From d6a320490ae2f8d8a6f157650872ccbc74d3000e Mon Sep 17 00:00:00 2001
From: Phantom <59059173+EurFelux@users.noreply.github.com>
Date: Wed, 10 Sep 2025 23:27:15 +0800
Subject: [PATCH] ci(github-actions): update workflow permissions for
 claude-translator (#10080)

Update pull-requests permission from read to write and add allowed_non_write_users config
Add security warning comment about fine-grained token control
---
 .github/workflows/claude-translator.yml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/claude-translator.yml b/.github/workflows/claude-translator.yml
index 2ec01b9da7..ab2b6f7e4f 100644
--- a/.github/workflows/claude-translator.yml
+++ b/.github/workflows/claude-translator.yml
@@ -20,7 +20,7 @@ jobs:
     permissions:
       contents: read
       issues: write # 编辑issues/comments
-      pull-requests: read
+      pull-requests: write
       id-token: write
 
     steps:
@@ -33,7 +33,11 @@ jobs:
         uses: anthropics/claude-code-action@main
         id: claude
         with:
+          # Warning: Permissions should have been controlled by workflow permission.
+          # Now `contents: read` is safe for files, but we could make a fine-grained token to control it.
+          # See: https://github.com/anthropics/claude-code-action/blob/main/docs/security.md
           github_token: ${{ secrets.TOKEN_GITHUB_WRITE }}
+          allowed_non_write_users: '*'
           claude_code_oauth_token: ${{ secrets.CLAUDE_CODE_OAUTH_TOKEN }}
           claude_args: '--allowed-tools Bash(gh issue:*),Bash(gh api:repos/*/issues:*)'
           prompt: |