Skip to content

Tweak bot PR review prompts #1465

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ValentaTomas merged 4 commits into from
Nov 10, 2025
Merged

Tweak bot PR review prompts #1465

ValentaTomas merged 4 commits into from
Nov 10, 2025

Conversation

@ValentaTomas
Copy link
Member

@ValentaTomas ValentaTomas commented Nov 8, 2025
edited by cursor bot
Loading

Note

Adds BugBot config and tightens Claude Code Review workflow to trigger only on opened PRs with stricter, inline-comment guidance using gh api.

  • CI/Workflows:
    • Update /.github/workflows/claude-code-review.yml to trigger only on pull_request: [opened].
    • Expand review prompt with stricter guidance: avoid summaries, reduce false positives, and post issues only as inline comments using gh api with the provided payload format.
    • Adjust claude_args to allow gh api while keeping other gh commands.
  • Tooling/Config:
    • Add /.cursor/BUGBOT.md with concise rules for PR descriptions and reviews.

Written by Cursor Bugbot for commit b49f9a7. This will update automatically on new commits. Configure here.

@ValentaTomas
Copy link
Member Author

ValentaTomas commented Nov 8, 2025

  • The Claude review test seems to fail because of the difference in the workflows with main
  • The integration test failure is a flake

ValentaTomas
ValentaTomas commented Nov 8, 2025
View reviewed changes
cursor[bot]
cursor bot reviewed Nov 8, 2025
View reviewed changes
djeebus
djeebus reviewed Nov 9, 2025
View reviewed changes
@ValentaTomas ValentaTomas requested a review from djeebus November 9, 2025 19:05
cursor[bot]
cursor bot reviewed Nov 9, 2025
View reviewed changes
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: Forbidden Action: Permission Mismatch

The workflow instructs Claude to post inline comments using gh api to create PR review comments, but the permissions block only grants pull-requests: read. Posting comments via the GitHub API requires pull-requests: write permission, causing the workflow to fail with a 403 Forbidden error when attempting to post comments.

.github/workflows/claude-code-review.yml#L11-L16

infra/.github/workflows/claude-code-review.yml

Lines 11 to 16 in c919c3a

runs-on: ubuntu-latest
permissions:
contents: read
pull-requests: read
issues: read
id-token: write

Fix in Cursor Fix in Web

@ValentaTomas
Copy link
Member Author

ValentaTomas commented Nov 9, 2025
edited
Loading

Bug: Forbidden Action: Permission Mismatch

The workflow instructs Claude to post inline comments using gh api to create PR review comments, but the permissions block only grants pull-requests: read. Posting comments via the GitHub API requires pull-requests: write permission, causing the workflow to fail with a 403 Forbidden error when attempting to post comments.

.github/workflows/claude-code-review.yml#L11-L16

infra/.github/workflows/claude-code-review.yml

Lines 11 to 16 in c919c3a

runs-on: ubuntu-latest
permissions:
contents: read
pull-requests: read
issues: read
id-token: write

Fix in Cursor Fix in Web

Previously, it was able to post normal comments with these permissions, so I think the permissions are granted by the Claude GH App.

@jakubno
Copy link
Member

jakubno commented Nov 10, 2025

Can we merge this soon, claude is suuuuuper annoying

jakubno
jakubno reviewed Nov 10, 2025
View reviewed changes
jakubno
jakubno reviewed Nov 10, 2025
View reviewed changes
@ValentaTomas ValentaTomas merged commit acb8f0c into main Nov 10, 2025
24 checks passed
@ValentaTomas ValentaTomas deleted the review-tweaks branch November 10, 2025 18:09
cursor[bot]
cursor bot reviewed Nov 10, 2025
View reviewed changes
.github/workflows/claude-code-review.yml
on:
pull_request:
types: [opened, synchronize]
types: [opened]
Copy link

@cursor cursor bot Nov 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: API Comments: Permissions Denied

The workflow instructs Claude to post inline PR comments using gh api to create review comments, but the permissions only grant pull-requests: read. Creating PR review comments via the GitHub API requires pull-requests: write permission, causing the workflow to fail with a 403 Forbidden error when attempting to post comments.

Fix in Cursor Fix in Web

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jakubno jakubno jakubno approved these changes

@cursor cursor[bot] cursor[bot] left review comments

@dobrac dobrac Awaiting requested review from dobrac dobrac is a code owner

@djeebus djeebus Awaiting requested review from djeebus

Assignees

@djeebus djeebus

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@ValentaTomas @jakubno @djeebus