mirror of
https://github.com/1technophile/OpenMQTTGateway.git
synced 2026-02-21 17:21:40 +01:00
5fe77e9c85
* [CI] Fix Claude review action failing on fork PRs Use pull_request_target instead of pull_request so OIDC tokens and secrets are available when reviewing PRs from external contributors. Explicitly checkout the PR head SHA to review the actual changes. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * [CI] Harden review workflow against prompt injection from forks Checkout the base branch instead of the PR head to prevent CLAUDE.md poisoning and code-level prompt injection. Claude uses gh pr diff to review changes without exposing the runner to untrusted fork code. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * [CI] Remove Claude auto-review workflow on PRs Remove the pull_request_target review workflow due to prompt injection risks from fork PRs. Claude can still be invoked on-demand via @claude mentions through the claude.yml workflow, which is safer as it requires a trusted maintainer to trigger. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * [CI] Restrict @claude trigger to repo owner only Add actor check so only 1technophile can invoke Claude via @claude mentions. Prevents untrusted users from triggering the action and consuming API credits or attempting prompt injection via comments. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * [CI] Remove Claude @mention workflow Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> --------- Co-authored-by: Florian <1technophile@users.noreply.github.com> Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>