From d09fe3054a9d5de395a09569183d65fa0bbaa4ad Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 20:56:46 +0200 Subject: [PATCH 1/9] feat: add Claude issue implementation automation workflow MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Add GitHub workflow that triggers on issue comments with @claude implement - Creates branches under claude/ namespace for each implementation - Automatically creates PRs with Claude-generated implementations - Includes permission checks and proper error handling - Add comprehensive documentation for usage Triggers: - @claude implement - @claude fix - @claude create Features: - Unique branch naming: claude/issue-{number}-{timestamp} - Permission validation (write access required) - Automatic PR creation with detailed descriptions - Progress tracking via issue comments - Branch cleanup for failed implementations šŸ¤– Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude --- .github/CLAUDE_AUTOMATION.md | 184 ++++++++++++ .github/workflows/claude-implement-issue.yml | 296 +++++++++++++++++++ 2 files changed, 480 insertions(+) create mode 100644 .github/CLAUDE_AUTOMATION.md create mode 100644 .github/workflows/claude-implement-issue.yml diff --git a/.github/CLAUDE_AUTOMATION.md b/.github/CLAUDE_AUTOMATION.md new file mode 100644 index 0000000..0484124 --- /dev/null +++ b/.github/CLAUDE_AUTOMATION.md @@ -0,0 +1,184 @@ +# Claude Issue Implementation Automation + +This repository includes GitHub workflow automation that allows Claude to implement issues automatically when requested via issue comments. + +## How to Use + +### 1. Trigger Implementation + +Comment on any open issue with one of these triggers: +- `@claude implement` +- `@claude fix` +- `@claude create` + +**Example:** +``` +@claude implement + +Please add TypeScript support for the billing configuration options. +``` + +### 2. What Happens + +When you trigger the automation: + +1. **Permission Check**: Verifies you have write access to the repository +2. **Branch Creation**: Creates a new branch under `claude/issue-{number}-{timestamp}` +3. **Implementation**: Claude analyzes the issue and implements the requested changes +4. **Pull Request**: Automatically creates a PR with the implementation +5. **Notification**: Updates the issue with progress and results + +### 3. Branch Naming Convention + +Branches are created with the pattern: +``` +claude/issue-{issue-number}-{timestamp} +``` + +**Examples:** +- `claude/issue-123-20241218-143052` +- `claude/issue-456-20241218-151234` + +### 4. Requirements + +#### Repository Setup +- The workflow must be merged into your default branch (usually `main` or `dev`) +- Required GitHub secrets: + - `CLAUDE_API_KEY` - Your Claude API key for implementation + +#### Issue Requirements +- Issue must be **open** +- Issue should have clear, actionable requirements +- Include relevant context, code examples, or specifications + +#### User Permissions +- Only users with **write access** or higher can trigger implementations +- This includes repository collaborators, maintainers, and owners + +## Examples + +### Good Issue for Implementation +```markdown +## Feature Request: Add Invoice PDF Export + +**Description**: Users should be able to export invoices as PDF files + +**Requirements**: +- Add "Export PDF" button to invoice detail page +- Generate PDF using existing invoice data +- Include company logo and styling +- Support both individual and bulk export + +**Acceptance Criteria**: +- [ ] PDF export button appears on invoice page +- [ ] Generated PDF matches invoice design +- [ ] Bulk export works from invoice list +- [ ] Error handling for failed exports +``` + +### Trigger Comment +``` +@claude implement + +Please implement the PDF export feature as described in the issue. Make sure to follow the existing code patterns and add appropriate tests. +``` + +## Workflow Features + +### āœ… Automated Branch Management +- Creates unique branches for each implementation +- Cleans up branches if no changes are made +- Prevents branch name conflicts + +### āœ… Permission Control +- Validates user has write access before proceeding +- Provides clear error messages for unauthorized users + +### āœ… Progress Tracking +- Real-time updates in issue comments +- Links to workflow execution logs +- Clear success/failure notifications + +### āœ… Quality Assurance +- Follows existing code patterns +- Includes appropriate documentation +- Maintains project coding standards + +## Troubleshooting + +### Implementation Failed +If the workflow fails: +1. Check the [Actions tab](../../actions) for detailed logs +2. Verify the issue has clear, actionable requirements +3. Ensure repository permissions are configured correctly +4. Try again with more specific requirements + +### No Changes Made +If Claude determines no changes are needed: +- The issue might already be implemented +- Requirements may need clarification +- The request might not be actionable as code + +### Permission Denied +If you get permission errors: +- Verify you have write access to the repository +- Contact a repository maintainer for access +- Check if you're commenting on the correct repository + +## Advanced Usage + +### Multiple Implementations +You can request multiple implementations on the same issue: +- Each trigger creates a new branch +- Previous implementations remain available +- Latest implementation gets priority + +### Custom Instructions +Provide specific implementation guidance: +``` +@claude implement + +Use the Stripe API for payment processing. Follow the existing payment provider pattern in src/providers/. Make sure to add proper error handling and webhook support. +``` + +### Review Process +All implementations create pull requests that: +- Reference the original issue +- Include detailed implementation notes +- Require manual review before merging +- Follow standard PR review process + +## Configuration + +### Required Secrets +Add these secrets in repository settings: + +| Secret | Description | Required | +|--------|-------------|----------| +| `CLAUDE_API_KEY` | Claude API key for implementation | Yes | + +### Workflow Permissions +The workflow requires these permissions: +- `contents: write` - Create branches and commits +- `issues: write` - Comment on issues +- `pull-requests: write` - Create pull requests + +## Limitations + +- Only works with open issues +- Requires clear, actionable requirements +- Limited to repository collaborators +- May need manual refinement for complex features +- Cannot handle issues requiring external services or APIs without proper configuration + +## Support + +If you encounter issues with the automation: +1. Check workflow logs in the Actions tab +2. Verify issue requirements are clear and actionable +3. Ensure you have proper repository permissions +4. Create a new issue describing the problem + +--- + +**Note**: This automation is powered by Claude AI and creates production-ready code, but all implementations should be reviewed before merging to ensure they meet your specific requirements and quality standards. \ No newline at end of file diff --git a/.github/workflows/claude-implement-issue.yml b/.github/workflows/claude-implement-issue.yml new file mode 100644 index 0000000..b367fb0 --- /dev/null +++ b/.github/workflows/claude-implement-issue.yml @@ -0,0 +1,296 @@ +name: Claude Issue Implementation + +on: + issue_comment: + types: [created] + +permissions: + contents: write + issues: write + pull-requests: write + +jobs: + claude-implement: + if: | + github.event.issue_comment.issue.state == 'open' && + ( + contains(github.event.comment.body, '@claude implement') || + contains(github.event.comment.body, '@claude fix') || + contains(github.event.comment.body, '@claude create') + ) + runs-on: ubuntu-latest + + steps: + - name: Check if user has write access + uses: actions/github-script@v7 + with: + script: | + const { data: collaborator } = await github.rest.repos.getCollaboratorPermissionLevel({ + owner: context.repo.owner, + repo: context.repo.repo, + username: context.actor + }); + + const hasWriteAccess = ['admin', 'write'].includes(collaborator.permission); + if (!hasWriteAccess) { + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `āŒ Only collaborators with write access can request Claude implementation. Your permission level: ${collaborator.permission}` + }); + throw new Error('Insufficient permissions'); + } + + - name: Checkout repository + uses: actions/checkout@v4 + with: + fetch-depth: 0 + token: ${{ secrets.GITHUB_TOKEN }} + + - name: Set up Node.js + uses: actions/setup-node@v4 + with: + node-version: '22' + cache: 'npm' + + - name: Install pnpm + run: npm install -g pnpm@10.12.4 + + - name: Create Claude implementation branch + id: create-branch + run: | + # Create a unique branch name based on issue number and timestamp + BRANCH_NAME="claude/issue-${{ github.event.issue.number }}-$(date +%Y%m%d-%H%M%S)" + echo "branch_name=$BRANCH_NAME" >> $GITHUB_OUTPUT + + # Create and switch to the new branch + git checkout -b "$BRANCH_NAME" + git push origin "$BRANCH_NAME" + + - name: Add comment with implementation start + uses: actions/github-script@v7 + with: + script: | + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `šŸ¤– **Claude Implementation Started** + + I'm now working on implementing this issue. Here's what I'm doing: + + šŸ“‹ **Issue**: #${{ github.event.issue.number }} - ${{ github.event.issue.title }} + šŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` + ā±ļø **Started**: ${new Date().toISOString()} + + I'll analyze the requirements and create a pull request with the implementation. This may take a few minutes... + + You can track the progress in the [Actions tab](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}).` + }); + + - name: Install Claude Code CLI + run: | + # Install Claude Code CLI - adjust this based on available installation method + curl -fsSL https://claude.ai/install.sh | bash || echo "Claude CLI installation skipped - using alternative method" + + - name: Prepare implementation context + id: context + run: | + # Create a context file with issue details + cat > implementation-context.md << 'EOF' + # Implementation Request + + **Issue Number**: #${{ github.event.issue.number }} + **Issue Title**: ${{ github.event.issue.title }} + **Issue Body**: + ${{ github.event.issue.body }} + + **Comment Trigger**: + ${{ github.event.comment.body }} + + **Repository**: ${{ github.repository }} + **Branch**: ${{ steps.create-branch.outputs.branch_name }} + + # Instructions + Please implement the feature or fix described in the issue above. Make sure to: + 1. Follow the existing code patterns and conventions + 2. Add appropriate tests if needed + 3. Update documentation if necessary + 4. Ensure the implementation is complete and working + 5. Create a clear commit message describing the changes + + The implementation should be production-ready and follow best practices. + EOF + + - name: Implement with Claude + id: implementation + env: + CLAUDE_API_KEY: ${{ secrets.CLAUDE_API_KEY }} + run: | + # This is a placeholder for Claude implementation + # In practice, this would call Claude Code CLI or API + + echo "Starting Claude implementation..." + + # Simulate implementation work + # In real usage, this would use Claude Code CLI: + # claude-code --file implementation-context.md --implement + + # For now, create a placeholder implementation + echo "šŸ¤– Claude implementation completed" > claude-implementation.log + + # Set output for next steps + echo "implemented=true" >> $GITHUB_OUTPUT + + - name: Check for changes + id: changes + run: | + if git diff --quiet; then + echo "has_changes=false" >> $GITHUB_OUTPUT + echo "No changes were made during implementation" + else + echo "has_changes=true" >> $GITHUB_OUTPUT + echo "Changes detected, preparing commit" + fi + + - name: Commit changes + if: steps.changes.outputs.has_changes == 'true' + run: | + git config --local user.email "action@github.com" + git config --local user.name "Claude Implementation Bot" + + git add . + git commit -m "$(cat <<'EOF' + feat: implement issue #${{ github.event.issue.number }} - ${{ github.event.issue.title }} + + Implemented via Claude automation based on issue requirements. + + Issue: #${{ github.event.issue.number }} + Requested by: @${{ github.event.comment.user.login }} + + šŸ¤– Generated with Claude Automation + + Co-Authored-By: Claude + EOF + )" + + git push origin ${{ steps.create-branch.outputs.branch_name }} + + - name: Create Pull Request + if: steps.changes.outputs.has_changes == 'true' + uses: actions/github-script@v7 + id: create-pr + with: + script: | + const { data: pr } = await github.rest.pulls.create({ + owner: context.repo.owner, + repo: context.repo.repo, + title: `šŸ¤– Implement: ${{ github.event.issue.title }}`, + head: '${{ steps.create-branch.outputs.branch_name }}', + base: 'dev', + body: `## šŸ¤– Claude Implementation + + This PR was automatically created by Claude to implement the feature/fix requested in issue #${{ github.event.issue.number }}. + + ### šŸ“‹ Issue Details + - **Issue**: #${{ github.event.issue.number }} + - **Title**: ${{ github.event.issue.title }} + - **Requested by**: @${{ github.event.comment.user.login }} + - **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` + + ### šŸ” Implementation + Claude analyzed the issue requirements and implemented the requested changes following the project's coding standards and best practices. + + ### āœ… Review Checklist + - [ ] Code follows project conventions + - [ ] Tests are included (if applicable) + - [ ] Documentation is updated (if needed) + - [ ] Implementation matches issue requirements + - [ ] No breaking changes (unless intended) + + ### šŸ”— Related + Closes #${{ github.event.issue.number }} + + --- + + **Note**: This implementation was generated automatically. Please review carefully before merging. + + šŸ¤– *Generated with Claude Automation*` + }); + + return pr.number; + + - name: Update issue with success + if: steps.changes.outputs.has_changes == 'true' + uses: actions/github-script@v7 + with: + script: | + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `āœ… **Implementation Complete!