authzed
diff --git a/‎.github/workflows/claude-code-review.yml‎
Lines changed: 52 additions & 0 deletions b/‎.github/workflows/claude-code-review.yml‎
Lines changed: 52 additions & 0 deletions
diff --git a/‎.github/workflows/claude.yml‎
Lines changed: 127 additions & 0 deletions b/‎.github/workflows/claude.yml‎
Lines changed: 127 additions & 0 deletions
diff --git a/‎CLAUDE.md‎
Lines changed: 78 additions & 0 deletions b/‎CLAUDE.md‎
Lines changed: 78 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 35 additions & 0 deletions b/‎README.md‎
Lines changed: 35 additions & 0 deletions
@@ -0,0 +1,52 @@
+name: "Claude Code Review"
+
+"on":
+  pull_request:
+    types:
+      [
+        "opened",
+        "synchronize",
+        "ready_for_review",
+        "reopened",
+        "labeled",
+        "edited",
+      ]
+    # Optional: Only run on specific file changes
+    # paths:
+    #   - "src/**/*.ts"
+    #   - "src/**/*.tsx"
+    #   - "src/**/*.js"
+    #   - "src/**/*.jsx"
+
+jobs:
+  claude-review:
+    # Only run when:
+    # - The 'claude-review' label is present, OR
+    # - The PR description contains '@claude'
+    if: |
+      contains(github.event.pull_request.labels.*.name, 'claude-review') ||
+      contains(github.event.pull_request.body, '@claude')
+
+    runs-on: "ubuntu-latest"
+    permissions:
+      contents: "read"
+      pull-requests: "read"
+      issues: "read"
+      id-token: "write"
+
+    steps:
+      - name: "Checkout repository"
+        uses: "actions/checkout@v4"
+        with:
+          fetch-depth: 1
+
+      - name: "Run Claude Code Review"
+        id: "claude-review"
+        uses: "anthropics/claude-code-action@v1"
+        with:
+          anthropic_api_key: "${{ secrets.ANTHROPIC_API_KEY }}"
+          plugin_marketplaces: "https://github.com/anthropics/claude-code.git"
+          plugins: "code-review@claude-code-plugins"
+          prompt: "/code-review:code-review ${{ github.repository }}/pull/${{ github.event.pull_request.number }}"
+          # See https://github.com/anthropics/claude-code-action/blob/main/docs/usage.md
+          # or https://code.claude.com/docs/en/cli-reference for available options
@@ -0,0 +1,127 @@
+name: "Claude Code"
+# Note: only users with write permissions can invoke Claude jobs
+
+"on":
+  issue_comment:
+    types: ["created"]
+  pull_request_review_comment:
+    types: ["created"]
+  issues:
+    types: ["labeled"]
+  pull_request_review:
+    types: ["submitted"]
+  workflow_dispatch:
+    inputs:
+      issue_number:
+        description: "Issue number to process"
+        required: true
+        type: "number"
+
+jobs:
+  # Disable general claude invocations
+  # claude:
+  #   if: |
+  #     (github.event_name == 'issue_comment' && contains(github.event.comment.body, '@claude')) ||
+  #     (github.event_name == 'pull_request_review_comment' && contains(github.event.comment.body, '@claude')) ||
+  #     (github.event_name == 'pull_request_review' && contains(github.event.review.body, '@claude')) ||
+  #     (github.event_name == 'issues' && (contains(github.event.issue.body, '@claude') || contains(github.event.issue.title, '@claude')))
+  #   runs-on: ubuntu-latest
+  #   permissions:
+  #     contents: read
+  #     pull-requests: read
+  #     issues: read
+  #     id-token: write
+  #     actions: read # Required for Claude to read CI results on PRs
+  #   steps:
+  #     - name: Checkout repository
+  #       uses: actions/checkout@v4
+  #       with:
+  #         fetch-depth: 1
+  #
+  #     - name: Run Claude Code
+  #       id: claude
+  #       uses: anthropics/claude-code-action@v1
+  #       with:
+  #         anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+  #
+  #         # This is an optional setting that allows Claude to read CI results on PRs
+  #         additional_permissions: |
+  #           actions: read
+  #
+  #         # Optional: Give a custom prompt to Claude. If this is not specified, Claude will perform the instructions specified in the comment that tagged it.
