afdbc472a4
Install Smoke: shallow docs-scope checkout
2026-03-06 14:15:15 -05:00
067ec4f0f9
CI: shallow scope checkouts
2026-03-06 14:15:15 -05:00
9a1a63a667
chore: disable contributor labels
2026-03-06 12:37:14 -06:00
3e967cbc22
fix: add stale workflow fallback run
2026-03-06 12:15:28 -06:00
b782538743
fix: tune stale workflow limits
2026-03-06 12:08:53 -06:00
e3390bfb70
CI: add Barnacle r: too-many-prs guard
...
Co-authored-by: Vincent Koc <vincentkoc@ieee.org>
2026-03-06 11:37:00 -06:00
57f19f0d5c
container builds: opt-in extension deps via OPENCLAW_EXTENSIONS build arg ( #32223 )
...
* Docker: opt-in extension deps via OPENCLAW_EXTENSIONS build arg
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Signed-off-by: sallyom <somalley@redhat.com>
* CI: clarify extension smoke scope
* Tests: allow digest-pinned multi-stage FROM lines
* Changelog: note container extension preinstall option
---------
Signed-off-by: sallyom <somalley@redhat.com>
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
Co-authored-by: Vincent Koc <vincentkoc@ieee.org>
2026-03-06 12:18:42 -05:00
6a9deb21b8
CI: cover skill and extension tests
2026-03-06 11:21:03 -05:00
9917a3fb77
CI: run changed-scope on main pushes
2026-03-06 10:51:32 -05:00
a820c63912
CI: drop unused install-smoke bootstrap
2026-03-06 10:40:41 -05:00
2a888c5703
ci: enable stale workflow
2026-03-02 23:21:34 -06:00
d45aa68ae8
CI: disable flaky sticky disk mount for Windows pnpm setup
2026-03-02 20:34:10 -08:00
be5de30de5
CI: start push test lanes earlier and drop check gating
2026-03-02 20:29:06 -08:00
a5a6952bf2
CI: reduce critical path for check build and windows jobs
2026-03-02 20:11:28 -08:00
5ef04d2822
CI: speed up Windows dependency warmup
2026-03-02 20:11:12 -08:00
a951ecdd7b
CI: shard Windows tests into sixths and skip cache restore
2026-03-02 19:54:52 -08:00
99a48aad08
CI: increase checks-windows test shards to 4
2026-03-02 19:32:46 -08:00
8b80848ae9
CI: increase checks-windows test shards to 3
2026-03-02 19:31:27 -08:00
153a4f55db
CI: reduce pre-test Windows setup latency
2026-03-02 19:30:29 -08:00
2c6616b830
CI: gate Windows checks by windows-relevant scope ( #32456 )
...
* CI: add windows scope output for changed-scope
* Test: cover windows scope gating in changed-scope
* CI: gate checks-windows by windows scope
* Docs: update CI windows scope and runner label
* CI: move checks-windows to 32 vCPU runner
* Docs: align CI windows runner with workflow
2026-03-02 19:10:58 -08:00
f2c37e543e
CI: optimize Windows lane by splitting bundle and dropping duplicate lanes
2026-03-02 18:58:43 -08:00
806803b7ef
feat(secrets): expand SecretRef coverage across user-supplied credentials ( #29580 )
...
* feat(secrets): expand secret target coverage and gateway tooling
* docs(secrets): align gateway and CLI secret docs
* chore(protocol): regenerate swift gateway models for secrets methods
* fix(config): restore talk apiKey fallback and stabilize runner test
* ci(windows): reduce test worker count for shard stability
* ci(windows): raise node heap for test shard stability
* test(feishu): make proxy env precedence assertion windows-safe
* fix(gateway): resolve auth password SecretInput refs for clients
* fix(gateway): resolve remote SecretInput credentials for clients
* fix(secrets): skip inactive refs in command snapshot assignments
* fix(secrets): scope gateway.remote refs to effective auth surfaces
* fix(secrets): ignore memory defaults when enabled agents disable search
* fix(secrets): honor Google Chat serviceAccountRef inheritance
* fix(secrets): address tsgo errors in command and gateway collectors
* fix(secrets): avoid auth-store load in providers-only configure
* fix(gateway): defer local password ref resolution by precedence
* fix(secrets): gate telegram webhook secret refs by webhook mode
* fix(secrets): gate slack signing secret refs to http mode
* fix(secrets): skip telegram botToken refs when tokenFile is set
* fix(secrets): gate discord pluralkit refs by enabled flag
* fix(secrets): gate discord voice tts refs by voice enabled
* test(secrets): make runtime fixture modes explicit
* fix(cli): resolve local qr password secret refs
* fix(cli): fail when gateway leaves command refs unresolved
* fix(gateway): fail when local password SecretRef is unresolved
* fix(gateway): fail when required remote SecretRefs are unresolved
* fix(gateway): resolve local password refs only when password can win
* fix(cli): skip local password SecretRef resolution on qr token override
* test(gateway): cast SecretRef fixtures to OpenClawConfig
