Disable fork PR comment job in workflow (#1047)

Disable fork PR comment job in Claude Code review workflow The notify-external-contributor job fails with "Resource not accessible by integration" error when triggered by PRs from forks. GitHub security restrictions limit fork PRs to read-only GITHUB_TOKEN, preventing comment creation despite having pull-requests:write permissions. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-authored-by: Claude <noreply@anthropic.com>
2025-11-05 08:31:06 -08:00 · 2025-11-05 08:31:06 -08:00 · 50659cc805
commit 50659cc805
parent c144ff5995
1 changed files with 27 additions and 24 deletions
--- a/.github/workflows/claude-code-review.yml
+++ b/.github/workflows/claude-code-review.yml
@ -77,27 +77,30 @@ jobs:
            --allowedTools "mcp__github_inline_comment__create_inline_comment,Bash(gh pr comment:*), Bash(gh pr diff:*), Bash(gh pr view:*)"
            --model claude-sonnet-4-5-20250929
-  notify-external-contributor:
+  # Disabled: This job fails with "Resource not accessible by integration" error
-    needs: check-fork
+  # when triggered by pull_request events from forks due to GitHub security restrictions.
-    if: needs.check-fork.outputs.is_fork == 'true'
+  # Fork PRs run with read-only GITHUB_TOKEN and cannot post comments.
-    runs-on: ubuntu-latest
+  # notify-external-contributor:
-    permissions:
+  #   needs: check-fork
-      pull-requests: write
+  #   if: needs.check-fork.outputs.is_fork == 'true'
-    steps:
+  #   runs-on: ubuntu-latest
-      - name: Add comment for external contributors
+  #   permissions:
-        uses: actions/github-script@v7
+  #     pull-requests: write
-        with:
+  #   steps:
-          script: |
+  #     - name: Add comment for external contributors
-            const comment = `👋 Thanks for your contribution!
+  #       uses: actions/github-script@v7
-
+  #       with:
-            This PR is from a fork, so automated Claude Code reviews are not run for security reasons.
+  #         script: |
-            A maintainer will manually trigger a review after an initial security check.
+  #           const comment = `👋 Thanks for your contribution!
-
+  #
-            You can expect feedback soon!`;
+  #           This PR is from a fork, so automated Claude Code reviews are not run for security reasons.
-
+  #           A maintainer will manually trigger a review after an initial security check.
-            github.rest.issues.createComment({
+  #
-              issue_number: context.issue.number,
+  #           You can expect feedback soon!`;
-              owner: context.repo.owner,
+  #
-              repo: context.repo.repo,
+  #           github.rest.issues.createComment({
-              body: comment
+  #             issue_number: context.issue.number,
-            });
+  #             owner: context.repo.owner,
  #             repo: context.repo.repo,
  #             body: comment
  #           });