Skip to content
.github/workflows/pr_review_claude.yml

infra: add ai code reviews #1

Sign in to view logs

infra: add ai code reviews

infra: add ai code reviews #1

Workflow file for this run

.github/workflows/pr_review_claude.yml at 5711591
name: Claude Code Review
on:
pull_request:
types: [opened, ready_for_review]
issue_comment:
types: [created]
jobs:
claude-review:
if: |
(github.event_name == 'pull_request' &&
github.event.pull_request.head.repo.full_name == github.repository) ||
(github.event_name == 'issue_comment' &&
github.event.issue.pull_request &&
contains(github.event.comment.body, '/claude') &&
contains(fromJson('["OWNER", "MEMBER", "COLLABORATOR"]'), github.event.comment.author_association))
uses: yetanotherco/actions/.github/workflows/pr_review_claude.yml@v1.0.1

Check failure on line 18 in .github/workflows/pr_review_claude.yml

View workflow run for this annotation

GitHub Actions / .github/workflows/pr_review_claude.yml

Invalid workflow file 

error parsing called workflow
".github/workflows/pr_review_claude.yml"
-> "yetanotherco/actions/.github/workflows/pr_review_claude.yml@v1.0.1"
: workflow was not found. See https://docs.github.com/actions/learn-github-actions/reusing-workflows#access-to-reusable-workflows for more information.
with:
custom_prompt: |
1. **Security vulnerabilities** - Label by criticality (Critical/High/Medium/Low)
- Solidity: e.g. reentrancy, access control, integer issues, etc.
- Rust: e.g. unsafe blocks, error handling, panics, etc.
- Web/API: e.g. SQL injection, auth bypass, input validation, sensitive data exposure, CORS/CSRF, etc.
2. **Potential bugs** - Logic errors, edge cases, incorrect behavior, race conditions
3. **Performance issues** - Only significant: e.g. O(n²) on unbounded input, N+1 queries, unbounded memory growth
4. **Simplicity** - Prefer simple, readable code over clever abstractions
Guidelines:
- Be concise and to the point
- Do NOT suggest micro-optimizations or premature abstractions
- Always prefer simplicity over complexity when performance gains are marginal
- Focus on real issues, not hypothetical improvements
- Be concise and actionable
secrets:
ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}