** + + I've successfully implemented the requested changes and created a pull request: + + šŸŽÆ **Pull Request**: #${{ steps.create-pr.outputs.result }} + šŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` + ā±ļø **Completed**: ${new Date().toISOString()} + + ## Next Steps + 1. Review the implementation in the pull request + 2. Test the changes locally if needed + 3. Merge the PR if everything looks good + + The implementation follows the project's coding standards and includes appropriate documentation.` + }); + + - name: Update issue with no changes + if: steps.changes.outputs.has_changes == 'false' + uses: actions/github-script@v7 + with: + script: | + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `āš ļø **Implementation Completed - No Changes** + + I analyzed the issue but determined that no code changes are needed. This might be because: + + - The feature is already implemented + - The issue requires clarification + - The request is not actionable as a code change + - Additional information is needed + + šŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` (will be cleaned up) + + Please review the issue requirements and provide additional details if needed.` + }); + + - name: Clean up branch if no changes + if: steps.changes.outputs.has_changes == 'false' + run: | + git push origin --delete ${{ steps.create-branch.outputs.branch_name }} || true + + - name: Handle implementation failure + if: failure() + uses: actions/github-script@v7 + with: + script: | + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `āŒ **Implementation Failed** + + I encountered an error while trying to implement this issue. Please check the [workflow logs](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}) for details. + + Common reasons for failure: + - Issue requirements are unclear or incomplete + - Technical constraints prevent implementation + - Repository permissions or configuration issues + + You can try again by commenting \`@claude implement\` or provide more specific requirements.` + }); \ No newline at end of file From c083ae183c62235e2ffac2df03e0533d4e1a6098 Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 21:02:20 +0200 Subject: [PATCH 2/9] fix: update Claude issue workflow to use official anthropics/claude-code-action@beta MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Replace placeholder implementation with official Anthropic Claude Code action - Update required secret from CLAUDE_API_KEY to CLAUDE_CODE_OAUTH_TOKEN - Add id-token: write permission for Claude Code action - Include allowed_tools for build, typecheck, lint, and test commands - Update documentation with correct secret name and technical details The workflow now uses the official Claude Code action for reliable, production-ready issue implementations. šŸ¤– Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude --- .github/CLAUDE_AUTOMATION.md | 41 +++++++++-- .github/workflows/claude-implement-issue.yml | 76 ++++++++------------ 2 files changed, 64 insertions(+), 53 deletions(-) diff --git a/.github/CLAUDE_AUTOMATION.md b/.github/CLAUDE_AUTOMATION.md index 0484124..e1bcbe3 100644 --- a/.github/CLAUDE_AUTOMATION.md +++ b/.github/CLAUDE_AUTOMATION.md @@ -24,7 +24,7 @@ When you trigger the automation: 1. **Permission Check**: Verifies you have write access to the repository 2. **Branch Creation**: Creates a new branch under `claude/issue-{number}-{timestamp}` -3. **Implementation**: Claude analyzes the issue and implements the requested changes +3. **Implementation**: Claude analyzes the issue and implements the requested changes using the official Anthropic Claude Code action 4. **Pull Request**: Automatically creates a PR with the implementation 5. **Notification**: Updates the issue with progress and results @@ -44,7 +44,7 @@ claude/issue-{issue-number}-{timestamp} #### Repository Setup - The workflow must be merged into your default branch (usually `main` or `dev`) - Required GitHub secrets: - - `CLAUDE_API_KEY` - Your Claude API key for implementation + - `CLAUDE_CODE_OAUTH_TOKEN` - Your Claude Code OAuth token for implementation #### Issue Requirements - Issue must be **open** @@ -100,9 +100,11 @@ Please implement the PDF export feature as described in the issue. Make sure to - Clear success/failure notifications ### āœ… Quality Assurance +- Uses official Anthropic Claude Code action - Follows existing code patterns - Includes appropriate documentation - Maintains project coding standards +- Runs build, typecheck, and lint commands ## Troubleshooting @@ -111,7 +113,8 @@ If the workflow fails: 1. Check the [Actions tab](../../actions) for detailed logs 2. Verify the issue has clear, actionable requirements 3. Ensure repository permissions are configured correctly -4. Try again with more specific requirements +4. Check that `CLAUDE_CODE_OAUTH_TOKEN` secret is set +5. Try again with more specific requirements ### No Changes Made If Claude determines no changes are needed: @@ -155,13 +158,38 @@ Add these secrets in repository settings: | Secret | Description | Required | |--------|-------------|----------| -| `CLAUDE_API_KEY` | Claude API key for implementation | Yes | +| `CLAUDE_CODE_OAUTH_TOKEN` | Claude Code OAuth token for implementation | Yes | ### Workflow Permissions The workflow requires these permissions: - `contents: write` - Create branches and commits - `issues: write` - Comment on issues - `pull-requests: write` - Create pull requests +- `id-token: write` - Required for Claude Code action + +### Allowed Tools +Claude can run these commands during implementation: +- `pnpm build` - Build the project +- `pnpm typecheck` - Run TypeScript type checking +- `pnpm lint` - Run ESLint +- `npm run test` - Run tests + +## Technical Details + +### Claude Code Action +This workflow uses the official `anthropics/claude-code-action@beta` which provides: +- Direct integration with Claude's code generation capabilities +- Secure authentication via OAuth tokens +- Advanced code analysis and implementation features +- Built-in safety and quality controls + +### Implementation Process +1. Claude analyzes the issue requirements +2. Reviews existing codebase patterns +3. Generates implementation following project conventions +4. Runs quality checks (build, typecheck, lint) +5. Creates commits with descriptive messages +6. Opens pull request with detailed description ## Limitations @@ -177,8 +205,9 @@ If you encounter issues with the automation: 1. Check workflow logs in the Actions tab 2. Verify issue requirements are clear and actionable 3. Ensure you have proper repository permissions -4. Create a new issue describing the problem +4. Verify `CLAUDE_CODE_OAUTH_TOKEN` secret is configured +5. Create a new issue describing the problem --- -**Note**: This automation is powered by Claude AI and creates production-ready code, but all implementations should be reviewed before merging to ensure they meet your specific requirements and quality standards. \ No newline at end of file +**Note**: This automation is powered by Anthropic's Claude Code action and creates production-ready code, but all implementations should be reviewed before merging to ensure they meet your specific requirements and quality standards. \ No newline at end of file diff --git a/.github/workflows/claude-implement-issue.yml b/.github/workflows/claude-implement-issue.yml index b367fb0..9414a50 100644 --- a/.github/workflows/claude-implement-issue.yml +++ b/.github/workflows/claude-implement-issue.yml @@ -8,6 +8,7 @@ permissions: contents: write issues: write pull-requests: write + id-token: write jobs: claude-implement: @@ -89,59 +90,40 @@ jobs: You can track the progress in the [Actions tab](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}).` }); - - name: Install Claude Code CLI - run: | - # Install Claude Code CLI - adjust this based on available installation method - curl -fsSL https://claude.ai/install.sh | bash || echo "Claude CLI installation skipped - using alternative method" - - - name: Prepare implementation context - id: context - run: | - # Create a context file with issue details - cat > implementation-context.md << 'EOF' - # Implementation Request - - **Issue Number**: #${{ github.event.issue.number }} - **Issue Title**: ${{ github.event.issue.title }} - **Issue Body**: - ${{ github.event.issue.body }} - - **Comment Trigger**: - ${{ github.event.comment.body }} - - **Repository**: ${{ github.repository }} - **Branch**: ${{ steps.create-branch.outputs.branch_name }} - - # Instructions - Please implement the feature or fix described in the issue above. Make sure to: - 1. Follow the existing code patterns and conventions - 2. Add appropriate tests if needed - 3. Update documentation if necessary - 4. Ensure the implementation is complete and working - 5. Create a clear commit message describing the changes - - The implementation should be production-ready and follow best practices. - EOF - - name: Implement with Claude id: implementation - env: - CLAUDE_API_KEY: ${{ secrets.CLAUDE_API_KEY }} - run: | - # This is a placeholder for Claude implementation - # In practice, this would call Claude Code CLI or API + uses: anthropics/claude-code-action@beta + with: + claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }} - echo "Starting Claude implementation..." + # Direct prompt with issue context + direct_prompt: | + Please implement the feature or fix described in this GitHub issue: - # Simulate implementation work - # In real usage, this would use Claude Code CLI: - # claude-code --file implementation-context.md --implement + **Issue #${{ github.event.issue.number }}**: ${{ github.event.issue.title }} - # For now, create a placeholder implementation - echo "šŸ¤– Claude implementation completed" > claude-implementation.log + **Issue Description**: + ${{ github.event.issue.body }} - # Set output for next steps - echo "implemented=true" >> $GITHUB_OUTPUT + **Implementation Request**: + ${{ github.event.comment.body }} + + **Instructions**: + 1. Analyze the issue requirements carefully + 2. Follow the existing code patterns and conventions in this PayloadCMS plugin + 3. Add appropriate tests if needed (check for existing test patterns) + 4. Update documentation if necessary + 5. Ensure the implementation is complete and working + 6. Use TypeScript with proper typing + 7. Follow the project's ESM module structure with .js extensions + + The implementation should be production-ready and follow best practices for a PayloadCMS plugin. + + **Repository Context**: This is the @xtr-dev/payload-billing plugin for PayloadCMS. + **Branch**: ${{ steps.create-branch.outputs.branch_name }} + + # Allow Claude to run necessary commands + allowed_tools: "Bash(pnpm build),Bash(pnpm typecheck),Bash(pnpm lint),Bash(npm run test)" - name: Check for changes id: changes From bfa214aed6834a7c5083e2e52388a29af5840a4f Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 21:06:03 +0200 Subject: [PATCH 3/9] fix: make providerId optional and add version field to Payment type - Update `providerId` to be optional in Payment interface for flexibility - Add `version` field to support potential data versioning requirements --- dev/payload-types.ts | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/dev/payload-types.ts b/dev/payload-types.ts index 5f1fb92..4fb47ca 100644 --- a/dev/payload-types.ts +++ b/dev/payload-types.ts @@ -158,7 +158,7 @@ export interface Payment { /** * The payment ID from the payment provider */ - providerId: string; + providerId?: string | null; status: 'pending' | 'processing' | 'succeeded' | 'failed' | 'canceled' | 'refunded' | 'partially_refunded'; /** * Amount in cents (e.g., 2000 = $20.00) @@ -198,6 +198,7 @@ export interface Payment { | boolean | null; refunds?: (number | Refund)[] | null; + version?: number | null; updatedAt: string; createdAt: string; } @@ -499,6 +500,7 @@ export interface PaymentsSelect { metadata?: T; providerData?: T; refunds?: T; + version?: T; updatedAt?: T; createdAt?: T; } From 534b0e440f2507bd6f9aeafa105550f248163b0d Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 21:16:51 +0200 Subject: [PATCH 4/9] feat: add comprehensive user permission controls for Claude workflows MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Add multi-level permission checking for issue implementation workflow - Support multiple permission strategies: privileged users, admins only, combined, org-based - Add permission validation with detailed error messages - Restrict code review workflow to privileged users and repository members - Create permission configuration file (.github/claude-config.json) - Add comprehensive permission documentation Permission strategies available: - Privileged users only (most restrictive) - Repository admins only - Admins OR privileged users (default) - Organization members with write access - Everyone with write access (least restrictive) Current configuration: - Issue implementation: admins OR privileged users (bastiaan, xtr-dev-team) - Code reviews: privileged users and repository members only šŸ¤– Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude --- .github/CLAUDE_AUTOMATION.md | 213 ------------------- .github/CLAUDE_PERMISSIONS.md | 212 ++++++++++++++++++ .github/claude-config.json | 23 ++ .github/workflows/claude-code-review.yml | 20 +- .github/workflows/claude-implement-issue.yml | 64 +++++- 5 files changed, 310 insertions(+), 222 deletions(-) delete mode 100644 .github/CLAUDE_AUTOMATION.md create mode 100644 .github/CLAUDE_PERMISSIONS.md create mode 100644 .github/claude-config.json diff --git a/.github/CLAUDE_AUTOMATION.md b/.github/CLAUDE_AUTOMATION.md deleted file mode 100644 index e1bcbe3..0000000 --- a/.github/CLAUDE_AUTOMATION.md +++ /dev/null @@ -1,213 +0,0 @@ -# Claude Issue Implementation Automation - -This repository includes GitHub workflow automation that allows Claude to implement issues automatically when requested via issue comments. - -## How to Use - -### 1. Trigger Implementation - -Comment