229eb72cf6
build: exclude private QA from npm package
2026-04-15 09:39:51 -07:00
890e299e30
fix(ci): align docker smoke cache tests and reuse built dist
2026-04-15 12:12:58 +01:00
e99a24d645
fix(security): redact secrets in exec approval prompts ( #61077 ) ( #64790 )
...
Merged via squash.
Prepared head SHA: 324202d37efa8ec332ba3873fb9e7a4bd1c49558
Co-authored-by: feiskyer <676637+feiskyer@users.noreply.github.com >
Co-authored-by: vincentkoc <25068+vincentkoc@users.noreply.github.com >
Reviewed-by: @vincentkoc
2026-04-15 11:02:10 +01:00
7821fae05d
test(types): fix perf test follow-up mocks
2026-04-15 10:36:41 +01:00
7320dfc1ff
test(perf): speed up slow cron infra and secrets specs
2026-04-15 10:22:43 +01:00
ea4889ecdc
fix(update): keep dist verify compat-safe
2026-04-15 09:39:18 +01:00
9e665e4328
fix(ts): use typed runtime semver helpers
2026-04-15 09:20:26 +01:00
7f35f76914
fix(update): harden dist inventory handling
2026-04-15 09:16:46 +01:00
a1d4eb255a
fix(inventory): omit qa-matrix dist artifacts
2026-04-15 13:22:04 +05:30
2791b00e72
fix(build): move compat sidecars into src
2026-04-15 13:22:04 +05:30
8b79141997
fix(update): infer legacy bundled sidecars
2026-04-15 13:22:04 +05:30
2a8226f8e2
fix(postinstall): reject dist symlink escapes
2026-04-15 13:22:04 +05:30
60e2ccbd5b
fix(update): preserve legacy downgrade verify
2026-04-15 13:22:04 +05:30
aaa6b05f3b
fix(update): preserve legacy global verify
2026-04-15 13:22:04 +05:30
5e7306bcfc
fix(update): filter dist inventory to packed files
2026-04-15 13:22:04 +05:30
18d0af3a13
fix(update): verify packaged dist inventory
2026-04-15 13:22:04 +05:30
97ee0c6fd3
perf(migrations): trim legacy migration and bind cold paths
2026-04-15 00:38:45 +01:00
87ef32c937
perf(tests): avoid bundled channel cold-loads in hot paths
2026-04-15 00:11:43 +01:00
e7dfc88bfa
fix(infra): resolve opened file paths by identity
2026-04-14 22:49:31 +01:00
c6c222ba84
perf(tests): trim hot wizard and infra setup work
2026-04-14 22:42:32 +01:00
d21f07a39e
fix: allow workspace-rooted absolute media paths in auto-reply ( #66689 )
...
Merged via squash.
Prepared head SHA: 48206b56272454a6c60329e542f5560c83afd2ba
Co-authored-by: joelnishanth <140015627+joelnishanth@users.noreply.github.com >
Co-authored-by: gumadeiras <5599352+gumadeiras@users.noreply.github.com >
Reviewed-by: @gumadeiras
2026-04-14 17:04:31 -04:00
472bcbbccc
fix(agents): tighten workspace file opens ( #66636 )
...
* fix(agents): tighten workspace file opens
* fix(agents): clarify symlink rejection tests
* fix(agents): surface unsafe identity reads
* fix(agents): use non-blocking opens for identity reads and write-mode probes
* fix(fssafe): restore symlink read identity check
* fix(worklog): append comment resolution status
* fix(fssafe): close afterOpen handle leaks
* fix(worklog): append comment resolution follow-up
* fix(worklog): drop internal user file
* fix(agents): rethrow unexpected errors in agents.files.get
* changelog: note agents.files fs-safe routing + fd-first realpath (#66636 )
* fix(agents): rethrow unexpected errors in agents.files.set too
Match the narrow-SafeOpenError catch pattern that agents.files.get
(commit 633b8f92) and writeWorkspaceFileOrRespond already use, so a
real OS error (ENOSPC, EACCES, EBUSY, ...) surfaces through normal
gateway error handling instead of being masked as
'unsafe workspace file'.
* test(agents): match fsStat/fsLstat mock signatures
The mock functions are declared as
vi.fn(async (..._args: unknown[]) => Stats | null)
so mockImplementation callbacks must accept ...unknown[], not a
narrowed (filePath: string) argument. The narrower signature
works at runtime but trips tsgo's strict type check; switch to
args[0] unpacking so the callbacks match the hoisted mock shape.
---------
Co-authored-by: Devin Robison <drobison@nvidia.com >
2026-04-14 14:06:15 -06:00
2aaa17dc6f
fix(ci): restore main typecheck
2026-04-14 18:53:14 +01:00
f190bf0a07
Fix Matrix media alias normalization
2026-04-14 12:36:13 -04:00
450c3a8ed2
fix(security): include Matrix avatar params in sandbox media normalization + preserve mxc:// URLs + log gmail watcher stop failures [AI-assisted] ( #64701 )
...
Merged via squash.
Prepared head SHA: 54de3f019b8977826d1a40acb827568835bce780
Co-authored-by: slepybear <108438815+slepybear@users.noreply.github.com >
Co-authored-by: gumadeiras <5599352+gumadeiras@users.noreply.github.com >
Reviewed-by: @gumadeiras
2026-04-14 12:22:29 -04:00
e58d50b7a8
fix(telegram): trust explicit proxy DNS for media downloads ( #66461 )
2026-04-14 10:42:33 +01:00
6ee8e194c0
fix(media-understanding): auto-upgrade provider HTTP helper to trusted env proxy mode ( #66458 )
...
