Merge pull request anthropics#191 from anthropics/zh/add-notebook-ci-validation

ci: add notebook CI/CD with validation and testing

Author: zealoushacker

.claude/commands/link-review.md

@@ -0,0 +1,31 @@
+---
+allowed-tools: Bash(gh pr comment:*),Bash(gh pr diff:*),Bash(gh pr view:*)
+description: Review links in changed files for quality and security issues
+---
+
+Review the links in the changed files and check for potential issues:
+
+## Link Quality Checks
+1. **Broken Links**: Identify any links that might be broken or malformed
+2. **Outdated Links**: Check for links to deprecated resources or old documentation
+3. **Security**: Ensure no links to suspicious or potentially harmful sites
+4. **Best Practices**: 
+   - Links should use HTTPS where possible
+   - Internal links should use relative paths
+   - External links should be to stable, reputable sources
+
+## Specific Checks for Anthropic Content
+- Links to Claude documentation should point to the latest versions
+- API documentation links should be current
+- Model documentation should reference current models, not deprecated ones
+- GitHub links should use the correct repository paths
+
+## Report Format
+Provide a clear summary with:
+- ✅ Valid and well-formed links
+- ⚠️ Links that might need attention (e.g., HTTP instead of HTTPS)
+- ❌ Broken or problematic links that must be fixed
+
+If all links look good, provide a brief confirmation.
+
+**IMPORTANT: Post your review as a comment on the pull request using the command: `gh pr comment ${{ github.event.pull_request.number }} --body "your review content"`**

.claude/commands/model-check.md

@@ -0,0 +1,19 @@
+---
+allowed-tools: Bash(gh pr comment:*),Bash(gh pr diff:*),Bash(gh pr view:*)
+description: Validate Claude model usage against current public models
+---
+
+Review the changed files for Claude model usage.
+
+First, fetch the current list of allowed models from:
+https://docs.anthropic.com/en/docs/about-claude/models/overview.md
+
+Then check:
+1. All model references are from the current public models list
+2. Flag any deprecated models (older Sonnet 3.5, Opus 3 versions)
+3. Flag any internal/non-public model names
+4. Suggest using aliases ending in -latest for better maintainability
+
+Provide clear, actionable feedback on any issues found.
+
+**IMPORTANT: Post your findings as a comment on the pull request using the command: `gh pr comment ${{ github.event.pull_request.number }} --body "your findings"`**

.claude/commands/notebook-review.md

@@ -0,0 +1,44 @@
+---
+allowed-tools: Bash(gh pr comment:*),Bash(gh pr diff:*),Bash(gh pr view:*)
+description: Comprehensive review of Jupyter notebooks and Python scripts
+---
+
+Review the changes to Jupyter notebooks and Python scripts in this PR. Please check for:
+
+## Model Usage
+Verify all Claude model references against the current list at:
+https://docs.anthropic.com/en/docs/about-claude/models/overview.md
+- Flag any deprecated models (older Sonnet 3.5, Opus 3 versions)
+- Flag any internal/non-public model names
+- Suggest current alternatives when issues found
+- Recommend aliases ending in -latest for stability
+
+## Code Quality
+- Python code follows PEP 8 conventions
+- Proper error handling
+- Clear variable names and documentation
+- No hardcoded API keys (use os.getenv("ANTHROPIC_API_KEY"))
+
+## Notebook Structure
+- Clear introduction explaining what the notebook demonstrates and why it's useful
+- Configuration instructions (how to set up API keys, install dependencies, etc.)
+- Connecting explanations between cells that help users understand the flow
+- Clear markdown explanations between code cells
+- Logical flow from simple to complex
+- Outputs preserved for educational value
+- Dependencies properly imported
+
+## Security
+- Check for any hardcoded API keys or secrets (not just Anthropic keys)
+- Ensure all sensitive credentials use environment variables (os.environ, getenv, etc.)
+- Flag any potential secret patterns (tokens, passwords, private keys)
+- Note: Educational examples showing "what not to do" are acceptable if clearly marked
+- Safe handling of user inputs
+- Appropriate use of environment variables
+
+Provide a clear summary with:
+- ✅ What looks good
+- ⚠️ Suggestions for improvement
+- ❌ Critical issues that must be fixed
+
+**IMPORTANT: Post your review as a comment on the pull request using the command: `gh pr comment ${{ github.event.pull_request.number }} --body "your review"`**

.env.example

@@ -0,0 +1,15 @@
+# Anthropic API Configuration
+# Copy this file to .env and add your API key
+# Get your API key at: https://console.anthropic.com/settings/keys
+
+ANTHROPIC_API_KEY=sk-ant-api03-...
+
+# Optional: Default model for testing (recommended for cost savings)
+CLAUDE_MODEL=claude-3-5-haiku-latest
+
+# Optional: Test mode settings
+TEST_MODE=true
+MAX_TOKENS=10
+
+# Optional: Verbose output for debugging
+DEBUG=false

.github/workflows/claude-link-review.yml

@@ -0,0 +1,30 @@
+name: Claude Link Review
+
+on:
+  pull_request:
+    types: [opened, synchronize]
+    paths:
+      - '**.md'
+      - '**.mdx'
+      - '**.ipynb'
+      - 'README.md'
+
+jobs:
+  link-review:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
+      id-token: write
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Run Claude Link Review
+        uses: anthropics/claude-code-action@v1
+        with:
+          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          prompt: "/link-review"