+  #         # prompt: 'Update the pull request description to include a summary of changes.'
+  #
+  #         # Optional: Add claude_args to customize behavior and configuration
+  #         # See https://github.com/anthropics/claude-code-action/blob/main/docs/usage.md
+  #         # or https://code.claude.com/docs/en/cli-reference for available options
+  #         # claude_args: '--allowed-tools Bash(gh pr:*)'
+
+  suggestion:
+    name: "Suggestion Handler"
+    if: |
+      (github.event_name == 'issues' &&
+       github.event.action == 'labeled' &&
+       contains(github.event.issue.labels.*.name, 'suggestion/accepted')) ||
+      github.event_name == 'workflow_dispatch'
+    runs-on: "ubuntu-latest"
+    permissions:
+      contents: "write"
+      pull-requests: "read"
+      issues: "write"
+      id-token: "write"
+    steps:
+      - name: "Checkout repository"
+        uses: "actions/checkout@v4"
+        with:
+          fetch-depth: 0
+
+      - name: "Validate issue label for manual trigger"
+        if: "github.event_name == 'workflow_dispatch'"
+        env:
+          GH_TOKEN: "${{ github.token }}"
+          ISSUE_NUMBER: "${{ inputs.issue_number }}"
+        run: |
+          labels=$(gh issue view $ISSUE_NUMBER --json labels --jq '.labels[].name' || echo "")
+          if ! echo "$labels" | grep -q "suggestion/accepted"; then
+            echo "Error: Issue #$ISSUE_NUMBER does not have the 'suggestion/accepted' label"
+            exit 1
+          fi
+          echo "Issue #$ISSUE_NUMBER has the required 'suggestion/accepted' label"
+
+        # Runs claude code implement the suggestion.
+        # Configured to give 50 turns to claude based on observations. This can be increased if we observe sessions failing to complete
+      - name: "Run Claude Code for Suggestion"
+        id: "claude-suggestion"
+        uses: "anthropics/claude-code-action@v1"
+        env:
+          ISSUE_NUMBER: "${{ github.event_name == 'workflow_dispatch' && inputs.issue_number || github.event.issue.number }}"
+        with:
+          anthropic_api_key: "${{ secrets.ANTHROPIC_API_KEY }}"
+          # Enabling this may expose secrets. Do not set to true on public repos
+          # https://github.com/anthropics/claude-code-action/blob/main/docs/security.md#%EF%B8%8F-full-output-security-warning
+          show_full_output: false
+          prompt: |
+            Read the repository documentation structure and the issue description for issue #${{ github.event_name == 'workflow_dispatch' && inputs.issue_number || github.event.issue.number }}.
+
+            The issue has been labeled as "suggestion/accepted" and contains a documentation request or improvement.
+
+            Your task:
+            1. Read and understand the current documentation structure in this repository
+            2. Review the issue description and any comments to understand what documentation changes are needed
+            3. Create a new branch using the format: suggestion/issue-${{ github.event_name == 'workflow_dispatch' && inputs.issue_number || github.event.issue.number }}-<short-description>
+               Example: suggestion/issue-1-starter-program-docs
+               Use: git checkout -b <branch-name>
+            4. Implement the requested documentation changes by editing existing pages or creating new pages as appropriate
+            5. Ensure all changes follow the existing documentation style, formatting, and structure
+            6. Commit your changes with messages that include "Fixes #${{ github.event_name == 'workflow_dispatch' && inputs.issue_number || github.event.issue.number }}" so the issue will automatically close when the PR is merged.
+            7. Push your branch to origin using: git push -u origin <branch-name>
+            8. Post a comment to issue #${{ github.event_name == 'workflow_dispatch' && inputs.issue_number || github.event.issue.number }} with:
+               - Summary of changes made
+               - Link to create a PR using: https://github.com/${{ github.repository }}/compare/<branch-name>?expand=1
+               Use the gh CLI: gh issue comment ${{ github.event_name == 'workflow_dispatch' && inputs.issue_number || github.event.issue.number }} --body "<your comment>"
+
+            Focus only on documentation changes. Make app changes necessary to support the documentation such as adding visual components, icons, and structure.
