anthropics/claude-code-action
1
0
Fork 0
mirror of https://github.com/anthropics/claude-code-action.git synced 2026-01-27 01:52:24 +08:00
Code Issues Packages Projects Releases Wiki Activity

feat: send additional_permissions in token exchange request (#859)

Browse Source 
* feat: send additional_permissions in token exchange request

Parse the ADDITIONAL_PERMISSIONS env var and send it as a JSON body
in the OIDC token exchange request. Permissions are merged on top of
the standard defaults (contents: write, pull_requests: write,
issues: write).

* docs: list specific available additional permissions
This commit is contained in:
Ashwin Bhat
2026-01-26 09:02:20 -08:00
committed by GitHub
parent f64219702d
commit 0c704179b5
3 changed files with 159 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
docs/configuration.md
View File

@@ -172,9 +172,14 @@ jobs:
**Important Notes**:
- The GitHub token must have the `actions: read` permission in your workflow
- The GitHub token must have the corresponding permission in your workflow
- If the permission is missing, Claude will warn you and suggest adding it
- Currently, only `actions: read` is supported, but the format allows for future extensions
- The following additional permissions can be requested beyond the defaults:
- `actions: read`
- `checks: read`
- `discussions: read` or `discussions: write`
- `workflows: read` or `workflows: write`
- Standard permissions (`contents: write`, `pull_requests: write`, `issues: write`) are always included and do not need to be specified
## Custom Environment Variables