From e09345adba8e09786355e3429b08d589276176cc Mon Sep 17 00:00:00 2001 From: km-anthropic Date: Wed, 30 Jul 2025 17:33:37 -0700 Subject: [PATCH] fix: add explicit review tool names and additional workflow permissions - Add explicit tool names in case wildcards aren't working properly - Add statuses and checks write permissions to workflow - Include both github and github_comment MCP server tools --- .github/workflows/claude-review-mode.yml | 2 ++ src/modes/review/index.ts | 12 +++++++++++- 2 files changed, 13 insertions(+), 1 deletion(-) diff --git a/.github/workflows/claude-review-mode.yml b/.github/workflows/claude-review-mode.yml index 6ee9c5a..986dd1b 100644 --- a/.github/workflows/claude-review-mode.yml +++ b/.github/workflows/claude-review-mode.yml @@ -19,6 +19,8 @@ jobs: contents: read pull-requests: write issues: write + statuses: write # May be needed for some review operations + checks: write # May be needed for review checks # Note: id-token not needed since review mode doesn't use OIDC for GitHub auth steps: - name: Checkout repository diff --git a/src/modes/review/index.ts b/src/modes/review/index.ts index 0bf3b76..c62de89 100644 --- a/src/modes/review/index.ts +++ b/src/modes/review/index.ts @@ -47,7 +47,17 @@ export const reviewMode: Mode = { }, getAllowedTools() { - return ["mcp__github__*"]; + return [ + "mcp__github__*", + "mcp__github_comment__*", + // Explicitly list review tools in case wildcards aren't working + "mcp__github__create_pending_pull_request_review", + "mcp__github__add_comment_to_pending_review", + "mcp__github__submit_pending_pull_request_review", + "mcp__github__get_pull_request", + "mcp__github__get_pull_request_diff", + "mcp__github__get_pull_request_files" + ]; }, getDisallowedTools() {