on any open issue with one of these triggers: -- `@claude implement` -- `@claude fix` -- `@claude create` - -**Example:** -``` -@claude implement - -Please add TypeScript support for the billing configuration options. -``` - -### 2. What Happens - -When you trigger the automation: - -1. **Permission Check**: Verifies you have write access to the repository -2. **Branch Creation**: Creates a new branch under `claude/issue-{number}-{timestamp}` -3. **Implementation**: Claude analyzes the issue and implements the requested changes using the official Anthropic Claude Code action -4. **Pull Request**: Automatically creates a PR with the implementation -5. **Notification**: Updates the issue with progress and results - -### 3. Branch Naming Convention - -Branches are created with the pattern: -``` -claude/issue-{issue-number}-{timestamp} -``` - -**Examples:** -- `claude/issue-123-20241218-143052` -- `claude/issue-456-20241218-151234` - -### 4. Requirements - -#### Repository Setup -- The workflow must be merged into your default branch (usually `main` or `dev`) -- Required GitHub secrets: - - `CLAUDE_CODE_OAUTH_TOKEN` - Your Claude Code OAuth token for implementation - -#### Issue Requirements -- Issue must be **open** -- Issue should have clear, actionable requirements -- Include relevant context, code examples, or specifications - -#### User Permissions -- Only users with **write access** or higher can trigger implementations -- This includes repository collaborators, maintainers, and owners - -## Examples - -### Good Issue for Implementation -```markdown -## Feature Request: Add Invoice PDF Export - -**Description**: Users should be able to export invoices as PDF files - -**Requirements**: -- Add "Export PDF" button to invoice detail page -- Generate PDF using existing invoice data -- Include company logo and styling -- Support both individual and bulk export - -**Acceptance Criteria**: -- [ ] PDF export button appears on invoice page -- [ ] Generated PDF matches invoice design -- [ ] Bulk export works from invoice list -- [ ] Error handling for failed exports -``` - -### Trigger Comment -``` -@claude implement - -Please implement the PDF export feature as described in the issue. Make sure to follow the existing code patterns and add appropriate tests. -``` - -## Workflow Features - -### āœ… Automated Branch Management -- Creates unique branches for each implementation -- Cleans up branches if no changes are made -- Prevents branch name conflicts - -### āœ… Permission Control -- Validates user has write access before proceeding -- Provides clear error messages for unauthorized users - -### āœ… Progress Tracking -- Real-time updates in issue comments -- Links to workflow execution logs -- Clear success/failure notifications - -### āœ… Quality Assurance -- Uses official Anthropic Claude Code action -- Follows existing code patterns -- Includes appropriate documentation -- Maintains project coding standards -- Runs build, typecheck, and lint commands - -## Troubleshooting - -### Implementation Failed -If the workflow fails: -1. Check the [Actions tab](../../actions) for detailed logs -2. Verify the issue has clear, actionable requirements -3. Ensure repository permissions are configured correctly -4. Check that `CLAUDE_CODE_OAUTH_TOKEN` secret is set -5. Try again with more specific requirements - -### No Changes Made -If Claude determines no changes are needed: -- The issue might already be implemented -- Requirements may need clarification -- The request might not be actionable as code - -### Permission Denied -If you get permission errors: -- Verify you have write access to the repository -- Contact a repository maintainer for access -- Check if you're commenting on the correct repository - -## Advanced Usage - -### Multiple Implementations -You can request multiple implementations on the same issue: -- Each trigger creates a new branch -- Previous implementations remain available -- Latest implementation gets priority - -### Custom Instructions -Provide specific implementation guidance: -``` -@claude implement - -Use the Stripe API for payment processing. Follow the existing payment provider pattern in src/providers/. Make sure to add proper error handling and webhook support. -``` - -### Review Process -All implementations create pull requests that: -- Reference the original issue -- Include detailed implementation notes -- Require manual review before merging -- Follow standard PR review process - -## Configuration - -### Required Secrets -Add these secrets in repository settings: - -| Secret | Description | Required | -|--------|-------------|----------| -| `CLAUDE_CODE_OAUTH_TOKEN` | Claude Code OAuth token for implementation | Yes | - -### Workflow Permissions -The workflow requires these permissions: -- `contents: write` - Create branches and commits -- `issues: write` - Comment on issues -- `pull-requests: write` - Create pull requests -- `id-token: write` - Required for Claude Code action - -### Allowed Tools -Claude can run these commands during implementation: -- `pnpm build` - Build the project -- `pnpm typecheck` - Run TypeScript type checking -- `pnpm lint` - Run ESLint -- `npm run test` - Run tests - -## Technical Details - -### Claude Code Action -This workflow uses the official `anthropics/claude-code-action@beta` which provides: -- Direct integration with Claude's code generation capabilities -- Secure authentication via OAuth tokens -- Advanced code analysis and implementation features -- Built-in safety and quality controls - -### Implementation Process -1. Claude analyzes the issue requirements -2. Reviews existing codebase patterns -3. Generates implementation following project conventions -4. Runs quality checks (build, typecheck, lint) -5. Creates commits with descriptive messages -6. Opens pull request with detailed description - -## Limitations - -- Only works with open issues -- Requires clear, actionable requirements -- Limited to repository collaborators -- May need manual refinement for complex features -- Cannot handle issues requiring external services or APIs without proper configuration - -## Support - -If you encounter issues with the automation: -1. Check workflow logs in the Actions tab -2. Verify issue requirements are clear and actionable -3. Ensure you have proper repository permissions -4. Verify `CLAUDE_CODE_OAUTH_TOKEN` secret is configured -5. Create a new issue describing the problem - ---- - -**Note**: This automation is powered by Anthropic's Claude Code action and creates production-ready code, but all implementations should be reviewed before merging to ensure they meet your specific requirements and quality standards. \ No newline at end of file diff --git a/.github/CLAUDE_PERMISSIONS.md b/.github/CLAUDE_PERMISSIONS.md new file mode 100644 index 0000000..0f0416f --- /dev/null +++ b/.github/CLAUDE_PERMISSIONS.md @@ -0,0 +1,212 @@ +# Claude Workflow Permissions + +This document explains how to configure user permissions for Claude automation workflows. + +## Current Configuration + +### Issue Implementation Workflow +- **Strategy**: `adminOrPrivileged` - Repository admins OR privileged users +- **Privileged Users**: `bastiaan`, `xtr-dev-team` +- **Access Check**: Validates permissions before any Claude implementation + +### Code Review Workflow +- **Strategy**: `privilegedUsers` - Only users in privileged list +- **Applies to**: Pull request reviews +- **Scope**: PRs created by privileged users only + +## Permission Strategies + +### 1. Privileged Users Only +```javascript +const isAllowed = privilegedUsers.includes(username); +``` +- Most restrictive +- Only specific users can use Claude +- Best for sensitive repositories + +### 2. Admins Only +```javascript +const isAllowed = collaborator.permission === 'admin'; +``` +- Repository administrators only +- Automatic based on GitHub permissions +- Good for small teams + +### 3. Admin OR Privileged (Current) +```javascript +const isAllowed = hasAdminAccess || isPrivilegedUser; +``` +- Repository admins OR users in privileged list +- Flexible access control +- **Currently active strategy** + +### 4. Organization Members with Write Access +```javascript +const isAllowed = isOrgMember && hasWriteAccess; +``` +- Organization members with write/admin permissions +- Good for larger organizations + +### 5. Everyone with Access +```javascript +const isAllowed = hasWriteAccess; +``` +- Any collaborator with write access +- Least restrictive option + +## How to Change Permissions + +### Option A: Edit Privileged Users List +1. Open `.github/workflows/claude-implement-issue.yml` +2. Find the `privilegedUsers` array (line ~32) +3. Add or remove usernames: +```javascript +const privilegedUsers = [ + 'bastiaan', + 'xtr-dev-team', + 'new-user', // Add new users here + 'another-user' +]; +``` + +### Option B: Change Permission Strategy +1. Open `.github/workflows/claude-implement-issue.yml` +2. Find line ~77: `const isAllowed = allowedByAdminOrPrivileged;` +3. Replace with your preferred strategy: +```javascript +// Only privileged users +const isAllowed = allowedByUserList; + +// Only admins +const isAllowed = allowedByAdminAccess; + +// Admin + privileged users (current) +const isAllowed = allowedByAdminOrPrivileged; + +// Organization members with write access +const isAllowed = allowedByOrgAndWrite; +``` + +### Option C: Custom Logic +Add your own permission logic: +```javascript +// Example: Allow specific teams +const allowedTeams = ['core-team', 'senior-devs']; +const userTeams = await github.rest.teams.listForUser({ + org: context.repo.owner, + username: username +}); +const isInAllowedTeam = userTeams.data.some(team => + allowedTeams.includes(team.slug) +); + +const isAllowed = hasAdminAccess || isInAllowedTeam; +``` + +## Code Review Permissions + +The code review workflow uses a simpler approach with GitHub's built-in author associations: + +```yaml +if: | + contains(fromJSON('["bastiaan", "xtr-dev-team"]'), github.event.pull_request.user.login) || + github.event.pull_request.author_association == 'OWNER' || + github.event.pull_request.author_association == 'MEMBER' +``` + +### Author Associations: +- `OWNER` - Repository owner +- `MEMBER` - Organization member +- `COLLABORATOR` - Repository collaborator +- `CONTRIBUTOR` - Has contributed to the repository +- `FIRST_TIME_CONTRIBUTOR` - First-time contributor +- `NONE` - No association + +## Testing Permissions + +### Test Access for a User +1. Create a test issue +2. Have the user comment `@claude implement` +3. Check the workflow logs for permission results + +### Debug Permission Issues +1. Go to **Actions** tab +2. Click on the failed workflow run +3. Expand "Check user permissions" step +4. Review the permission details in logs + +## Error Messages + +### Access Denied +``` +āŒ Access Denied: Claude implementation is restricted to privileged users only. + +Your access level: write +Privileged user: No +Organization member: Yes + +Contact a repository administrator for access. +``` + +### Permission Details +The error message shows: +- Current repository permission level +- Whether user is in privileged list +- Organization membership status + +## Security Considerations + +### Best Practices +1. **Start Restrictive**: Begin with privileged users only +2. **Regular Audits**: Review privileged user list regularly +3. **Monitor Usage**: Check workflow logs for unexpected access attempts +4. **Team-based Access**: Consider using GitHub teams for larger organizations + +### Risks +- **Over-permissive**: Too many users can increase costs and misuse +- **Under-permissive**: Blocks legitimate development work +- **Stale Permissions**: Former team members with lingering access + +## Configuration Examples + +### Small Team (2-5 developers) +```javascript +const privilegedUsers = ['owner', 'lead-dev']; +const isAllowed = allowedByAdminOrPrivileged; +``` + +### Medium Team (5-15 developers) +```javascript +const privilegedUsers = ['owner', 'lead-dev', 'senior-dev1', 'senior-dev2']; +const isAllowed = allowedByAdminOrPrivileged; +``` + +### Large Organization +```javascript +// Use organization membership + write access +const isAllowed = allowedByOrgAndWrite; +``` + +### Open Source Project +```javascript +// Only maintainers +const privilegedUsers = ['maintainer1', 'maintainer2']; +const isAllowed = allowedByUserList; +``` + +## Troubleshooting + +### Common Issues +1. **User not in list**: Add username to `privilegedUsers` array +2. **Wrong permission level**: User needs write access minimum +3. **Organization issues**: Verify org membership if using org-based permissions +4. **Case sensitivity**: Usernames are case-sensitive + +### Quick Fixes +- **Add user**: Edit workflow file, add to privileged users +- **Temporary access**: Change strategy to `allowedByAdminAccess` temporarily +- **Emergency access**: Repository admins always have access with `adminOrPrivileged` strategy + +--- + +**Note**: Changes to workflow files require a commit to take effect. Test permissions after any modifications. \ No newline at end of file diff --git a/.github/claude-config.json b/.github/claude-config.json new file mode 100644 index 0000000..41d105f --- /dev/null +++ b/.github/claude-config.json @@ -0,0 +1,23 @@ +{ + "privilegedUsers": [ + "bastiaan", + "xtr-dev-team" + ], + "permissions": { + "issueImplementation": { + "strategy": "adminOrPrivileged", + "description": "Allow admins and privileged users to request Claude implementations" + }, + "codeReview": { + "strategy": "privilegedUsers", + "description": "Only run Claude reviews for privileged users" + } + }, + "strategies": { + "privilegedUsers": "Only users in the privilegedUsers list", + "adminsOnly": "Only repository admins", + "adminOrPrivileged": "Repository admins OR users in privilegedUsers list", + "orgMembersWithWrite": "Organization members with write access", + "everyone": "All users with repository access" + } +} \ No newline at end of file diff --git a/.github/workflows/claude-code-review.yml b/.github/workflows/claude-code-review.yml index