Report a list of tools that were denied due to insufficient permissions when used by Claude Code Action.
This action analyzes Claude Code Action execution logs to identify tools that were denied due to insufficient permissions.
It automatically posts a detailed report to your PR or Issue, helping you understand which tool permissions need to be configured.
- uses: anthropics/claude-code-action@beta
id: claude
with:
# ... your Claude Code Action configuration
- uses: koki-develop/claude-denied-tools@v1
with:
# Pass the execution file from the Claude Code Action
claude-code-execution-file: ${{ steps.claude.outputs.execution_file }}Required Permissions:
permissions:
pull-requests: write # Required to post comments on PRs
issues: write # Required to post comments on Issues
# ...| Name | Description | Required | Default |
|---|---|---|---|
claude-code-execution-file |
The outputs.execution_file from anthropics/claude-code-action |
Yes | - |
github-token |
GitHub token for API access | No | ${{ github.token }} |
sticky-comment |
If true, updates existing comment instead of creating new ones for each run |
No | false |
skip-comment |
If true, skip creating/updating PR/Issue comments |
No | false |
| Name | Description |
|---|---|
report |
Markdown-formatted report of denied tool executions |
denied-tools |
List of denied tools (JSON format) |
found |
Whether any denied tools were found (boolean) |