+            Otherwise, do not modify application code, configuration files, or CI/CD workflows.
+          claude_args: |
+            --allowedTools "Read,Write,Edit,Bash(git:*),Bash(gh:*),WebFetch(domain:authzed.com)"
+            --max-turns 50
@@ -0,0 +1,78 @@
+# AuthZed Docs
+
+Documentation site for AuthZed and SpiceDB built with Next.js and Nextra.
+
+## Stack
+
+- **Framework**: Next.js 16 (App Router)
+- **Documentation**: Nextra 4.6 (docs theme)
+- **Styling**: Tailwind CSS 4
+- **Package Manager**: pnpm 10.24.0
+- **TypeScript**: 5.9.3 (non-strict mode, strict null checks enabled)
+- **Content Format**: MDX (Markdown + JSX)
+
+## Project Structure
+
+```
+app/
+├── authzed/          # AuthZed product docs
+├── spicedb/          # SpiceDB docs
+├── best-practices/   # Best practices guides
+├── mcp/              # MCP-related docs
+├── page.mdx          # Homepage
+├── layout.tsx        # Root layout
+└── globals.css       # Global styles
+
+components/
+├── ui/               # Reusable UI components
+├── banner.tsx
+├── cta.tsx
+└── youtube-wrapper.tsx
+
+scripts/              # Build and utility scripts
+```
+
+## Content Conventions
+
+### File Organization
+
+- Each section has a `_meta.ts` file defining navigation order and titles
+- Content files are `page.mdx` within directories (e.g., `app/authzed/guides/cloud/page.mdx`)
+- Import path alias: `@/*` maps to root directory
+
+### MDX Files
+
+**Imports at top:**
+
+```tsx
+import { Callout } from "nextra/components";
+import YouTube from "@/components/youtube-wrapper";
+```
+
+**Common patterns:**
+
+- Use `<Callout type="info|warning|error">` for callouts
+- Use `<YouTube videoId="..." className="youtubeContainer" />` for videos
+- Standard markdown for content (headings, lists, code blocks, links)
+
+### Code Style
+
+- **Path aliases**: Use `@/` for imports from root (e.g., `@/components/banner`)
+- **Components**: React functional components with TypeScript
+- **Formatting**: Prettier (run `pnpm format`)
+- **Linting**: Markdownlint with custom rules (run `pnpm lint:markdown`)
+
+## Development
+
+```bash
+pnpm dev              # Start dev server
+pnpm build            # Build for production
+pnpm format           # Format code
+pnpm lint:markdown    # Lint markdown files
+```
+
+## Notes
+
+- Markdown linting is lenient (most rules disabled, custom sentence-per-line rule)
+- TypeScript strict mode is off, but strict null checks are enforced
+- Next.js uses webpack mode explicitly (`--webpack` flag)
@@ -42,3 +42,38 @@ Run linters:
 ```sh
 pnpm run lint
 ```
+
+## Automated Documentation Suggestions
+
+This repository uses GitHub Actions with Claude Code to automatically implement accepted documentation suggestions.
+
+### How It Works
+
+1. **Create an issue** describing the documentation change, addition, or improvement you'd like to see
+2. To approve a suggestion issue, **add the `suggestion/accepted` label** to the issue
+3. **Claude automatically**:
+   - Reads the issue description and existing documentation
+   - Creates a new branch (`claude/issue-N-description`)
+   - Implements the requested documentation changes
+   - Commits with "Fixes #N" to auto-close the issue when merged
+   - Pushes the branch and comments on the issue with a PR link
+   - A repo admin then clicks the PR link to create a PR, reviews it, and merges when ready
+
+### Manual Trigger
+
+You can also manually trigger the suggestion handler:
+
+1. Go to the **Actions** tab
+2. Select **Claude Code** workflow
+3. Click **Run workflow**
+4. Enter the issue number
+5. The issue must have the `suggestion/accepted` label
+
+### Review Process
+
+After Claude creates the branch:
+
+1. Create the PR using the link in the issue comment
+2. Review the changes in the generated PR link
+3. Make any changes and update the PR. Merge when satisfied
+4. The original issue will automatically close