a12225a..f425f6d 100644 --- a/.github/workflows/claude-code-review.yml +++ b/.github/workflows/claude-code-review.yml @@ -12,11 +12,23 @@ on: jobs: claude-review: - # Optional: Filter by PR author + # Permission filter: Only allow specific users or admins to trigger reviews + if: | + contains(fromJSON('["bastiaan", "xtr-dev-team"]'), github.event.pull_request.user.login) || + github.event.pull_request.author_association == 'OWNER' || + github.event.pull_request.author_association == 'MEMBER' + + # Alternative filters (comment out the above and use one of these): + # Only for external contributors: + # if: github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR' + + # Only for specific users: + # if: contains(fromJSON('["username1", "username2"]'), github.event.pull_request.user.login) + + # Only for non-admins (let admins skip review): # if: | - # github.event.pull_request.user.login == 'external-contributor' || - # github.event.pull_request.user.login == 'new-developer' || - # github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR' + # github.event.pull_request.author_association != 'OWNER' && + # github.event.pull_request.author_association != 'MEMBER' runs-on: ubuntu-latest permissions: diff --git a/.github/workflows/claude-implement-issue.yml b/.github/workflows/claude-implement-issue.yml index 9414a50..ba520d3 100644 --- a/.github/workflows/claude-implement-issue.yml +++ b/.github/workflows/claude-implement-issue.yml @@ -22,27 +22,81 @@ jobs: runs-on: ubuntu-latest steps: - - name: Check if user has write access + - name: Check user permissions uses: actions/github-script@v7 with: script: | + const username = context.actor; + + // Method 1: Specific privileged users list + const privilegedUsers = [ + 'bastiaan', // Repository owner + 'xtr-dev-team', // Core team members + // Add more usernames here + ]; + + // Method 2: Check repository permission level const { data: collaborator } = await github.rest.repos.getCollaboratorPermissionLevel({ owner: context.repo.owner, repo: context.repo.repo, - username: context.actor + username: username }); + // Method 3: Check organization membership (if applicable) + let isOrgMember = false; + try { + await github.rest.orgs.getMembershipForUser({ + org: context.repo.owner, + username: username + }); + isOrgMember = true; + } catch (error) { + // User is not an org member or org doesn't exist + isOrgMember = false; + } + + // Combined permission check + const isPrivilegedUser = privilegedUsers.includes(username); + const hasAdminAccess = collaborator.permission === 'admin'; const hasWriteAccess = ['admin', 'write'].includes(collaborator.permission); - if (!hasWriteAccess) { + + // Choose your permission strategy: + // Option A: Only specific users + const allowedByUserList = isPrivilegedUser; + + // Option B: Only admins + const allowedByAdminAccess = hasAdminAccess; + + // Option C: Admin + specific users + const allowedByAdminOrPrivileged = hasAdminAccess || isPrivilegedUser; + + // Option D: Organization members with write access + const allowedByOrgAndWrite = isOrgMember && hasWriteAccess; + + // Set your chosen strategy here: + const isAllowed = allowedByAdminOrPrivileged; // Change this line to use your preferred strategy + + if (!isAllowed) { + const errorMessage = `āŒ **Access Denied**: Claude implementation is restricted to privileged users only. + + **Your access level**: ${collaborator.permission} + **Privileged user**: ${isPrivilegedUser ? 'Yes' : 'No'} + **Organization member**: ${isOrgMember ? 'Yes' : 'No'} + + Contact a repository administrator for access.`; + await github.rest.issues.createComment({ owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `āŒ Only collaborators with write access can request Claude implementation. Your permission level: ${collaborator.permission}` + body: errorMessage }); - throw new Error('Insufficient permissions'); + throw new Error('Insufficient permissions for Claude implementation'); } + // Log successful access + console.log(`āœ… Access granted to ${username} (${collaborator.permission})`); + - name: Checkout repository uses: actions/checkout@v4 with: From 7a3d6ec26efa2a916ac1a872dc83400820aa024f Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 21:20:39 +0200 Subject: [PATCH 5/9] fix: restrict Claude workflows to only bvdaakster user MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Change issue implementation workflow to only allow bvdaakster - Update code review workflow to only trigger for bvdaakster's PRs - Update configuration to reflect single-user access - Remove other privileged users from the list Only bvdaakster can now: - Trigger Claude issue implementations with @claude comments - Have PRs automatically reviewed by Claude šŸ¤– Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude --- .github/claude-config.json | 9 ++++----- .github/workflows/claude-code-review.yml | 7 ++----- .github/workflows/claude-implement-issue.yml | 6 ++---- 3 files changed, 8 insertions(+), 14 deletions(-) diff --git a/.github/claude-config.json b/.github/claude-config.json index 41d105f..1297271 100644 --- a/.github/claude-config.json +++ b/.github/claude-config.json @@ -1,16 +1,15 @@ { "privilegedUsers": [ - "bastiaan", - "xtr-dev-team" + "bvdaakster" ], "permissions": { "issueImplementation": { - "strategy": "adminOrPrivileged", - "description": "Allow admins and privileged users to request Claude implementations" + "strategy": "privilegedUsers", + "description": "Only bvdaakster can request Claude implementations" }, "codeReview": { "strategy": "privilegedUsers", - "description": "Only run Claude reviews for privileged users" + "description": "Only bvdaakster can trigger Claude reviews" } }, "strategies": { diff --git a/.github/workflows/claude-code-review.yml b/.github/workflows/claude-code-review.yml index f425f6d..b91e38c 100644 --- a/.github/workflows/claude-code-review.yml +++ b/.github/workflows/claude-code-review.yml @@ -12,11 +12,8 @@ on: jobs: claude-review: - # Permission filter: Only allow specific users or admins to trigger reviews - if: | - contains(fromJSON('["bastiaan", "xtr-dev-team"]'), github.event.pull_request.user.login) || - github.event.pull_request.author_association == 'OWNER' || - github.event.pull_request.author_association == 'MEMBER' + # Permission filter: Only allow bvdaakster to trigger reviews + if: github.event.pull_request.user.login == 'bvdaakster' # Alternative filters (comment out the above and use one of these): # Only for external contributors: diff --git a/.github/workflows/claude-implement-issue.yml b/.github/workflows/claude-implement-issue.yml index ba520d3..9d121e4 100644 --- a/.github/workflows/claude-implement-issue.yml +++ b/.github/workflows/claude-implement-issue.yml @@ -30,9 +30,7 @@ jobs: // Method 1: Specific privileged users list const privilegedUsers = [ - 'bastiaan', // Repository owner - 'xtr-dev-team', // Core team members - // Add more usernames here + 'bvdaakster' // Only this user can use Claude ]; // Method 2: Check repository permission level @@ -74,7 +72,7 @@ jobs: const allowedByOrgAndWrite = isOrgMember && hasWriteAccess; // Set your chosen strategy here: - const isAllowed = allowedByAdminOrPrivileged; // Change this line to use your preferred strategy + const isAllowed = isPrivilegedUser; // Only bvdaakster can use Claude if (!isAllowed) { const errorMessage = `āŒ **Access Denied**: Claude implementation is restricted to privileged users only. From 8ac328e14fb440e98ed94c3eff6f785c71312c05 Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 21:24:25 +0200 Subject: [PATCH 6/9] feat: enhance Claude issue workflow with robust PR creation MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Improve change detection to check both staged and unstaged changes - Add detailed file listing in PR description - Include comprehensive review checklist with build/lint checks - Add fallback PR creation mechanism for error resilience - Enhance success messaging with detailed implementation summary - Add debugging output for change detection - Include deployment instructions in PR template Key improvements: - More robust change detection - Error handling with fallback PR creation - Better PR descriptions with changed files list - Enhanced issue update messages - Quality check reminders šŸ¤– Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude --- .github/workflows/claude-implement-issue.yml | 178 +++++++++++++++---- 1 file changed, 140 insertions(+), 38 deletions(-) diff --git a/.github/workflows/claude-implement-issue.yml b/.github/workflows/claude-implement-issue.yml index 9d121e4..3c624f9 100644 --- a/.github/workflows/claude-implement-issue.yml +++ b/.github/workflows/claude-implement-issue.yml @@ -180,12 +180,19 @@ jobs: - name: Check for changes id: changes run: | - if git diff --quiet; then + # Check both staged and unstaged changes + if git diff --quiet && git diff --cached --quiet; then echo "has_changes=false" >> $GITHUB_OUTPUT echo "No changes were made during implementation" else echo "has_changes=true" >> $GITHUB_OUTPUT echo "Changes detected, preparing commit" + + # Show what changed for debugging + echo "=== Changed files ===" + git diff --name-only + git diff --cached --name-only + echo "====================" fi - name: Commit changes @@ -217,67 +224,162 @@ jobs: id: create-pr with: script: | - const { data: pr } = await github.rest.pulls.create({ - owner: context.repo.owner, - repo: context.repo.repo, - title: `šŸ¤– Implement: ${{ github.event.issue.title }}`, - head: '${{ steps.create-branch.outputs.branch_name }}', - base: 'dev', - body: `## šŸ¤– Claude Implementation + try { + // Get the list of changed files for the PR description + const { data: comparison } = await github.rest.repos.compareCommits({ + owner: context.repo.owner, + repo: context.repo.repo, + base: 'dev', + head: '${{ steps.create-branch.outputs.branch_name }}' + }); - This PR was automatically created by Claude to implement the feature/fix requested in issue #${{ github.event.issue.number }}. + const changedFiles = comparison.files || []; + const filesList = changedFiles.map(file => `- \`${file.filename}\``).join('\n'); - ### šŸ“‹ Issue Details - - **Issue**: #${{ github.event.issue.number }} - - **Title**: ${{ github.event.issue.title }} - - **Requested by**: @${{ github.event.comment.user.login }} - - **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` + const { data: pr } = await github.rest.pulls.create({ + owner: context.repo.owner, + repo: context.repo.repo, + title: `šŸ¤– Implement: ${{ github.event.issue.title }}`, + head: '${{ steps.create-branch.outputs.branch_name }}', + base: 'dev', + body: `## šŸ¤– Claude Implementation - ### šŸ” Implementation - Claude analyzed the issue requirements and implemented the requested changes following the project's coding standards and best practices. +This PR was automatically created by Claude to implement the feature/fix requested in issue #${{ github.event.issue.number }}. - ### āœ… Review Checklist - - [ ] Code follows project conventions - - [ ] Tests are included (if applicable) - - [ ] Documentation is updated (if needed) - - [ ] Implementation matches issue requirements - - [ ] No breaking changes (unless intended) +### šŸ“‹ Issue Details +- **Issue**: #${{ github.event.issue.number }} +- **Title**: ${{ github.event.issue.title }} +- **Requested by**: @${{ github.event.comment.user.login }} +- **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` +- **Implementation Date**: ${new Date().toISOString()} - ### šŸ”— Related - Closes #${{ github.event.issue.number }} +### šŸ“ Files Changed +${filesList || 'No files were changed'} - --- +### šŸ” Implementation +Claude analyzed the issue requirements and implemented the requested changes following the project's coding standards and best practices. - **Note**: This implementation was generated automatically. Please review carefully before merging. +### āœ… Review Checklist +- [ ] Code follows project conventions +- [ ] Tests are included (if applicable) +- [ ] Documentation is updated (if needed) +- [ ] Implementation matches issue requirements +- [ ] No breaking changes (unless intended) +- [ ] Build passes (\`pnpm build\`) +- [ ] Type checking passes (\`pnpm typecheck\`) +- [ ] Linting passes (\`pnpm lint\`) - šŸ¤– *Generated with Claude Automation*` - }); +### šŸ”— Related +Closes #${{ github.event.issue.number }} - return pr.number; +### šŸš€ Deployment +After merging this PR: +1. Version will be automatically bumped +2. Package will be built and published +3. Changes will be available in the next release + +--- + +**Note**: This implementation was generated automatically by Claude. Please review carefully before merging. + +šŸ¤– *Generated with [Claude Code](https://claude.ai/code)* +šŸ”§ *Triggered by @${{ github.event.comment.user.login }}*` + }); + + console.log(`āœ… PR created successfully: #${pr.number}`); + return pr.number; + } catch (error) { + console.error('Failed to create PR:', error); + throw error; + } + + - name: Fallback PR Creation + if: steps.changes.outputs.has_changes == 'true' && failure() && steps.create-pr.conclusion == 'failure' + uses: actions/github-script@v7 + id: fallback-pr + with: + script: | + console.log('Primary PR creation failed, attempting fallback...'); + try { + const { data: pr } = await github.rest.pulls.create({ + owner: context.repo.owner, + repo: context.repo.repo, + title: `šŸ¤– Implement: ${{ github.event.issue.title }}`, + head: '${{ steps.create-branch.outputs.branch_name }}', + base: 'dev', + body: `## šŸ¤– Claude Implementation (Fallback) + +This PR was automatically created by Claude to implement issue #${{ github.event.issue.number }}. + +**Issue**: #${{ github.event.issue.number }} - ${{ github.event.issue.title }} +**Requested by**: @${{ github.event.comment.user.login }} +**Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` + +āš ļø *This PR was created via fallback method due to an error in the primary creation process.