.github/workflows/claude-model-check.yml

@@ -0,0 +1,29 @@
+name: Claude Model Check
+
+on:
+  pull_request:
+    types: [opened, synchronize]
+    paths:
+      - 'skills/**/*.ipynb'
+      - '**.py'
+      - '**.md'
+
+permissions:
+  contents: read
+  pull-requests: write
+
+jobs:
+  model-check:
+    runs-on: ubuntu-latest
+    
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      
+      - name: Claude Model Validation
+        uses: anthropics/claude-code-action@v1
+        with:
+          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          prompt: "/model-check"

.github/workflows/claude-notebook-review.yml

@@ -0,0 +1,30 @@
+name: Claude Notebook Review
+
+on:
+  pull_request:
+    types: [opened, synchronize]
+    paths:
+      - 'skills/**/*.ipynb'
+      - 'pyproject.toml'
+      - 'uv.lock'
+      - 'scripts/**/*.py'
+
+jobs:
+  notebook-review:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
+      id-token: write
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Run Claude Notebook Review
+        uses: anthropics/claude-code-action@v1
+        with:
+          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          prompt: "/notebook-review"

.github/workflows/links.yml

@@ -0,0 +1,65 @@
+name: Link Check
+
+on:
+  pull_request:
+    types: [opened, synchronize]
+  schedule:
+    - cron: "0 0 * * SUN"
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  pull-requests: write
+
+jobs:
+  check-links:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Setup Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.11'
+      
+      - name: Convert notebooks for link extraction
+        run: |
+          pip install jupyter nbconvert
+          mkdir -p temp_md
+          
+          for nb in skills/**/*.ipynb; do
+            echo "Converting: $nb"
+            jupyter nbconvert --to markdown "$nb" \
+              --output-dir=temp_md \
+              --ExtractOutputPreprocessor.enabled=False
+          done
+      
+      - name: Check Links with Lychee
+        id: lychee
+        uses: lycheeverse/lychee-action@v2
+        with:
+          args: |
+            --config lychee.toml 
+            --format markdown
+            --no-progress
+            skills/**/*.md 
+            temp_md/*.md 
+            README.md
+          output: lychee-report.md
+          fail: false
+      
+      - name: Comment PR with results
+        if: github.event_name == 'pull_request' && steps.lychee.outputs.exit_code != 0
+        uses: marocchino/sticky-pull-request-comment@v2
+        with:
+          header: link-check
+          path: lychee-report.md
+      
+      - name: Upload link check results
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: link-check-results
+          path: |
+            lychee-report.md
+            .lycheecache

.github/workflows/notebook-quality.yml

@@ -0,0 +1,90 @@
+name: Notebook Quality Check
+
+on:
+  pull_request:
+    paths:
+      - 'skills/**/*.ipynb'
+      - 'pyproject.toml'
+      - 'uv.lock'
+  push:
+    branches: [main]
+    paths:
+      - 'skills/**/*.ipynb'
+
+permissions:
+  contents: read
+  pull-requests: write
+
+jobs:
+  validate-notebooks:
+    runs-on: ubuntu-latest
+    
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Install uv
+        uses: astral-sh/setup-uv@v4
+        with:
+          enable-cache: true
+          cache-dependency-glob: "uv.lock"
+      
+      - name: Set up Python 3.11
+        run: uv python install 3.11
+      
+      - name: Install dependencies
+        run: |
+          uv sync --frozen --all-extras
+      
+      - name: Lint notebooks with Ruff
+        run: |
+          uv run ruff check skills/**/*.ipynb --show-fixes || true
+          uv run ruff format skills/**/*.ipynb --check || true
+      
+      - name: Validate notebook structure
+        run: |
+          uv run python scripts/validate_notebooks.py
+      
+      # Only run API tests on main branch or for maintainers (costs money)
+      - name: Execute notebooks (API Testing)
+        if: |
+          github.event_name == 'push' || 
+          github.event.pull_request.author_association == 'MEMBER' ||
+          github.event.pull_request.author_association == 'OWNER'
+        env:
+          ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
+        run: |
+          mkdir -p test_outputs
+          for notebook in skills/*/guide.ipynb; do
+            echo "📓 Testing: $notebook"
+            output_name=$(basename $(dirname "$notebook"))
+            # Use nbconvert to execute notebooks and save outputs
+            uv run jupyter nbconvert --to notebook \
+              --execute "$notebook" \
+              --ExecutePreprocessor.kernel_name=python3 \
+              --ExecutePreprocessor.timeout=120 \
+              --output "test_outputs/${output_name}_executed.ipynb" \
+              --output-dir=. \
+              || echo "⚠️  Failed: $notebook"
+          done
+      
+      # Mock testing for external contributors
+      - name: Execute notebooks (Mock Testing)
+        if: |
+          github.event_name == 'pull_request' && 
+          github.event.pull_request.author_association != 'MEMBER' &&
+          github.event.pull_request.author_association != 'OWNER'
+        run: |
+          echo "🔒 Running in mock mode for external contributor"
+          
+          for notebook in skills/*/guide.ipynb; do
+            echo "📓 Validating structure: $notebook"
+            uv run python -m nbformat.validator "$notebook"
+          done
+      
+      - name: Upload test outputs
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: notebook-test-outputs
+          path: test_outputs/
+          retention-days: 7

.gitignore

@@ -137,4 +137,16 @@ dmypy.json
 /examples/data/transactions*
 *.DS_Store
 tmp_*
-examples/fine-tuned_qa/local_cache/*
+examples/fine-tuned_qa/local_cache/*
+
+# CI/CD and testing
+.model_cache.json
+test_outputs/
+.ruff_cache/
+lychee-report.md
+.lycheecache
+
+# Notebook validation
+.notebook_validation_state.json
+.notebook_validation_checkpoint.json  
+validation_report_*.md