues

Problems Identified:

• The workflow will fail to post review comments because it only has read permissions, but needs write permissions to create comments on PRs and issues
• Previous commit (5205064) specifically added write permissions to fix this issue, but this PR reverts that fix

Confidence Score: 1/5

• This PR will break the Claude Code Review functionality due to insufficient permissions
• The workflow downgraded permissions from write to read-only, which will prevent Claude from posting review comments. A previous commit explicitly added write permissions to fix this exact issue, but this PR reverts that fix.
• .github/workflows/claude-code-review.yml - permissions must be changed to write

Important Files Changed

Filename	Overview
.github/workflows/claude.yml	Updated documentation URL and removed whitespace - safe cosmetic changes
.github/workflows/claude-code-review.yml	Migrated from centralized workflow to local implementation but reduced permissions from write to read-only, which may break review posting functionality

Sequence Diagram

sequenceDiagram
    participant User
    participant GitHub
    participant Workflow as Claude Code Review Workflow
    participant Action as Claude Code Action
    participant API as Anthropic API

    User->>GitHub: Creates/Updates PR
    GitHub->>Workflow: Triggers on opened/synchronize/ready_for_review/reopened
    Workflow->>GitHub: Checkout repository (fetch-depth: 1)
    Workflow->>Action: Run claude-code-action@v1
    Action->>GitHub: Read PR details with permissions
    Action->>API: Send PR context for review
    API->>Action: Return review analysis
    Action->>GitHub: Post review comments (requires write permissions)
    GitHub->>User: Display review results

Loading

[greptile-apps]

_{2 files reviewed, 1 comment}

_{Edit Code Review Agent Settings | Greptile}

[greptile-apps]

Permissions downgraded from write to read. The Claude Code Review action needs pull-requests: write and issues: write to post review comments. This will prevent reviews from being published.

Suggested change

	contents: read
	pull-requests: write
	issues: write
	pull-requests: read
	issues: read
	pull-requests: write
	issues: write