* + +### šŸ” Implementation +Claude has implemented the requested changes. Please review the code changes in this PR. + +### āœ… Review Required +- [ ] Verify implementation meets issue requirements +- [ ] Check code quality and conventions +- [ ] Test the changes +- [ ] Ensure no breaking changes + +Closes #${{ github.event.issue.number }} + +šŸ¤– *Generated with Claude Automation*` + }); + + console.log(`āœ… Fallback PR created successfully: #${pr.number}`); + return pr.number; + } catch (error) { + console.error('Fallback PR creation also failed:', error); + return null; + } - name: Update issue with success if: steps.changes.outputs.has_changes == 'true' uses: actions/github-script@v7 with: script: | + const prNumber = '${{ steps.create-pr.outputs.result }}' || '${{ steps.fallback-pr.outputs.result }}'; + const prLink = prNumber ? `#${prNumber}` : 'Could not determine PR number'; + await github.rest.issues.createComment({ owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, body: `āœ… **Implementation Complete!** - I've successfully implemented the requested changes and created a pull request: +I've successfully implemented the requested changes and created a pull request: - šŸŽÆ **Pull Request**: #${{ steps.create-pr.outputs.result }} - šŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` - ā±ļø **Completed**: ${new Date().toISOString()} +šŸŽÆ **Pull Request**: ${prLink} +šŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` +ā±ļø **Completed**: ${new Date().toISOString()} +šŸ”§ **Triggered by**: @${{ github.event.comment.user.login }} - ## Next Steps - 1. Review the implementation in the pull request - 2. Test the changes locally if needed - 3. Merge the PR if everything looks good +## šŸ“‹ What Was Done +- āœ… Analyzed issue requirements +- āœ… Implemented requested features/fixes +- āœ… Followed project coding standards +- āœ… Created pull request for review +- āœ… Applied proper branch naming (\`claude/issue-${{ github.event.issue.number }}-*\`) - The implementation follows the project's coding standards and includes appropriate documentation.` +## šŸ” Next Steps +1. **Review** the implementation in the pull request +2. **Test** the changes locally if needed +3. **Check** that build/typecheck/lint passes +4. **Merge** the PR if everything looks good + +## šŸ› ļø Quality Checks +The implementation includes: +- TypeScript with proper typing +- ESM module structure with .js extensions +- Following existing code patterns +- Appropriate documentation updates + +**Ready for review!** šŸš€` }); - name: Update issue with no changes From a3108a0f49f5f4a010b267cec7283864d1f46777 Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 21:28:03 +0200 Subject: [PATCH 7/9] Bump package version to 0.1.6 --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index 5e5a152..aa0701f 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "@xtr-dev/payload-billing", - "version": "0.1.5", + "version": "0.1.6", "description": "PayloadCMS plugin for billing and payment provider integrations with tracking and local testing", "license": "MIT", "type": "module", From cabe6eda960d6c945c90247beac6b2ca18c2a303 Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 21:28:54 +0200 Subject: [PATCH 8/9] feat: add Claude PR Assistant workflow for direct PR improvements MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Create new workflow for PR comment-based Claude assistance - Support multiple commands: implement, fix, improve, update, refactor, help - Work directly on PR branches without creating new PRs - Include comprehensive permission checks (bvdaakster only) - Add detailed documentation and usage examples - Support quality checks: build, typecheck, lint, test - Include smart context awareness of PR changes Features: - Direct PR branch modification - Multiple trigger commands for different types of assistance - Comprehensive error handling and user feedback - Quality assurance with automated checks - Detailed commit messages with attribution Commands: - @claude implement - Add new functionality - @claude fix - Fix bugs or errors - @claude improve - Enhance existing code - @claude update - Update to requirements - @claude refactor - Restructure code - @claude help - General assistance šŸ¤– Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude --- .github/CLAUDE_PERMISSIONS.md | 212 -------------- .github/CLAUDE_PR_ASSISTANT.md | 235 ++++++++++++++++ .github/claude-config.json | 21 ++ .github/workflows/claude-pr-assistant.yml | 328 ++++++++++++++++++++++ 4 files changed, 584 insertions(+), 212 deletions(-) delete mode 100644 .github/CLAUDE_PERMISSIONS.md create mode 100644 .github/CLAUDE_PR_ASSISTANT.md create mode 100644 .github/workflows/claude-pr-assistant.yml diff --git a/.github/CLAUDE_PERMISSIONS.md b/.github/CLAUDE_PERMISSIONS.md deleted file mode 100644 index 0f0416f..0000000 --- a/.github/CLAUDE_PERMISSIONS.md +++ /dev/null @@ -1,212 +0,0 @@ -# Claude Workflow Permissions - -This document explains how to configure user permissions for Claude automation workflows. - -## Current Configuration - -### Issue Implementation Workflow -- **Strategy**: `adminOrPrivileged` - Repository admins OR privileged users -- **Privileged Users**: `bastiaan`, `xtr-dev-team` -- **Access Check**: Validates permissions before any Claude implementation - -### Code Review Workflow -- **Strategy**: `privilegedUsers` - Only users in privileged list -- **Applies to**: Pull request reviews -- **Scope**: PRs created by privileged users only - -## Permission Strategies - -### 1. Privileged Users Only -```javascript -const isAllowed = privilegedUsers.includes(username); -``` -- Most restrictive -- Only specific users can use Claude -- Best for sensitive repositories - -### 2. Admins Only -```javascript -const isAllowed = collaborator.permission === 'admin'; -``` -- Repository administrators only -- Automatic based on GitHub permissions -- Good for small teams - -### 3. Admin OR Privileged (Current) -```javascript -const isAllowed = hasAdminAccess || isPrivilegedUser; -``` -- Repository admins OR users in privileged list -- Flexible access control -- **Currently active strategy** - -### 4. Organization Members with Write Access -```javascript -const isAllowed = isOrgMember && hasWriteAccess; -``` -- Organization members with write/admin permissions -- Good for larger organizations - -### 5. Everyone with Access -```javascript -const isAllowed = hasWriteAccess; -``` -- Any collaborator with write access -- Least restrictive option - -## How to Change Permissions - -### Option A: Edit Privileged Users List -1. Open `.github/workflows/claude-implement-issue.yml` -2. Find the `privilegedUsers` array (line ~32) -3. Add or remove usernames: -```javascript -const privilegedUsers = [ - 'bastiaan', - 'xtr-dev-team', - 'new-user', // Add new users here - 'another-user' -]; -``` - -### Option B: Change Permission Strategy -1. Open `.github/workflows/claude-implement-issue.yml` -2. Find line ~77: `const isAllowed = allowedByAdminOrPrivileged;` -3. Replace with your preferred strategy: -```javascript -// Only privileged users -const isAllowed = allowedByUserList; - -// Only admins -const isAllowed = allowedByAdminAccess; - -// Admin + privileged users (current) -const isAllowed = allowedByAdminOrPrivileged; - -// Organization members with write access -const isAllowed = allowedByOrgAndWrite; -``` - -### Option C: Custom Logic -Add your own permission logic: -```javascript -// Example: Allow specific teams -const allowedTeams = ['core-team', 'senior-devs']; -const userTeams = await github.rest.teams.listForUser({ - org: context.repo.owner, - username: username -}); -const isInAllowedTeam = userTeams.data.some(team => - allowedTeams.includes(team.slug) -); - -const isAllowed = hasAdminAccess || isInAllowedTeam; -``` - -## Code Review Permissions - -The code review workflow uses a simpler approach with GitHub's built-in author associations: - -```yaml -if: | - contains(fromJSON('["bastiaan", "xtr-dev-team"]'), github.event.pull_request.user.login) || - github.event.pull_request.author_association == 'OWNER' || - github.event.pull_request.author_association == 'MEMBER' -``` - -### Author Associations: -- `OWNER` - Repository owner -- `MEMBER` - Organization member -- `COLLABORATOR` - Repository collaborator -- `CONTRIBUTOR` - Has contributed to the repository -- `FIRST_TIME_CONTRIBUTOR` - First-time contributor -- `NONE` - No association - -## Testing Permissions - -### Test Access for a User -1. Create a test issue -2. Have the user comment `@claude implement` -3. Check the workflow logs for permission results - -### Debug Permission Issues -1. Go to **Actions** tab -2. Click on the failed workflow run -3. Expand "Check user permissions" step -4. Review the permission details in logs - -## Error Messages - -### Access Denied -``` -āŒ Access Denied: Claude implementation is restricted to privileged users only. - -Your access level: write -Privileged user: No -Organization member: Yes - -Contact a repository administrator for access. -``` - -### Permission Details -The error message shows: -- Current repository permission level -- Whether user is in privileged list -- Organization membership status - -## Security Considerations - -### Best Practices -1. **Start Restrictive**: Begin with privileged users only -2. **Regular Audits**: Review privileged user list regularly -3. **Monitor Usage**: Check workflow logs for unexpected access attempts -4. **Team-based Access**: Consider using GitHub teams for larger organizations - -### Risks -- **Over-permissive**: Too many users can increase costs and misuse -- **Under-permissive**: Blocks legitimate development work -- **Stale Permissions**: Former team members with lingering access - -## Configuration Examples - -### Small Team (2-5 developers) -```javascript -const privilegedUsers = ['owner', 'lead-dev']; -const isAllowed = allowedByAdminOrPrivileged; -``` - -### Medium Team (5-15 developers) -```javascript -const privilegedUsers = ['owner', 'lead-dev', 'senior-dev1', 'senior-dev2']; -const isAllowed = allowedByAdminOrPrivileged; -``` - -### Large Organization -```javascript -// Use organization membership + write access -const isAllowed = allowedByOrgAndWrite; -``` - -### Open Source Project -```javascript -// Only maintainers -const privilegedUsers = ['maintainer1', 'maintainer2']; -const isAllowed = allowedByUserList; -``` - -## Troubleshooting - -### Common Issues -1. **User not in list**: Add username to `privilegedUsers` array -2. **Wrong permission level**: User needs write access minimum -3. **Organization issues**: Verify org membership if using org-based permissions -4. **Case sensitivity**: Usernames are case-sensitive - -### Quick Fixes -- **Add user**: Edit workflow file, add to privileged users -- **Temporary access**: Change strategy to `allowedByAdminAccess` temporarily -- **Emergency access**: Repository admins always have access with `adminOrPrivileged` strategy - ---- - -**Note**: Changes to workflow files require a commit to take effect. Test permissions after any modifications. \ No newline at end of file diff --git a/.github/CLAUDE_PR_ASSISTANT.md b/.github/CLAUDE_PR_ASSISTANT.md new file mode 100644 index 0000000..98dc675 --- /dev/null +++ b/.github/CLAUDE_PR_ASSISTANT.md @@ -0,0 +1,235 @@ +# Claude PR Assistant + +This workflow allows Claude to assist with Pull Requests by implementing improvements, fixes, and changes directly on the PR branch when mentioned in comments. + +## How to Use + +### 1. Comment on Any PR + +Use one of these trigger commands in a comment on any open pull request: + +- `@claude implement` - Implement new features or functionality +- `@claude fix` - Fix bugs or issues in the PR +- `@claude improve` - Improve existing code quality +- `@claude update` - Update code to match requirements +- `@claude refactor` - Refactor code for better structure +- `@claude help` - General assistance with the PR + +### 2. Example Usage + +``` +@claude fix + +Please fix the TypeScript errors in the payments collection and ensure proper typing for the provider data field. +``` + +``` +@claude improve + +Can you optimize the invoice generation logic and add better error handling? +``` + +``` +@claude implement + +Add validation for email addresses in the customer billing information fields. Make sure it follows the existing validation patterns. +``` + +## What Happens + +1. **Permission Check**: Verifies you are `bvdaakster` (only authorized user) +2. **PR Analysis**: Claude analyzes the current PR context and changes +3. **Implementation**: Makes the requested changes directly on the PR branch +4. **Quality Checks**: Runs build, typecheck, and lint +5. **Commit & Push**: Commits changes with descriptive messages +6. **Notification**: Updates the PR with completion status + +## Features + +### āœ… Direct PR Modification +- Works directly on the existing PR branch +- No new branches or PRs created +- Changes appear immediately in the PR + +### āœ… Smart Context Awareness +- Understands the current PR changes +- Analyzes existing code patterns +- Maintains consistency with the codebase + +### āœ… Comprehensive Request Handling +- Code improvements and refactoring +- Bug fixes within the PR +- Adding missing features +- Documentation updates +- Type error fixes +- Performance optimizations +- Test additions + +### āœ… Quality Assurance +- Follows TypeScript conventions +- Uses ESM module structure +- Runs automated quality checks +- Maintains coding standards + +## Command Reference + +| Command | Purpose | Example | +|---------|---------|---------| +| `@claude implement` | Add new functionality | "implement user authentication" | +| `@claude fix` | Fix bugs or errors | "fix the validation logic" | +| `@claude improve` | Enhance existing code | "improve performance of query" | +| `@claude update` | Update to requirements | "update to use new API format" | +| `@claude refactor` | Restructure code | "refactor into smaller functions" | +| `@claude help` | General assistance | "help with error handling" | + +## Examples + +### Bug Fix Request +``` +@claude fix + +There's a TypeScript error in `src/providers/stripe.ts` on line 45. The `amount` property is missing from the payment object. Please fix this and ensure proper typing. +``` + +### Feature Implementation +``` +@claude implement + +Add support for recurring payments in the Stripe provider. Follow the same pattern as the Mollie provider and include proper webhook handling. +``` + +### Code Improvement +``` +@claude improve + +The `validatePayment` function in utils.ts is getting complex. Please refactor it to be more readable and add proper error messages for each validation case. +``` + +### Documentation Update +``` +@claude update + +Update the JSDoc comments in the billing plugin configuration to include examples of how to use the new customer info extractor feature. +``` + +## Response Types + +### Success Response +``` +āœ… PR Assistance Complete! + +šŸ”§ Changes Made: +- āœ… Analyzed PR context and requirements +- āœ… Implemented requested improvements/fixes +- āœ… Followed project coding standards +- āœ… Updated the current PR branch + +Changes are ready for review! šŸš€ +``` + +### No Changes Response +``` +ā„¹ļø PR Assistance Complete - No Changes + +Analysis Result: The requested feature is already implemented + +šŸ’” Suggestions: +- Provide more detailed requirements +- Point to specific files or functions +``` + +### Error Response +``` +āŒ PR Assistance Failed + +šŸ”„ Try Again: +- Providing more specific instructions +- Breaking down complex requests +``` + +## Best Practices + +### Clear Instructions +- Be specific about what you want changed +- Reference specific files or functions when possible +- Provide context about the desired outcome + +### Examples of Good Requests +``` +@claude fix the TypeScript error in src/collections/payments.ts line 42 where the status field is missing from the Payment interface + +@claude implement email validation in the customer billing form using the same pattern as the phone validation + +@claude refactor the webhook handler in providers/mollie.ts to extract the payment processing logic into separate functions +``` + +### Examples of Unclear Requests +``` +@claude fix everything +@claude make it better +@claude help with this +``` + +## Limitations + +- **User Restriction**: Only `bvdaakster` can use this feature +- **PR Only**: Works on pull request comments, not issue comments +- **Open PRs**: Only works on open pull requests +- **Branch Access**: Requires write access to the PR branch + +## Technical Details + +### Workflow Triggers +- Event: `issue_comment` on pull requests +- Conditions: Comment contains Claude trigger words +- Permissions: User must be `bvdaakster` + +### Quality Checks +Claude automatically runs: +- `pnpm build` - Verify code compiles +- `pnpm typecheck` - Check TypeScript types +- `pnpm lint` - Ensure code style compliance +- `npm run test` - Run test suite (if available) + +### Commit Messages +Automatic commits include: +- Description of the request +- PR number and requester +- Claude attribution +- Proper co-authoring + +### Branch Strategy +- Works directly on the PR's head branch +- No additional branches created +- Changes pushed to existing PR +- Maintains PR history + +## Troubleshooting + +### Common Issues + +1. **Permission Denied** + - Only `bvdaakster` can use Claude PR assistance + - Verify you're commenting as the correct user + +2. **No Changes Made** + - Request might be unclear or already implemented + - Try providing more specific instructions + - Reference specific files or lines + +3. **Workflow Failed** + - Check the Actions tab for detailed logs + - Verify the PR branch is accessible + - Ensure request is actionable + +### Getting Help + +If Claude assistance isn't working: +1. Check the workflow logs in Actions tab +2. Verify your request is specific and actionable +3. Try breaking complex requests into smaller parts +4. Use different command triggers (@claude fix vs @claude implement) + +--- + +**Note**: This feature uses the official Anthropic Claude Code action for reliable, production-ready assistance. All changes should be reviewed before merging. \ No newline at end of file diff --git a/.github/claude-config.json b/.github/claude-config.json index 1297271..7bfe8e7 100644 --- a/.github/claude-config.json +++ b/.github/claude-config.json @@ -10,6 +10,27 @@ "codeReview": { "strategy": "privilegedUsers", "description": "Only bvdaakster can trigger Claude reviews" + }, + "prAssistant": { + "strategy": "privilegedUsers", + "description": "Only bvdaakster can use Claude PR assistance" + } + }, + "workflows": { + "issueImplementation": { + "file": "claude-implement-issue.yml", + "triggers": ["@claude implement", "@claude fix", "@claude create"], + "description": "Creates new branch and PR for issue implementation" + }, + "codeReview": { + "file": "claude-code-review.yml", + "triggers": ["automatic on PR"], + "description": "Automatic code review for PRs from privileged users" + }, + "prAssistant": { + "file": "claude-pr-assistant.yml", + "triggers": ["@claude implement", "@claude fix", "@claude improve", "@claude update", "@claude refactor", "@claude help"], + "description": "Assists with PR improvements directly on the PR branch" } }, "strategies": { diff --git a/.github/workflows/claude-pr-assistant.yml b/.github/workflows/claude-pr-assistant.yml new file mode 100644 index 0000000..b26703d --- /dev/null +++ b/.github/workflows/claude-pr-assistant.yml @@ -0,0 +1,328 @@ +name: Claude PR Assistant + +on: + issue_comment: + types: [created] + +permissions: + contents: write + issues: write + pull-requests: write + id-token: write + +jobs: + claude-pr-assist: + # Only run on PR comments (not issue comments) + if: | + github.event.issue.pull_request && + github.event.issue_comment.issue.state == 'open' && + ( + contains(github.event.comment.body, '@claude implement') || + contains(github.event.comment.body, '@claude fix') || + contains(github.event.comment.body, '@claude improve') || + contains(github.event.comment.body, '@claude update') || + contains(github.event.comment.body, '@claude refactor') || + contains(github.event.comment.body, '@claude help') + ) + runs-on: ubuntu-latest + + steps: + - name: Check user permissions + uses: actions/github-script@v7 + with: + script: | + const username = context.actor; + + // Only allow bvdaakster to use Claude PR assistance + const privilegedUsers = [ + 'bvdaakster' // Only this user can use Claude + ]; + + const isPrivilegedUser = privilegedUsers.includes(username); + + if (!isPrivilegedUser) { + const errorMessage = `āŒ **Access Denied**: Claude PR assistance is restricted to privileged users only. + + **User**: ${username} + **Privileged user**: No + + Contact a repository administrator for access.`; + + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: errorMessage + }); + throw new Error('Insufficient permissions for Claude PR assistance'); + } + + console.log(`āœ… Access granted to ${username}`); + + - name: Get PR details + id: pr-details + uses: actions/github-script@v7 + with: + script: | + const { data: pr } = await github.rest.pulls.get({ + owner: context.repo.owner, + repo: context.repo.repo, + pull_number: context.issue.number + }); + + return { + head_ref: pr.head.ref, + head_sha: pr.head.sha, + base_ref: pr.base.ref, + title: pr.title, + body: pr.body, + user: pr.user.login + }; + + - name: Checkout PR branch + uses: actions/checkout@v4 + with: + fetch-depth: 0 + ref: ${{ fromJson(steps.pr-details.outputs.result).head_ref }} + token: ${{ secrets.GITHUB_TOKEN }} + + - name: Set up Node.js + uses: actions/setup-node@v4 + with: + node-version: '22' + cache: 'npm' + + - name: Install pnpm + run: npm install -g pnpm@10.12.4 + + - name: Add comment with start notification + uses: actions/github-script@v7 + with: + script: | + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `šŸ¤– **Claude PR Assistant Started** + + I'm now working on your request in this pull request: + + šŸ“‹ **PR**: #${{ github.event.issue.number }} - ${{ fromJson(steps.pr-details.outputs.result).title }} + šŸŒæ **Branch**: \`${{ fromJson(steps.pr-details.outputs.result).head_ref }}\` + šŸ’¬ **Request**: + \`\`\` + ${{ github.event.comment.body }} + \`\`\` + ā±ļø **Started**: ${new Date().toISOString()} + + I'll analyze the current PR and implement your requested changes. This may take a few minutes... + + You can track the progress in the [Actions tab](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}).` + }); + + - name: Assist with Claude + id: assistance + uses: anthropics/claude-code-action@beta + with: + claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }} + + # Direct prompt with PR context + direct_prompt: | + You are assisting with a GitHub Pull Request. Please help with the following request: + + **Pull Request #${{ github.event.issue.number }}**: ${{ fromJson(steps.pr-details.outputs.result).title }} + + **PR Description**: + ${{ fromJson(steps.pr-details.outputs.result).body }} + + **User Request**: + ${{ github.event.comment.body }} + + **Context**: + - Repository: @xtr-dev/payload-billing (PayloadCMS plugin) + - Branch: ${{ fromJson(steps.pr-details.outputs.result).head_ref }} + - Base branch: ${{ fromJson(steps.pr-details.outputs.result).base_ref }} + - Requested by: @${{ github.event.comment.user.login }} + + **Instructions**: + 1. Analyze the current PR changes and the user's request + 2. Implement the requested improvements, fixes, or changes + 3. Follow existing code patterns and conventions + 4. Ensure TypeScript typing is correct + 5. Use ESM module structure with .js extensions + 6. Run quality checks (build, typecheck, lint) + 7. If the request is unclear, make reasonable assumptions based on context + + **Types of requests to handle**: + - Code improvements and refactoring + - Bug fixes within the PR + - Adding missing features or functionality + - Updating documentation + - Fixing type errors or lint issues + - Performance optimizations + - Adding tests + + Please implement the requested changes directly in the current branch. + + # Allow Claude to run necessary commands + allowed_tools: "Bash(pnpm build),Bash(pnpm typecheck),Bash(pnpm lint),Bash(npm run test)" + + - name: Check for changes + id: changes + run: | + # Check both staged and unstaged changes + if git diff --quiet && git diff --cached --quiet; then + echo "has_changes=false" >> $GITHUB_OUTPUT + echo "No changes were made during assistance" + else + echo "has_changes=true" >> $GITHUB_OUTPUT + echo "Changes detected, preparing commit" + + # Show what changed for debugging + echo "=== Changed files ===" + git diff --name-only + git diff --cached --name-only + echo "====================" + fi + + - name: Commit changes + if: steps.changes.outputs.has_changes == 'true' + run: | + git config --local user.email "action@github.com" + git config --local user.name "Claude PR Assistant" + + git add . + git commit -m "$(cat <<'EOF' + feat: Claude PR assistance - ${{ github.event.comment.user.login }} request + + Implemented requested changes via Claude PR Assistant. + + PR: #${{ github.event.issue.number }} + Request: ${{ github.event.comment.body }} + Requested by: @${{ github.event.comment.user.login }} + + šŸ¤– Generated with Claude PR Assistant + + Co-Authored-By: Claude + EOF + )" + + git push origin ${{ fromJson(steps.pr-details.outputs.result).head_ref }} + + - name: Update PR with success + if: steps.changes.outputs.has_changes == 'true' + uses: actions/github-script@v7 + with: + script: | + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `āœ… **PR Assistance Complete!** + +I've successfully implemented your requested changes: + +šŸ’¬ **Your Request**: +\`\`\` +${{ github.event.comment.body }} +\`\`\` + +šŸ”§ **Changes Made**: +- āœ… Analyzed PR context and requirements +- āœ… Implemented requested improvements/fixes +- āœ… Followed project coding standards +- āœ… Updated the current PR branch +- āœ… Committed changes with descriptive message + +šŸŒæ **Branch**: \`${{ fromJson(steps.pr-details.outputs.result).head_ref }}\` +ā±ļø **Completed**: ${new Date().toISOString()} + +## šŸ” What's Next +The changes have been pushed to this PR branch. You can: +1. **Review** the new changes in the Files Changed tab +2. **Test** the implementation locally +3. **Verify** the changes meet your requirements +4. **Request** additional changes if needed + +## šŸ› ļø Quality Assurance +The implementation includes: +- TypeScript with proper typing +- ESM module structure with .js extensions +- Following existing code patterns +- Quality checks passed (build/typecheck/lint) + +**Changes are ready for review!** šŸš€` + }); + + - name: Update PR with no changes + if: steps.changes.outputs.has_changes == 'false' + uses: actions/github-script@v7 + with: + script: | + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `ā„¹ļø **PR Assistance Complete - No Changes** + +I analyzed your request but determined that no code changes are needed: + +šŸ’¬ **Your Request**: +\`\`\` +${{ github.event.comment.body }} +\`\`\` + +## šŸ” Analysis Result +This might be because: +- The requested feature is already implemented +- The issue mentioned is already fixed +- The request requires clarification +- The change is not actionable as code modification + +šŸŒæ **Branch**: \`${{ fromJson(steps.pr-details.outputs.result).head_ref }}\` (unchanged) + +## šŸ’” Suggestions +If you need specific changes: +1. Provide more detailed requirements +2. Point to specific files or functions +3. Include code examples of desired changes +4. Try a different @claude command + +Feel free to comment again with more specific instructions!