chore: implement GitHub Actions - Claude Code Review/Merge Review and Renovate Approval

[chrisleekr]

This PR implements the GitHub Actions workflows for Claude Code Review/Merge Review and Renovate Approval.

Please note that this is an automatically generated PR.

Please approve and YOU MERGE this PR whenever you are ready.

[chatgpt-codex-connector]

You have reached your Codex rate limits. Please try again later.

[Copilot]

Pull request overview

This PR adds three GitHub Actions workflows to automate code review and approval processes using Claude AI and Renovate bot integration. The workflows call reusable workflows from the lux-group/github-actions repository.

Changes:

• Added Claude-based automated code review on PR open/ready for review
• Added Claude-based merge review with automatic approval for low-risk changes
• Added automated approval workflow for Renovate PRs

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 5 comments.

File	Description
.github/workflows/claude-review.yml	Implements automated code review using Claude AI when PRs are opened or marked ready
.github/workflows/claude-merge-review.yml	Implements merge review with risk scoring and auto-approval for low-risk PRs
.github/workflows/renovate-approval.yml	Implements automated approval for Renovate bot PRs

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

This is a Swift package repository without Node.js/NPM dependencies, but the workflow is passing NPM_TOKEN and AWS_ROLE_TO_ASSUME secrets. These secrets appear unnecessary for a Swift project. Verify that these secrets are required by the reusable workflow or remove them if they're not applicable to Swift projects.

Suggested change

NPM_TOKEN: ${{ secrets.NPM_TOKEN }}

[Copilot]

The parameter 'skip_setup_node_deps' suggests Node.js dependency setup, which is inconsistent with this Swift package repository. Verify that this parameter is necessary for the reusable workflow when used with Swift projects, or clarify why Node.js-related configuration is needed for a Swift project.

Suggested change

skip_setup_node_deps: true

[Copilot]

This is a Swift package repository without Node.js/NPM dependencies, but the workflow is passing NPM_TOKEN and AWS_ROLE_TO_ASSUME secrets. These secrets appear unnecessary for a Swift project. Verify that these secrets are required by the reusable workflow or remove them if they're not applicable to Swift projects.

Suggested change

NPM_TOKEN: ${{ secrets.NPM_TOKEN }}

[Copilot]

The parameter 'skip_setup_node_deps' suggests Node.js dependency setup, which is inconsistent with this Swift package repository. Verify that this parameter is necessary for the reusable workflow when used with Swift projects, or clarify why Node.js-related configuration is needed for a Swift project.

Suggested change

skip_setup_node_deps: true

[Copilot]

The comment indicates auto-approval for 'very low risk' changes, but the risk scoring system (1-5) mentioned in the file header comments isn't clearly defined. Consider adding a reference to documentation that explains what risk score 1 means and what types of changes qualify for each score level to help maintainers understand the auto-approval criteria.