Add Claude Code GitHub Workflow

[ProbabilityEngineer]

🤖 Installing Claude Code GitHub App

This PR adds a GitHub Actions workflow that enables Claude Code integration in our repository.

What is Claude Code?

Claude Code is an AI coding agent that can help with:

• Bug fixes and improvements
• Documentation updates
• Implementing new features
• Code reviews and suggestions
• Writing tests
• And more!

How it works

Once this PR is merged, we'll be able to interact with Claude by mentioning @claude in a pull request or issue comment.
Once the workflow is triggered, Claude will analyze the comment and surrounding context, and execute on the request in a GitHub action.

Important Notes

• This workflow won't take effect until this PR is merged
• @claude mentions won't work until after the merge is complete
• The workflow runs automatically whenever Claude is mentioned in PR or issue comments
• Claude gets access to the entire PR or issue context including files, diffs, and previous comments

Security

• Our Anthropic API key is securely stored as a GitHub Actions secret
• Only users with write access to the repository can trigger the workflow
• All Claude runs are stored in the GitHub Actions run history
• Claude's default tools are limited to reading/writing files and interacting with our repo by creating comments, branches, and commits.
• We can add more allowed tools by adding them to the workflow file like:

allowed_tools: Bash(npm install),Bash(npm run build),Bash(npm run lint),Bash(npm run test)

There's more information in the Claude Code action repo.

After merging this PR, let's try mentioning @claude in a comment on any PR to get started!

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 8d6a6557e2

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Gate @claude runs to repo collaborators

The job’s if condition only checks whether the comment/body contains @claude (lines 15–19), so any GitHub user can trigger this workflow on public issues/PRs. Because the job uses the CLAUDE_CODE_OAUTH_TOKEN secret later, an untrusted commenter can consume Claude tokens and execute runs against the repo without any author-association check. Consider adding an author-association or membership guard (e.g., github.event.comment.author_association) so only trusted users can trigger the workflow.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Fork PRs will fail without secrets on pull_request

This workflow runs on the pull_request event and requires CLAUDE_CODE_OAUTH_TOKEN (line 38). GitHub does not provide repository secrets to workflows triggered by forked PRs, so for external contributors the action will run without the token and fail or skip the review. If you expect forked PRs, you’ll need to guard the job or switch to a safer pull_request_target flow with a restricted checkout.

Useful? React with 👍 / 👎.