fix(ci): claude workflows use explicit github token

Piotr1215 · Piotr1215 · commit 4b6656c453be · 2026-01-28T18:20:48.000+01:00
OIDC token fetch fails with "Unable to get ACTIONS_ID_TOKEN_REQUEST_URL"
despite id-token: write permission being set. This occurs when OIDC is
disabled at the organization or repository level.

Using explicit github_token parameter bypasses OIDC and uses the built-in
GITHUB_TOKEN secret that's automatically available to all workflows.
diff --git a/.github/workflows/claude-code-review.yml b/.github/workflows/claude-code-review.yml
@@ -36,6 +36,7 @@ jobs:
         uses: anthropics/claude-code-action@v1
         with:
           anthropic_api_key: ${{ secrets.CLAUDE_LOFT_GH_APP_KEY }}
+          github_token: ${{ secrets.GITHUB_TOKEN }}
           plugin_marketplaces: 'https://github.com/anthropics/claude-code.git'
           plugins: 'code-review@claude-code-plugins'
           prompt: '/code-review:code-review ${{ github.repository }}/pull/${{ github.event.pull_request.number }}'
diff --git a/.github/workflows/claude.yml b/.github/workflows/claude.yml
@@ -35,6 +35,7 @@ jobs:
         uses: anthropics/claude-code-action@v1
         with:
           anthropic_api_key: ${{ secrets.CLAUDE_LOFT_GH_APP_KEY }}
+          github_token: ${{ secrets.GITHUB_TOKEN }}
 
           # This is an optional setting that allows Claude to read CI results on PRs
           additional_permissions: |
