actions/claude-code-action
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
claude-code-action/base-action/test
History
Ashwin Bhat 19a4f34b17
Disable auto-approval of project MCP servers when .mcp.json changes in PR 
When a PR modifies .mcp.json, the checked-out working directory contains a
version that may differ from the base branch. Blindly setting
enableAllProjectMcpServers=true in that context auto-approves those MCP
servers without the user having reviewed them.

Fix: before calling setupClaudeCodeSettings, check whether .mcp.json changed
in the triggering PR using the GitHub REST API (pulls.listFiles). If it did,
pass mcpJsonChanged=true to suppress the enableAllProjectMcpServers=true
override. When .mcp.json is unmodified (the common case), behaviour is
unchanged.

- Add mcpJsonChanged parameter to setupClaudeCodeSettings
- Add PR file-list check in src/entrypoints/run.ts
- Update tests: update existing override test, add two new mcpJsonChanged=true tests
2026-02-15 12:39:01 -08:00
..
mcp-test
fix: resolve high vulnerability CVE-2025-66414 (#792)
2026-01-07 12:53:45 +05:30
install-plugins.test.ts
feat: support local plugin marketplace paths (#761)
2026-01-05 16:13:32 +05:30
parse-sdk-options.test.ts
fix: pass OpenTelemetry environment variables to Claude Code subprocess (#886)
2026-02-01 14:01:29 -08:00
parse-shell-args.test.ts
feat: implement Claude Code GitHub Action v1.0 with auto-detection and slash commands (#421)
2025-08-25 12:51:37 -07:00
prepare-prompt.test.ts
feat: integrate claude-code-base-action as local subaction (#285)
2025-07-18 13:52:56 -07:00
setup-claude-code-settings.test.ts
Disable auto-approval of project MCP servers when .mcp.json changes in PR
2026-02-15 12:39:01 -08:00
validate-env.test.ts
feat: add Microsoft Foundry provider support (#684)
2025-11-20 13:50:13 -08:00