grant more tools in workflow

chore: update claude-code-base-action to v0.0.7 (#84 )
bump base action to 0.0.6 (#79 )
2026-01-23 15:04:13 +08:00 · 2025-05-28 21:10:22 -07:00 · 2025-05-28 17:20:23 -07:00 · 2025-05-28 13:19:10 -07:00 · 2025-05-28 10:20:00 -07:00
5 changed files with 6 additions and 69 deletions
--- a/.github/workflows/claude.yml
+++ b/.github/workflows/claude.yml
@@ -34,3 +34,5 @@ jobs:
        uses: anthropics/claude-code-action@beta
        with:
          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+          allowed_tools: "Bash(bun install),Bash(bun test:*),Bash(bun run format),Bash(bun typecheck)"
+          custom_instructions: "You have also been granted tools for editing files and running bun commands (install, run, test, typecheck) for testing your changes: bun install, bun test, bun run format, bun typecheck."
--- a/README.md
+++ b/README.md
@@ -446,7 +446,7 @@ anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
 ```

 This applies to all sensitive values including API keys, access tokens, and credentials.
-We also reccomend that you always use short-lived tokens when possible
+We also recommend that you always use short-lived tokens when possible

 ## License

--- a/action.yml
+++ b/action.yml
@@ -94,7 +94,7 @@ runs:
    - name: Run Claude Code
      id: claude-code
      if: steps.prepare.outputs.contains_trigger == 'true'
-      uses: anthropics/claude-code-base-action@5097b6cdfe5fc5a3ac0166cc344c34ed23c93982 # https://github.com/anthropics/claude-code-base-action/releases/tag/v0.0.5
+      uses: anthropics/claude-code-base-action@78eef48a8f466f7a800a2315134506d4c7ad9163 # v0.0.7
      with:
        prompt_file: /tmp/claude-prompts/claude-prompt.txt
        allowed_tools: ${{ env.ALLOWED_TOOLS }}
--- a/src/create-prompt/index.ts
+++ b/src/create-prompt/index.ts
@@ -58,27 +58,10 @@ export function buildAllowedToolsString(

 export function buildDisallowedToolsString(
  customDisallowedTools?: string,
-  allowedTools?: string,
 ): string {
-  let disallowedTools = [...DISALLOWED_TOOLS];
-
-  // If user has explicitly allowed some hardcoded disallowed tools, remove them from disallowed list
-  if (allowedTools) {
-    const allowedToolsArray = allowedTools
-      .split(",")
-      .map((tool) => tool.trim());
-    disallowedTools = disallowedTools.filter(
-      (tool) => !allowedToolsArray.includes(tool),
-    );
-  }
-
-  let allDisallowedTools = disallowedTools.join(",");
+  let allDisallowedTools = DISALLOWED_TOOLS.join(",");
  if (customDisallowedTools) {
-    if (allDisallowedTools) {
-      allDisallowedTools = `${allDisallowedTools},${customDisallowedTools}`;
-    } else {
-      allDisallowedTools = customDisallowedTools;
-    }
+    allDisallowedTools = `${allDisallowedTools},${customDisallowedTools}`;
  }
  return allDisallowedTools;
 }
@@ -665,7 +648,6 @@ export async function createPrompt(
    );
    const allDisallowedTools = buildDisallowedToolsString(
      preparedContext.disallowedTools,
-      preparedContext.allowedTools,
    );

    core.exportVariable("ALLOWED_TOOLS", allAllowedTools);
--- a/test/create-prompt.test.ts
+++ b/test/create-prompt.test.ts
@@ -722,51 +722,4 @@ describe("buildDisallowedToolsString", () => {
    expect(parts).toContain("BadTool1");
    expect(parts).toContain("BadTool2");
  });
-
-  test("should remove hardcoded disallowed tools if they are in allowed tools", () => {
-    const customDisallowedTools = "BadTool1,BadTool2";
-    const allowedTools = "WebSearch,SomeOtherTool";
-    const result = buildDisallowedToolsString(
-      customDisallowedTools,
-      allowedTools,
-    );
-
-    // WebSearch should be removed from disallowed since it's in allowed
-    expect(result).not.toContain("WebSearch");
-
-    // WebFetch should still be disallowed since it's not in allowed
-    expect(result).toContain("WebFetch");
-
-    // Custom disallowed tools should still be present
-    expect(result).toContain("BadTool1");
-    expect(result).toContain("BadTool2");
-  });
-
-  test("should remove all hardcoded disallowed tools if they are all in allowed tools", () => {
-    const allowedTools = "WebSearch,WebFetch,SomeOtherTool";
-    const result = buildDisallowedToolsString(undefined, allowedTools);
-
-    // Both hardcoded disallowed tools should be removed
-    expect(result).not.toContain("WebSearch");
-    expect(result).not.toContain("WebFetch");
-
-    // Result should be empty since no custom disallowed tools provided
-    expect(result).toBe("");
-  });
-
-  test("should handle custom disallowed tools when all hardcoded tools are overridden", () => {
-    const customDisallowedTools = "BadTool1,BadTool2";
-    const allowedTools = "WebSearch,WebFetch";
-    const result = buildDisallowedToolsString(
-      customDisallowedTools,
-      allowedTools,
-    );
-
-    // Hardcoded tools should be removed
-    expect(result).not.toContain("WebSearch");
-    expect(result).not.toContain("WebFetch");
-
-    // Only custom disallowed tools should remain
-    expect(result).toBe("BadTool1,BadTool2");
-  });
 });
Author	SHA1	Message	Date
Ashwin Bhat	40d8f2f444	grant more tools in workflow	2025-05-28 21:10:22 -07:00
Ashwin Bhat	9c9859aff1	chore: update claude-code-base-action to v0.0.7 (#84 )	2025-05-28 17:20:23 -07:00
Ashwin Bhat	176dbc369d	bump base action to 0.0.6 (#79 )	2025-05-28 13:19:10 -07:00
Erjan K	8ae72a97c6	Fix readme typo (#58 )	2025-05-28 10:20:00 -07:00