remove .DS_Store

Pin GitHub Action dependencies to commit SHAs for security (#66 )
Pin oven-sh/setup-bun and anthropics/claude-code-base-action to specific commit SHAs instead of version tags to ensure reproducible builds and improve supply chain security. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-authored-by: Claude <noreply@anthropic.com>
2026-01-23 23:14:13 +08:00 · 2025-05-27 13:19:09 -07:00 · 2025-05-27 10:14:11 -07:00 · 2025-05-25 18:43:54 -07:00 · 2025-05-23 12:30:01 -07:00 · 2025-05-22 21:51:16 -07:00
7 changed files with 26 additions and 23 deletions
--- a/.DS_Store
+++ b/.DS_Store
--- a/.github/workflows/claude.yml
+++ b/.github/workflows/claude.yml
@@ -1,4 +1,4 @@
-name: Claude
+name: Claude Code

 on:
  issue_comment:
@@ -11,12 +11,12 @@ on:
    types: [submitted]

 jobs:
-  claude-pr:
+  claude:
    if: |
      (github.event_name == 'issue_comment' && contains(github.event.comment.body, '@claude')) ||
      (github.event_name == 'pull_request_review_comment' && contains(github.event.comment.body, '@claude')) ||
      (github.event_name == 'pull_request_review' && contains(github.event.review.body, '@claude')) ||
-      (github.event_name == 'issues' && contains(github.event.issue.body, '@claude'))
+      (github.event_name == 'issues' && (contains(github.event.issue.body, '@claude') || contains(github.event.issue.title, '@claude')))
    runs-on: ubuntu-latest
    permissions:
      contents: read
@@ -29,10 +29,8 @@ jobs:
        with:
          fetch-depth: 1

-      - name: Run Claude PR Agent
-        uses: anthropics/claude-code-action@main
+      - name: Run Claude Code
+        id: claude
+        uses: anthropics/claude-code-action@beta
        with:
-          timeout_minutes: "60"
          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
-          allowed_tools: "Bash(bun install),Bash(bun test:*),Bash(bun run format),Bash(bun typecheck)"
-          custom_instructions: "You have also been granted tools for editing files and running bun commands (install, run, test) for testing your changes."
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,4 @@
+.DS_Store
 node_modules

 **/.claude/settings.local.json
--- a/README.md
+++ b/README.md
@@ -1,3 +1,5 @@
+![Claude Code Action responding to a comment](https://github.com/user-attachments/assets/1d60c2e9-82ed-4ee5-b749-f9e021c85f4d)
+
 # Claude Code Action

 A general-purpose [Claude Code](https://claude.ai/code) action for GitHub PRs and issues that can answer questions and implement code changes. This action listens for a trigger phrase in comments and activates Claude act on the request. It supports multiple authentication methods including Anthropic direct API, Amazon Bedrock, and Google Vertex AI.
--- a/action.yml
+++ b/action.yml
@@ -67,7 +67,7 @@ runs:
  using: "composite"
  steps:
    - name: Install Bun
-      uses: oven-sh/setup-bun@v2
+      uses: oven-sh/setup-bun@735343b667d3e6f658f44d0eca948eb6282f2b76 # https://github.com/oven-sh/setup-bun/releases/tag/v2.0.2
      with:
        bun-version: 1.2.11

@@ -94,7 +94,7 @@ runs:
    - name: Run Claude Code
      id: claude-code
      if: steps.prepare.outputs.contains_trigger == 'true'
-      uses: anthropics/claude-code-base-action@beta
+      uses: anthropics/claude-code-base-action@5097b6cdfe5fc5a3ac0166cc344c34ed23c93982 # https://github.com/anthropics/claude-code-base-action/releases/tag/v0.0.5
      with:
        prompt_file: /tmp/claude-prompts/claude-prompt.txt
        allowed_tools: ${{ env.ALLOWED_TOOLS }}
--- a/src/.DS_Store
+++ b/src/.DS_Store
--- a/src/github/token.ts
+++ b/src/github/token.ts
@@ -39,25 +39,19 @@ async function retryWithBackoff<T>(
    }
  }

