Add PR Review Tracker caller workflow#7966
Conversation
Forwards this repo's pull_request events (opened/reopened/synchronize) to the shared reusable workflow in BloomBooks/.github, which adds the PR to the PR Review Tracker org project (#2) and sets its Status to Waiting for AI-Review. Relies on the org-level PROJECT_TOKEN secret via secrets: inherit. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
There was a problem hiding this comment.
Pull request overview
Adds a GitHub Actions caller workflow to forward pull_request events to the BloomBooks shared reusable workflow that manages the org-level PR Review Tracker project automation.
Changes:
- Introduces a new
.github/workflows/pr-review.ymlworkflow triggered onpull_request(opened,reopened,synchronize). - Calls the reusable workflow in
BloomBooks/.githuband inherits secrets for project automation.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| jobs: | ||
| track: | ||
| uses: BloomBooks/.github/.github/workflows/pr-review-tracker.yml@main | ||
| secrets: inherit |
There was a problem hiding this comment.
[Claude Opus 4.8] Good catch — fixed in 136c42a. The job is now gated with if: github.event.pull_request.head.repo.full_name == github.repository, so it runs only for same-repo PRs and skips fork PRs (which would not have the secret). The board automation only needs to cover same-repo PRs anyway.
|
| Filename | Overview |
|---|---|
| .github/workflows/pr-review.yml | New caller workflow that forwards pull_request events to the shared PR Review Tracker reusable workflow; uses explicit secret mapping (not secrets: inherit) and correctly guards against fork PRs. |
Reviews (3): Last reviewed commit: "Rename secret to PR_REVIEW_TRACKER_PROJE..." | Re-trigger Greptile
![greptile-apps[bot]](https://avatars.githubusercontent.com/in/867647?s=60&v=4){kind=small}
- Skip fork PRs (they don't receive secrets, so PROJECT_TOKEN would be empty and the run would fail). BloomDesktop is public and gets fork PRs. - Pass only PROJECT_TOKEN instead of secrets: inherit, to limit blast radius. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
More descriptive org secret name; must match the reusable workflow's declared secret. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Opts BloomDesktop into the BloomBooks PR Review Tracker org project (#2).
This thin caller forwards
pull_requestevents (opened/reopened/synchronize) to the shared reusable workflow inBloomBooks/.github. That workflow adds the PR to the board and sets its Status to Waiting for AI-Review — including moving the card back to Waiting whenever a new commit is pushed.Depends on:
PROJECT_TOKENsecret being shared with this repo (already configured).To onboard another repo later: copy this same file into it and add it to the
PROJECT_TOKENsecret's repository list.🤖 Generated with Claude Code
This change is