List view
Hardening follow-ups for the claude-pr-review/quality-gate commit status feature shipped in #179. Tracks fail-open, regex validation, multi-bot comment collision, and longer-term structured-output contract.
No due date•2/6 issues closedEpic: run Claude-powered CI jobs on GitHub-hosted runners inside a custom container image that pre-populates ~/.claude/ with the maintainer's skills, plugins, CLAUDE.md, and MCP configs. Goal: CI review/diagnose/apply-fix behavior matches local Claude Code, with no self-hosted infra and no expansion of security surface.
No due date•23/32 issues closedBreaking release: require GitHub App tokens across all actions, remove deprecated gh_pat fallback, clean up v1 compatibility shims.
No due date•7/7 issues closedMigrate all composite action logic from inline YAML bash blocks into TypeScript scripts with a full Jest test suite. Actions become thin wrappers invoking compiled Node.js bundles. Tests run locally on Windows and Linux without deploying to GitHub Actions.
No due date•8/8 issues closedReplace bot token usage with a GitHub App token so automated commits and comments appear under a distinct identity, and downstream workflows re-trigger correctly.
No due date•3/3 issues closedAdd cancel-in-progress concurrency to pr-review and lint-fix, then implement a commit-status checkpoint so cancelled runs don't leave diff coverage gaps.
No due date•2/2 issues closedFixes for blocking security vulnerabilities, broken event handling, and architecture gaps identified in adversarial review.
No due date•9/9 issues closed