* fix(media-understanding): auto-upgrade provider HTTP helper to trusted env proxy mode
* Update CHANGELOG.md
2026-04-14 10:29:09 +01:00
aa0dc118f1
fix: preserve subagent registry runtime import path across source and dist ( #66420 )
...
* fix(build): correct subagent registry runtime import path
* fix: correct subagent registry runtime import path (#66420 )
* fix: preserve subagent registry runtime import path across source and dist (#66420 )
2026-04-14 13:52:24 +05:30
6a5ff83b24
fix(build): include subagent-registry.runtime.js in dist output ( #66205 )
...
* fix: ensure subagent-registry.runtime.js is included in dist output
* fix(build): ship subagent registry runtime
* Update CHANGELOG.md
---------
Co-authored-by: Vincent Koc <vincentkoc@ieee.org >
2026-04-14 09:00:40 +01:00
36820f1676
Agents: fix Windows drive path join for read/sandbox tools ( #54039 ) ( #66193 )
...
* Agents: fix Windows drive path join for read/sandbox tools (#54039 )
* fix(agents): harden Windows file URL path mapping
* fix(agents): reject encoded file URL separators
* Update CHANGELOG.md
---------
Co-authored-by: Vincent Koc <vincentkoc@ieee.org >
2026-04-14 02:20:25 +01:00
aac84372ab
fix(outbound): suppress relay status placeholder leaks
2026-04-14 01:27:06 +01:00
955270fb73
fix(ci): repair telegram ui and watch regressions
2026-04-13 23:49:59 +01:00
48aae82bbc
fix(outbound): replay queued session context ( #66025 )
...
* fix(outbound): preserve replay session context
* fix(outbound): remove user work log
* changelog: note outbound session-context replay fix (#66025 )
---------
Co-authored-by: Devin Robison <drobison@nvidia.com >
2026-04-13 13:30:42 -06:00
31281bc92f
fix(heartbeat): force owner downgrade for untrusted hook:wake system events [AI-assisted] ( #66031 )
...
* fix: address issue
* fix: address PR review feedback
* fix: address review-pr skill feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* fix: address PR review feedback
* docs: add changelog entry for PR merge
2026-04-14 00:14:17 +05:30
114ff23f2a
perf(config): skip shell env fallback for explicit empty vars
2026-04-13 19:09:11 +01:00
b6abd68a29
perf(channels): split hot-path message channel normalization
2026-04-13 18:22:12 +01:00
96a6f55da8
perf(utils): isolate message channel normalization
2026-04-13 17:34:46 +01:00
be68309e7b
perf(outbound): narrow loaded target channel reads
2026-04-13 17:34:27 +01:00
eed595bba9
perf(channels): isolate loaded target parsing
2026-04-13 17:28:09 +01:00
b42c999633
fix(heartbeat): preserve Telegram topic routing for isolated heartbeats ( #66035 )
...
Merged via squash.
Prepared head SHA: 83b986a4c342a7d75a9446918f1bd992152d1900
Co-authored-by: mbelinky <132747814+mbelinky@users.noreply.github.com >
Co-authored-by: mbelinky <132747814+mbelinky@users.noreply.github.com >
Reviewed-by: @mbelinky
2026-04-13 18:26:19 +02:00
6eb04c8aab
perf(outbound): isolate id-like target resolution
2026-04-13 17:17:26 +01:00
08ca248378
perf(outbound): use loaded-only channel plugin reads
2026-04-13 17:12:27 +01:00
ae3d731810
perf(outbound): use read-only channel registry seam
2026-04-13 17:05:53 +01:00
74f2c4a56b
fix: stop repeated unknown-tool loops ( #65922 )
...
Merged via squash.
Prepared head SHA: f352a270a6c0f36888223314ee279c42cff05408
Reviewed-by: @osolmaz
2026-04-13 17:42:11 +02:00
418cb55cb9
perf(infra): cache login shell env probes
2026-04-13 16:12:33 +01:00
c15b295a85
Run context-engine turn maintenance as idle-aware background work ( #65233 )
...
Merged via squash.
Prepared head SHA: e9f6c679ba8709a1be32a18b6963862d2c6a5243
Co-authored-by: 100yenadmin <239388517+100yenadmin@users.noreply.github.com >
Co-authored-by: jalehman <550978+jalehman@users.noreply.github.com >
Reviewed-by: @jalehman
2026-04-13 06:50:22 -07:00
666f48d9b8
fix(security): remove busybox/toybox from interpreter-like safe bins [AI-assisted] ( #65713 )
...
* fix: address issue
* fix: address review feedback
* fix: address PR review feedback
* fix: address review-pr skill feedback
* fix: address PR review feedback
* docs: add changelog entry for PR merge
2026-04-13 12:03:15 +05:30
0a105c0900
fix(approval-auth): prevent empty approver list from granting explicit approval authorization [AI] ( #65714 )
...
* fix: address issue
* fix: address PR review feedback
* fix: address PR review feedback
* docs: add changelog entry for PR merge
2026-04-13 12:00:13 +05:30
8f8492d172
fix(security): broaden shell-wrapper detection and block env-argv assignment injection [AI-assisted] ( #65717 )
...
* fix: address issue
* fix: address PR review feedback
* fix: address PR review feedback
* docs: add changelog entry for PR merge
2026-04-13 11:48:42 +05:30
c4764095f8
Outbound: centralize payload normalization plan
2026-04-12 19:52:24 -05:00
Peter Steinberger