` + }); + + - name: Handle assistance failure + if: failure() + uses: actions/github-script@v7 + with: + script: | + await github.rest.issues.createComment({ + owner: context.repo.owner, + repo: context.repo.repo, + issue_number: context.issue.number, + body: `āŒ **PR Assistance Failed** + +I encountered an error while trying to assist with this PR. + +šŸ’¬ **Your Request**: +\`\`\` +${{ github.event.comment.body }} +\`\`\` + +## šŸ” Troubleshooting +Please check the [workflow logs](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}) for details. + +Common reasons for failure: +- Request is unclear or too complex +- Technical constraints prevent implementation +- Permission or configuration issues +- Conflicting changes in the PR + +## šŸ”„ Try Again +You can try again by: +- Providing more specific instructions +- Breaking down complex requests into smaller parts +- Commenting with a different @claude command + +**Available commands**: \`@claude implement\`, \`@claude fix\`, \`@claude improve\`, \`@claude update\`, \`@claude refactor\`, \`@claude help\`` + }); \ No newline at end of file From ec635fb707b843f4a1ab36b609efa6aa6e3ad81d Mon Sep 17 00:00:00 2001 From: Bas van den Aakster Date: Thu, 18 Sep 2025 21:32:12 +0200 Subject: [PATCH 9/9] fix: simplify Claude workflows with clean username checks MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Simplify all permission checks to single username validation - Remove complex permission logic for cleaner workflows - Streamline issue implementation workflow - Streamline PR assistant workflow - Keep only essential functionality - Fix YAML syntax issues - Validate all workflows successfully Changes: - Single username check: context.actor !== 'bvdaakster' - Simplified error messages - Clean YAML structure - Reduced complexity while maintaining functionality All workflows now use simple, reliable permission checks. šŸ¤– Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude --- .github/workflows/claude-code-review.yml | 14 +- .github/workflows/claude-implement-issue.yml | 331 +++---------------- .github/workflows/claude-pr-assistant.yml | 200 ++--------- 3 files changed, 71 insertions(+), 474 deletions(-) diff --git a/.github/workflows/claude-code-review.yml b/.github/workflows/claude-code-review.yml index b91e38c..441f16d 100644 --- a/.github/workflows/claude-code-review.yml +++ b/.github/workflows/claude-code-review.yml @@ -12,20 +12,8 @@ on: jobs: claude-review: - # Permission filter: Only allow bvdaakster to trigger reviews + # Only allow bvdaakster to trigger reviews if: github.event.pull_request.user.login == 'bvdaakster' - - # Alternative filters (comment out the above and use one of these): - # Only for external contributors: - # if: github.event.pull_request.author_association == 'FIRST_TIME_CONTRIBUTOR' - - # Only for specific users: - # if: contains(fromJSON('["username1", "username2"]'), github.event.pull_request.user.login) - - # Only for non-admins (let admins skip review): - # if: | - # github.event.pull_request.author_association != 'OWNER' && - # github.event.pull_request.author_association != 'MEMBER' runs-on: ubuntu-latest permissions: diff --git a/.github/workflows/claude-implement-issue.yml b/.github/workflows/claude-implement-issue.yml index 3c624f9..2f10f8e 100644 --- a/.github/workflows/claude-implement-issue.yml +++ b/.github/workflows/claude-implement-issue.yml @@ -26,75 +26,16 @@ jobs: uses: actions/github-script@v7 with: script: | - const username = context.actor; - - // Method 1: Specific privileged users list - const privilegedUsers = [ - 'bvdaakster' // Only this user can use Claude - ]; - - // Method 2: Check repository permission level - const { data: collaborator } = await github.rest.repos.getCollaboratorPermissionLevel({ - owner: context.repo.owner, - repo: context.repo.repo, - username: username - }); - - // Method 3: Check organization membership (if applicable) - let isOrgMember = false; - try { - await github.rest.orgs.getMembershipForUser({ - org: context.repo.owner, - username: username - }); - isOrgMember = true; - } catch (error) { - // User is not an org member or org doesn't exist - isOrgMember = false; - } - - // Combined permission check - const isPrivilegedUser = privilegedUsers.includes(username); - const hasAdminAccess = collaborator.permission === 'admin'; - const hasWriteAccess = ['admin', 'write'].includes(collaborator.permission); - - // Choose your permission strategy: - // Option A: Only specific users - const allowedByUserList = isPrivilegedUser; - - // Option B: Only admins - const allowedByAdminAccess = hasAdminAccess; - - // Option C: Admin + specific users - const allowedByAdminOrPrivileged = hasAdminAccess || isPrivilegedUser; - - // Option D: Organization members with write access - const allowedByOrgAndWrite = isOrgMember && hasWriteAccess; - - // Set your chosen strategy here: - const isAllowed = isPrivilegedUser; // Only bvdaakster can use Claude - - if (!isAllowed) { - const errorMessage = `āŒ **Access Denied**: Claude implementation is restricted to privileged users only. - - **Your access level**: ${collaborator.permission} - **Privileged user**: ${isPrivilegedUser ? 'Yes' : 'No'} - **Organization member**: ${isOrgMember ? 'Yes' : 'No'} - - Contact a repository administrator for access.`; - + if (context.actor !== 'bvdaakster') { await github.rest.issues.createComment({ owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: errorMessage + body: 'āŒ **Access Denied**: Only bvdaakster can use Claude implementation.' }); - throw new Error('Insufficient permissions for Claude implementation'); + throw new Error('Unauthorized user'); } - // Log successful access - console.log(`āœ… Access granted to ${username} (${collaborator.permission})`); - - name: Checkout repository uses: actions/checkout@v4 with: @@ -110,18 +51,15 @@ jobs: - name: Install pnpm run: npm install -g pnpm@10.12.4 - - name: Create Claude implementation branch + - name: Create branch id: create-branch run: | - # Create a unique branch name based on issue number and timestamp BRANCH_NAME="claude/issue-${{ github.event.issue.number }}-$(date +%Y%m%d-%H%M%S)" echo "branch_name=$BRANCH_NAME" >> $GITHUB_OUTPUT - - # Create and switch to the new branch git checkout -b "$BRANCH_NAME" git push origin "$BRANCH_NAME" - - name: Add comment with implementation start + - name: Notify start uses: actions/github-script@v7 with: script: | @@ -129,26 +67,13 @@ jobs: owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `šŸ¤– **Claude Implementation Started** - - I'm now working on implementing this issue. Here's what I'm doing: - - šŸ“‹ **Issue**: #${{ github.event.issue.number }} - ${{ github.event.issue.title }} - šŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` - ā±ļø **Started**: ${new Date().toISOString()} - - I'll analyze the requirements and create a pull request with the implementation. This may take a few minutes... - - You can track the progress in the [Actions tab](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}).` + body: `šŸ¤– **Claude Implementation Started**\n\nšŸ“‹ **Issue**: #${{ github.event.issue.number }}\nšŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\`\n\nImplementing your request...` }); - name: Implement with Claude - id: implementation uses: anthropics/claude-code-action@beta with: claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }} - - # Direct prompt with issue context direct_prompt: | Please implement the feature or fix described in this GitHub issue: @@ -157,232 +82,93 @@ jobs: **Issue Description**: ${{ github.event.issue.body }} - **Implementation Request**: + **User Request**: ${{ github.event.comment.body }} **Instructions**: 1. Analyze the issue requirements carefully - 2. Follow the existing code patterns and conventions in this PayloadCMS plugin - 3. Add appropriate tests if needed (check for existing test patterns) - 4. Update documentation if necessary - 5. Ensure the implementation is complete and working - 6. Use TypeScript with proper typing - 7. Follow the project's ESM module structure with .js extensions + 2. Follow existing code patterns and conventions + 3. Use TypeScript with proper typing + 4. Follow ESM module structure with .js extensions + 5. Add tests if needed + 6. Update documentation if necessary - The implementation should be production-ready and follow best practices for a PayloadCMS plugin. - - **Repository Context**: This is the @xtr-dev/payload-billing plugin for PayloadCMS. - **Branch**: ${{ steps.create-branch.outputs.branch_name }} - - # Allow Claude to run necessary commands + This is the @xtr-dev/payload-billing plugin for PayloadCMS. allowed_tools: "Bash(pnpm build),Bash(pnpm typecheck),Bash(pnpm lint),Bash(npm run test)" - name: Check for changes id: changes run: | - # Check both staged and unstaged changes if git diff --quiet && git diff --cached --quiet; then echo "has_changes=false" >> $GITHUB_OUTPUT - echo "No changes were made during implementation" else echo "has_changes=true" >> $GITHUB_OUTPUT - echo "Changes detected, preparing commit" - - # Show what changed for debugging - echo "=== Changed files ===" - git diff --name-only - git diff --cached --name-only - echo "====================" fi - - name: Commit changes + - name: Commit and push if: steps.changes.outputs.has_changes == 'true' run: | git config --local user.email "action@github.com" git config --local user.name "Claude Implementation Bot" - git add . - git commit -m "$(cat <<'EOF' - feat: implement issue #${{ github.event.issue.number }} - ${{ github.event.issue.title }} + git commit -m "feat: implement issue #${{ github.event.issue.number }} - Implemented via Claude automation based on issue requirements. + Implemented via Claude automation. Issue: #${{ github.event.issue.number }} Requested by: @${{ github.event.comment.user.login }} - šŸ¤– Generated with Claude Automation - - Co-Authored-By: Claude - EOF - )" + šŸ¤– Generated with Claude Code + Co-Authored-By: Claude " git push origin ${{ steps.create-branch.outputs.branch_name }} - - name: Create Pull Request + - name: Create PR if: steps.changes.outputs.has_changes == 'true' uses: actions/github-script@v7 id: create-pr with: script: | - try { - // Get the list of changed files for the PR description - const { data: comparison } = await github.rest.repos.compareCommits({ - owner: context.repo.owner, - repo: context.repo.repo, - base: 'dev', - head: '${{ steps.create-branch.outputs.branch_name }}' - }); + const { data: pr } = await github.rest.pulls.create({ + owner: context.repo.owner, + repo: context.repo.repo, + title: `šŸ¤– Implement: ${{ github.event.issue.title }}`, + head: '${{ steps.create-branch.outputs.branch_name }}', + base: 'dev', + body: `## šŸ¤– Claude Implementation - const changedFiles = comparison.files || []; - const filesList = changedFiles.map(file => `- \`${file.filename}\``).join('\n'); + This PR implements issue #${{ github.event.issue.number }}. - const { data: pr } = await github.rest.pulls.create({ - owner: context.repo.owner, - repo: context.repo.repo, - title: `šŸ¤– Implement: ${{ github.event.issue.title }}`, - head: '${{ steps.create-branch.outputs.branch_name }}', - base: 'dev', - body: `## šŸ¤– Claude Implementation + **Issue**: #${{ github.event.issue.number }} + **Requested by**: @${{ github.event.comment.user.login }} + **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` -This PR was automatically created by Claude to implement the feature/fix requested in issue #${{ github.event.issue.number }}. + ### Review Checklist + - [ ] Code follows project conventions + - [ ] Build passes + - [ ] Tests pass + - [ ] Implementation matches requirements -### šŸ“‹ Issue Details -- **Issue**: #${{ github.event.issue.number }} -- **Title**: ${{ github.event.issue.title }} -- **Requested by**: @${{ github.event.comment.user.login }} -- **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` -- **Implementation Date**: ${new Date().toISOString()} + Closes #${{ github.event.issue.number }} -### šŸ“ Files Changed -${filesList || 'No files were changed'} + šŸ¤– Generated with Claude Code` + }); + return pr.number; -### šŸ” Implementation -Claude analyzed the issue requirements and implemented the requested changes following the project's coding standards and best practices. - -### āœ… Review Checklist -- [ ] Code follows project conventions -- [ ] Tests are included (if applicable) -- [ ] Documentation is updated (if needed) -- [ ] Implementation matches issue requirements -- [ ] No breaking changes (unless intended) -- [ ] Build passes (\`pnpm build\`) -- [ ] Type checking passes (\`pnpm typecheck\`) -- [ ] Linting passes (\`pnpm lint\`) - -### šŸ”— Related -Closes #${{ github.event.issue.number }} - -### šŸš€ Deployment -After merging this PR: -1. Version will be automatically bumped -2. Package will be built and published -3. Changes will be available in the next release - ---- - -**Note**: This implementation was generated automatically by Claude. Please review carefully before merging. - -šŸ¤– *Generated with [Claude Code](https://claude.ai/code)* -šŸ”§ *Triggered by @${{ github.event.comment.user.login }}*` - }); - - console.log(`āœ… PR created successfully: #${pr.number}`); - return pr.number; - } catch (error) { - console.error('Failed to create PR:', error); - throw error; - } - - - name: Fallback PR Creation - if: steps.changes.outputs.has_changes == 'true' && failure() && steps.create-pr.conclusion == 'failure' - uses: actions/github-script@v7 - id: fallback-pr - with: - script: | - console.log('Primary PR creation failed, attempting fallback...'); - try { - const { data: pr } = await github.rest.pulls.create({ - owner: context.repo.owner, - repo: context.repo.repo, - title: `šŸ¤– Implement: ${{ github.event.issue.title }}`, - head: '${{ steps.create-branch.outputs.branch_name }}', - base: 'dev', - body: `## šŸ¤– Claude Implementation (Fallback) - -This PR was automatically created by Claude to implement issue #${{ github.event.issue.number }}. - -**Issue**: #${{ github.event.issue.number }} - ${{ github.event.issue.title }} -**Requested by**: @${{ github.event.comment.user.login }} -**Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` - -āš ļø *This PR was created via fallback method due to an error in the primary creation process.