Shared defaults and reusable workflows for PowerUserZ repositories.
Posts an automatic Claude review comment on every pull request. Uses a Claude
Max subscription via the CLAUDE_CODE_OAUTH_TOKEN secret — no API billing.
Minimal caller workflow (put in .github/workflows/claude-review.yml of
the consumer repo):
name: Claude PR Review
on:
pull_request:
types: [opened, synchronize, reopened]
jobs:
review:
uses: PowerUserZ/.github/.github/workflows/claude-review.yml@main
secrets:
CLAUDE_CODE_OAUTH_TOKEN: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}Custom prompt / args:
uses: PowerUserZ/.github/.github/workflows/claude-review.yml@main
with:
prompt: "Focus on bash safety and sentinel-based config edits."
claude_args: "--max-turns 8"
secrets:
CLAUDE_CODE_OAUTH_TOKEN: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}- Get an OAuth token once (expires in one year):
claude setup-token
- Add the token as a repo secret named
CLAUDE_CODE_OAUTH_TOKENin every consumer repo (GitHub does not support user-level secrets). - Drop the caller workflow above into the consumer repo's
.github/workflows/claude-review.yml.
For one-command bootstrap, see claude-review-enable in the
personal bashrc helper (local to
the user's dotfiles).
- Fork PRs do not trigger the review — GitHub does not forward secrets to forks. This is intentional.
- Max quota applies; the runner burn counts against monthly limits.
- Token expires in one year; rerun
claude setup-tokenand update each repo's secret.