-  throw new Error(
-    `Operation failed after ${maxAttempts} attempts. Last error: ${
-      lastError?.message ?? "Unknown error"
-    }`,
-  );
+  console.error(`Operation failed after ${maxAttempts} attempts`);
+  throw lastError;
 }

 async function getOidcToken(): Promise<string> {
  try {
    const oidcToken = await core.getIDToken("claude-code-github-action");

-    if (!oidcToken) {
-      throw new Error("OIDC token not found");
-    }
-
    return oidcToken;
  } catch (error) {
+    console.error("Failed to get OIDC token:", error);
    throw new Error(
-      `Failed to get OIDC token: ${error instanceof Error ? error.message : String(error)}`,
+      "Could not fetch an OIDC token. Did you remember to add `id-token: write` to your workflow permissions?",
    );
  }
 }
@@ -74,9 +68,15 @@ async function exchangeForAppToken(oidcToken: string): Promise<string> {
  );

  if (!response.ok) {
-    throw new Error(
-      `App token exchange failed: ${response.status} ${response.statusText}`,
+    const responseJson = (await response.json()) as {
+      error?: {
+        message?: string;
+      };
+    };
+    console.error(
+      `App token exchange failed: ${response.status} ${response.statusText} - ${responseJson?.error?.message ?? "Unknown error"}`,
    );
+    throw new Error(`${responseJson?.error?.message ?? "Unknown error"}`);
  }

  const appTokenData = (await response.json()) as {
@@ -117,7 +117,9 @@ export async function setupGitHubToken(): Promise<string> {
    core.setOutput("GITHUB_TOKEN", appToken);
    return appToken;
  } catch (error) {
-    core.setFailed(`Failed to setup GitHub token: ${error}`);
+    core.setFailed(
+      `Failed to setup GitHub token: ${error}.\n\nIf you instead wish to use this action with a custom GitHub token or custom GitHub app, provide a \`github_token\` in the \`uses\` section of the app in your workflow yml file.`,
+    );
    process.exit(1);
  }
 }
Author	SHA1	Message	Date
Ashwin Bhat	e7d1e16678	remove .DS_Store	2025-05-27 13:19:09 -07:00
Ashwin Bhat	253f2c6796	Pin GitHub Action dependencies to commit SHAs for security (#66 ) Pin oven-sh/setup-bun and anthropics/claude-code-base-action to specific commit SHAs instead of version tags to ensure reproducible builds and improve supply chain security. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-authored-by: Claude <noreply@anthropic.com>	2025-05-27 10:14:11 -07:00
Ashwin Bhat	3c6a85b54b	Improve error messages for GitHub Action authentication failures (#50 ) - Add helpful hint about workflow permissions when OIDC token is not found - Include response body in app token exchange failure errors for better debugging 🤖 Generated with [Claude Code](https://claude.ai/code) Co-authored-by: Claude <noreply@anthropic.com>	2025-05-25 18:43:54 -07:00
Lina Tawfik	cbc3ca285d	Merge pull request #39 from anthropics/fix-mcp-undefined-error Fix MCP file operations server errors	2025-05-23 12:30:01 -07:00
Lina Tawfik	f3bfb2a9ad	Merge pull request #34 from anthropics/update-claude-workflow-v2 Update Claude workflow	2025-05-22 21:51:16 -07:00
Lina Tawfik	36c5ee33cd	Update Claude workflow 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>	2025-05-22 21:43:54 -07:00
Lina Tawfik	8e84799f37	Merge pull request #25 from anthropics/update-to-use-model-parameter Udpate claude model to default -p model	2025-05-22 11:02:14 -07:00
Lina Tawfik	b129b800c5	Merge pull request #23 from anthropics/np-anthropic-patch-1 Add graphic to readme	2025-05-22 09:26:50 -07:00
Lina Tawfik	80dbb4a5aa	Merge pull request #24 from anthropics/update-to-use-model-parameter Update to use model parameter in claude-code-base-action	2025-05-22 09:19:03 -07:00
Nate Parrott	be7f75d65a	fix formatting	2025-05-22 11:12:51 -04:00
np-anthropic	e3d126d058	Add graphic to readme	2025-05-22 10:57:20 -04:00
Lina Tawfik	11f5812e28	Merge pull request #22 from anthropics/lina/rename-anthropic-model-to-model Rename anthropic_model input to model with backward compatibility	2025-05-22 07:26:42 -07:00