* - -### šŸ” Implementation -Claude has implemented the requested changes. Please review the code changes in this PR. - -### āœ… Review Required -- [ ] Verify implementation meets issue requirements -- [ ] Check code quality and conventions -- [ ] Test the changes -- [ ] Ensure no breaking changes - -Closes #${{ github.event.issue.number }} - -šŸ¤– *Generated with Claude Automation*` - }); - - console.log(`āœ… Fallback PR created successfully: #${pr.number}`); - return pr.number; - } catch (error) { - console.error('Fallback PR creation also failed:', error); - return null; - } - - - name: Update issue with success + - name: Notify success if: steps.changes.outputs.has_changes == 'true' uses: actions/github-script@v7 with: script: | - const prNumber = '${{ steps.create-pr.outputs.result }}' || '${{ steps.fallback-pr.outputs.result }}'; - const prLink = prNumber ? `#${prNumber}` : 'Could not determine PR number'; - + const prNumber = '${{ steps.create-pr.outputs.result }}'; await github.rest.issues.createComment({ owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `āœ… **Implementation Complete!** - -I've successfully implemented the requested changes and created a pull request: - -šŸŽÆ **Pull Request**: ${prLink} -šŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` -ā±ļø **Completed**: ${new Date().toISOString()} -šŸ”§ **Triggered by**: @${{ github.event.comment.user.login }} - -## šŸ“‹ What Was Done -- āœ… Analyzed issue requirements -- āœ… Implemented requested features/fixes -- āœ… Followed project coding standards -- āœ… Created pull request for review -- āœ… Applied proper branch naming (\`claude/issue-${{ github.event.issue.number }}-*\`) - -## šŸ” Next Steps -1. **Review** the implementation in the pull request -2. **Test** the changes locally if needed -3. **Check** that build/typecheck/lint passes -4. **Merge** the PR if everything looks good - -## šŸ› ļø Quality Checks -The implementation includes: -- TypeScript with proper typing -- ESM module structure with .js extensions -- Following existing code patterns -- Appropriate documentation updates - -**Ready for review!** šŸš€` + body: `āœ… **Implementation Complete!**\n\nšŸŽÆ **Pull Request**: #${prNumber}\nšŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\`\n\nReady for review! šŸš€` }); - - name: Update issue with no changes + - name: Handle no changes if: steps.changes.outputs.has_changes == 'false' uses: actions/github-script@v7 with: @@ -391,26 +177,14 @@ The implementation includes: owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `āš ļø **Implementation Completed - No Changes** - - I analyzed the issue but determined that no code changes are needed. This might be because: - - - The feature is already implemented - - The issue requires clarification - - The request is not actionable as a code change - - Additional information is needed - - šŸŒæ **Branch**: \`${{ steps.create-branch.outputs.branch_name }}\` (will be cleaned up) - - Please review the issue requirements and provide additional details if needed.` + body: `ā„¹ļø **No Changes Needed**\n\nI analyzed the issue but no code changes are required.` }); - - name: Clean up branch if no changes + - name: Clean up on no changes if: steps.changes.outputs.has_changes == 'false' - run: | - git push origin --delete ${{ steps.create-branch.outputs.branch_name }} || true + run: git push origin --delete ${{ steps.create-branch.outputs.branch_name }} || true - - name: Handle implementation failure + - name: Handle failure if: failure() uses: actions/github-script@v7 with: @@ -419,14 +193,5 @@ The implementation includes: owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `āŒ **Implementation Failed** - - I encountered an error while trying to implement this issue. Please check the [workflow logs](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}) for details. - - Common reasons for failure: - - Issue requirements are unclear or incomplete - - Technical constraints prevent implementation - - Repository permissions or configuration issues - - You can try again by commenting \`@claude implement\` or provide more specific requirements.` + body: `āŒ **Implementation Failed**\n\nCheck the [workflow logs](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}) for details.` }); \ No newline at end of file diff --git a/.github/workflows/claude-pr-assistant.yml b/.github/workflows/claude-pr-assistant.yml index b26703d..7441a9d 100644 --- a/.github/workflows/claude-pr-assistant.yml +++ b/.github/workflows/claude-pr-assistant.yml @@ -12,7 +12,6 @@ permissions: jobs: claude-pr-assist: - # Only run on PR comments (not issue comments) if: | github.event.issue.pull_request && github.event.issue_comment.issue.state == 'open' && @@ -31,34 +30,16 @@ jobs: uses: actions/github-script@v7 with: script: | - const username = context.actor; - - // Only allow bvdaakster to use Claude PR assistance - const privilegedUsers = [ - 'bvdaakster' // Only this user can use Claude - ]; - - const isPrivilegedUser = privilegedUsers.includes(username); - - if (!isPrivilegedUser) { - const errorMessage = `āŒ **Access Denied**: Claude PR assistance is restricted to privileged users only. - - **User**: ${username} - **Privileged user**: No - - Contact a repository administrator for access.`; - + if (context.actor !== 'bvdaakster') { await github.rest.issues.createComment({ owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: errorMessage + body: 'āŒ **Access Denied**: Only bvdaakster can use Claude PR assistance.' }); - throw new Error('Insufficient permissions for Claude PR assistance'); + throw new Error('Unauthorized user'); } - console.log(`āœ… Access granted to ${username}`); - - name: Get PR details id: pr-details uses: actions/github-script@v7 @@ -69,14 +50,10 @@ jobs: repo: context.repo.repo, pull_number: context.issue.number }); - return { head_ref: pr.head.ref, - head_sha: pr.head.sha, - base_ref: pr.base.ref, title: pr.title, - body: pr.body, - user: pr.user.login + body: pr.body }; - name: Checkout PR branch @@ -95,7 +72,7 @@ jobs: - name: Install pnpm run: npm install -g pnpm@10.12.4 - - name: Add comment with start notification + - name: Notify start uses: actions/github-script@v7 with: script: | @@ -103,32 +80,15 @@ jobs: owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `šŸ¤– **Claude PR Assistant Started** - - I'm now working on your request in this pull request: - - šŸ“‹ **PR**: #${{ github.event.issue.number }} - ${{ fromJson(steps.pr-details.outputs.result).title }} - šŸŒæ **Branch**: \`${{ fromJson(steps.pr-details.outputs.result).head_ref }}\` - šŸ’¬ **Request**: - \`\`\` - ${{ github.event.comment.body }} - \`\`\` - ā±ļø **Started**: ${new Date().toISOString()} - - I'll analyze the current PR and implement your requested changes. This may take a few minutes... - - You can track the progress in the [Actions tab](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}).` + body: `šŸ¤– **Claude PR Assistant Started**\n\nšŸ’¬ **Request**: ${{ github.event.comment.body }}\nšŸŒæ **Branch**: \`${{ fromJson(steps.pr-details.outputs.result).head_ref }}\`\n\nWorking on your request...` }); - name: Assist with Claude - id: assistance uses: anthropics/claude-code-action@beta with: claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }} - - # Direct prompt with PR context direct_prompt: | - You are assisting with a GitHub Pull Request. Please help with the following request: + You are assisting with a GitHub Pull Request. Please help with this request: **Pull Request #${{ github.event.issue.number }}**: ${{ fromJson(steps.pr-details.outputs.result).title }} @@ -138,78 +98,44 @@ jobs: **User Request**: ${{ github.event.comment.body }} - **Context**: - - Repository: @xtr-dev/payload-billing (PayloadCMS plugin) - - Branch: ${{ fromJson(steps.pr-details.outputs.result).head_ref }} - - Base branch: ${{ fromJson(steps.pr-details.outputs.result).base_ref }} - - Requested by: @${{ github.event.comment.user.login }} - **Instructions**: 1. Analyze the current PR changes and the user's request 2. Implement the requested improvements, fixes, or changes 3. Follow existing code patterns and conventions - 4. Ensure TypeScript typing is correct - 5. Use ESM module structure with .js extensions - 6. Run quality checks (build, typecheck, lint) - 7. If the request is unclear, make reasonable assumptions based on context + 4. Use TypeScript with proper typing + 5. Follow ESM module structure with .js extensions + 6. Run quality checks if needed - **Types of requests to handle**: - - Code improvements and refactoring - - Bug fixes within the PR - - Adding missing features or functionality - - Updating documentation - - Fixing type errors or lint issues - - Performance optimizations - - Adding tests - - Please implement the requested changes directly in the current branch. - - # Allow Claude to run necessary commands + This is the @xtr-dev/payload-billing plugin for PayloadCMS. + Please implement the requested changes directly on this PR branch. allowed_tools: "Bash(pnpm build),Bash(pnpm typecheck),Bash(pnpm lint),Bash(npm run test)" - name: Check for changes id: changes run: | - # Check both staged and unstaged changes if git diff --quiet && git diff --cached --quiet; then echo "has_changes=false" >> $GITHUB_OUTPUT - echo "No changes were made during assistance" else echo "has_changes=true" >> $GITHUB_OUTPUT - echo "Changes detected, preparing commit" - - # Show what changed for debugging - echo "=== Changed files ===" - git diff --name-only - git diff --cached --name-only - echo "====================" fi - - name: Commit changes + - name: Commit and push if: steps.changes.outputs.has_changes == 'true' run: | git config --local user.email "action@github.com" git config --local user.name "Claude PR Assistant" - git add . - git commit -m "$(cat <<'EOF' - feat: Claude PR assistance - ${{ github.event.comment.user.login }} request + git commit -m "feat: Claude PR assistance - ${{ github.event.comment.user.login }} request - Implemented requested changes via Claude PR Assistant. - - PR: #${{ github.event.issue.number }} Request: ${{ github.event.comment.body }} - Requested by: @${{ github.event.comment.user.login }} + PR: #${{ github.event.issue.number }} šŸ¤– Generated with Claude PR Assistant - Co-Authored-By: Claude - EOF - )" - + Co-Authored-By: Claude " git push origin ${{ fromJson(steps.pr-details.outputs.result).head_ref }} - - name: Update PR with success + - name: Notify success if: steps.changes.outputs.has_changes == 'true' uses: actions/github-script@v7 with: @@ -218,43 +144,10 @@ jobs: owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `āœ… **PR Assistance Complete!** - -I've successfully implemented your requested changes: - -šŸ’¬ **Your Request**: -\`\`\` -${{ github.event.comment.body }} -\`\`\` - -šŸ”§ **Changes Made**: -- āœ… Analyzed PR context and requirements -- āœ… Implemented requested improvements/fixes -- āœ… Followed project coding standards -- āœ… Updated the current PR branch -- āœ… Committed changes with descriptive message - -šŸŒæ **Branch**: \`${{ fromJson(steps.pr-details.outputs.result).head_ref }}\` -ā±ļø **Completed**: ${new Date().toISOString()} - -## šŸ” What's Next -The changes have been pushed to this PR branch. You can: -1. **Review** the new changes in the Files Changed tab -2. **Test** the implementation locally -3. **Verify** the changes meet your requirements -4. **Request** additional changes if needed - -## šŸ› ļø Quality Assurance -The implementation includes: -- TypeScript with proper typing -- ESM module structure with .js extensions -- Following existing code patterns -- Quality checks passed (build/typecheck/lint) - -**Changes are ready for review!** šŸš€` + body: `āœ… **PR Assistance Complete!**\n\nšŸ”§ **Changes Made**: Implemented your requested improvements\nšŸŒæ **Branch**: \`${{ fromJson(steps.pr-details.outputs.result).head_ref }}\`\n\nChanges are ready for review! šŸš€` }); - - name: Update PR with no changes + - name: Handle no changes if: steps.changes.outputs.has_changes == 'false' uses: actions/github-script@v7 with: @@ -263,35 +156,10 @@ The implementation includes: owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `ā„¹ļø **PR Assistance Complete - No Changes** - -I analyzed your request but determined that no code changes are needed: - -šŸ’¬ **Your Request**: -\`\`\` -${{ github.event.comment.body }} -\`\`\` - -## šŸ” Analysis Result -This might be because: -- The requested feature is already implemented -- The issue mentioned is already fixed -- The request requires clarification -- The change is not actionable as code modification - -šŸŒæ **Branch**: \`${{ fromJson(steps.pr-details.outputs.result).head_ref }}\` (unchanged) - -## šŸ’” Suggestions -If you need specific changes: -1. Provide more detailed requirements -2. Point to specific files or functions -3. Include code examples of desired changes -4. Try a different @claude command - -Feel free to comment again with more specific instructions!` + body: `ā„¹ļø **No Changes Needed**\n\nI analyzed your request but no code changes are required.` }); - - name: Handle assistance failure + - name: Handle failure if: failure() uses: actions/github-script@v7 with: @@ -300,29 +168,5 @@ Feel free to comment again with more specific instructions!` owner: context.repo.owner, repo: context.repo.repo, issue_number: context.issue.number, - body: `āŒ **PR Assistance Failed** - -I encountered an error while trying to assist with this PR. - -šŸ’¬ **Your Request**: -\`\`\` -${{ github.event.comment.body }} -\`\`\` - -## šŸ” Troubleshooting -Please check the [workflow logs](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}) for details. - -Common reasons for failure: -- Request is unclear or too complex -- Technical constraints prevent implementation -- Permission or configuration issues -- Conflicting changes in the PR - -## šŸ”„ Try Again -You can try again by: -- Providing more specific instructions -- Breaking down complex requests into smaller parts -- Commenting with a different @claude command - -**Available commands**: \`@claude implement\`, \`@claude fix\`, \`@claude improve\`, \`@claude update\`, \`@claude refactor\`, \`@claude help\`` + body: `āŒ **PR Assistance Failed**\n\nCheck the [workflow logs](https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}) for details.` }); \ No newline at end of file