Add Deep Research workflow scaffold (Claude + web-search)#352
Add Deep Research workflow scaffold (Claude + web-search)#352github-actions[bot] wants to merge 4 commits intomainfrom
Conversation
Adds a Claude-based deep research workflow definition scaffold, trigger example, and docs with web-search/web-fetch enabled. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
|
No actionable comments were generated in the recent review. 🎉 📝 WalkthroughWalkthroughAdds a new "Deep Research" assistant workflow: documentation, example workflow, and full implementation as GitHub Actions workflows that run on issue comments, invoke a Claude-based agent, use Safe Inputs/Outputs and MCP gateways, and can create PRs or comments with safety checks. Changes
Sequence Diagram(s)sequenceDiagram
participant User as Issue Commenter
participant GH as GitHub (workflow trigger)
participant Runner as Actions Runner
participant Agent as Claude-based Agent
participant Safe as SafeInputs/SafeOutputs MCP
participant Repo as Repository (PRs/Comments)
User->>GH: posts comment "/research"
GH->>Runner: start trigger-deep-research workflow
Runner->>Runner: activation job (context, checkout, aw_info)
Runner->>Agent: start agent job (invoke Claude Code CLI, allowed tools)
Agent->>Safe: request allowed tool actions via MCP
Safe-->>Agent: validated safe outputs/inputs
Agent->>Repo: create PR or add comment (via SafeOutputs)
Runner->>Runner: detection & logging jobs, upload artifacts
Estimated code review effort🎯 4 (Complex) | ⏱️ ~45 minutes Possibly related PRs
Suggested reviewers
Poem
🚥 Pre-merge checks | ✅ 5✅ Passed checks (5 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Comment |
There was a problem hiding this comment.
Actionable comments posted: 1
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Inline comments:
In @.github/workflows/gh-aw-deep-research.md:
- Around line 58-62: The workflow grants only read access under the permissions
block (lines containing permissions:, contents:, issues:, pull-requests:) but
later advertises actions like add_comment, create_pull_request, and create_issue
that need write access; update the permissions entries so contents:, issues:,
and pull-requests: are set to write (or add fine-grained write scopes) instead
of read to allow those actions to succeed, keeping the permissions: and tools:
stanza intact and ensuring no broader privileges than necessary.
There was a problem hiding this comment.
Request changes: gh-agent-workflows/deep-research/example.yml references .github/workflows/gh-aw-deep-research.lock.yml@v0, but that lock workflow is not present in this PR, so the documented install path will fail until the lock file is added/published.
What is this? | From workflow: PR Review
Give us feedback! React with 🚀 if perfect, 👍 if helpful, 👎 if not.
There was a problem hiding this comment.
Verdict: APPROVE. I found no new actionable issues in the current diff.
What is this? | From workflow: PR Review
Give us feedback! React with 🚀 if perfect, 👍 if helpful, 👎 if not.
Summary
.github/workflows/gh-aw-deep-research.md..github/workflows/gh-aw-deep-research.lock.ymland.github/workflows/trigger-deep-research.yml.gh-agent-workflows/deep-research/and list the workflow ingh-agent-workflows/README.md.Behavior
/research.web-searchandweb-fetchenabled.Configuration
additional-instructions,setup-commands,allowed-bot-users,messages-footer,draft-prs.ANTHROPIC_API_KEY.add-comment,create-pull-request,create-issue.Fixes #336Summary by CodeRabbit
Documentation
New Features