* test(secrets): activate mode-gated targets in runtime coverage fixture
* fix(cron): support SecretInput webhook tokens safely
* fix(bluebubbles): support SecretInput passwords across config paths
* fix(msteams): make appPassword SecretInput-safe in onboarding/token paths
* fix(bluebubbles): align SecretInput schema helper typing
* fix(cli): clarify secrets.resolve version-skew errors
* refactor(secrets): return structured inactive paths from secrets.resolve
* refactor(gateway): type onboarding secret writes as SecretInput
* chore(protocol): regenerate swift models for secrets.resolve
* feat(secrets): expand extension credential secretref support
* fix(secrets): gate web-search refs by active provider
* fix(onboarding): detect SecretRef credentials in extension status
* fix(onboarding): allow keeping existing ref in secret prompt
* fix(onboarding): resolve gateway password SecretRefs for probe and tui
* fix(onboarding): honor secret-input-mode for local gateway auth
* fix(acp): resolve gateway SecretInput credentials
* fix(secrets): gate gateway.remote refs to remote surfaces
* test(secrets): cover pattern matching and inactive array refs
* docs(secrets): clarify secrets.resolve and remote active surfaces
* fix(bluebubbles): keep existing SecretRef during onboarding
* fix(tests): resolve CI type errors in new SecretRef coverage
* fix(extensions): replace raw fetch with SSRF-guarded fetch
* test(secrets): mark gateway remote targets active in runtime coverage
* test(infra): normalize home-prefix expectation across platforms
* fix(cli): only resolve local qr password refs in password mode
* test(cli): cover local qr token mode with unresolved password ref
* docs(cli): clarify local qr password ref resolution behavior
* refactor(extensions): reuse sdk SecretInput helpers
* fix(wizard): resolve onboarding env-template secrets before plaintext
* fix(cli): surface secrets.resolve diagnostics in memory and qr
* test(secrets): repair post-rebase runtime and fixtures
* fix(gateway): skip remote password ref resolution when token wins
* fix(secrets): treat tailscale remote gateway refs as active
* fix(gateway): allow remote password fallback when token ref is unresolved
* fix(gateway): ignore stale local password refs for none and trusted-proxy
* fix(gateway): skip remote secret ref resolution on local call paths
* test(cli): cover qr remote tailscale secret ref resolution
* fix(secrets): align gateway password active-surface with auth inference
* fix(cli): resolve inferred local gateway password refs in qr
* fix(gateway): prefer resolvable remote password over token ref pre-resolution
* test(gateway): cover none and trusted-proxy stale password refs
* docs(secrets): sync qr and gateway active-surface behavior
* fix: restore stability blockers from pre-release audit
* Secrets: fix collector/runtime precedence contradictions
* docs: align secrets and web credential docs
* fix(rebase): resolve integration regressions after main rebase
* fix(node-host): resolve gateway secret refs for auth
* fix(secrets): harden secretinput runtime readers
* gateway: skip inactive auth secretref resolution
* cli: avoid gateway preflight for inactive secret refs
* extensions: allow unresolved refs in onboarding status
* tests: fix qr-cli module mock hoist ordering
* Security: align audit checks with SecretInput resolution
* Gateway: resolve local-mode remote fallback secret refs
* Node host: avoid resolving inactive password secret refs
* Secrets runtime: mark Slack appToken inactive for HTTP mode
* secrets: keep inactive gateway remote refs non-blocking
* cli: include agent memory secret targets in runtime resolution
* docs(secrets): sync docs with active-surface and web search behavior
* fix(secrets): keep telegram top-level token refs active for blank account tokens
* fix(daemon): resolve gateway password secret refs for probe auth
* fix(secrets): skip IRC NickServ ref resolution when NickServ is disabled
* fix(secrets): align token inheritance and exec timeout defaults
* docs(secrets): clarify active-surface notes in cli docs
* cli: require secrets.resolve gateway capability
* gateway: log auth secret surface diagnostics
* secrets: remove dead provider resolver module
* fix(secrets): restore gateway auth precedence and fallback resolution
* fix(tests): align plugin runtime mock typings
---------
Co-authored-by: Peter Steinberger <steipete@gmail.com>
2026-03-03 02:58:20 +00:00
24fd6c8278
CI: use Blacksmith docker builder in sandbox smoke
2026-03-02 18:48:18 -08:00
5cffbbda32
CI: use Blacksmith docker builder in install smoke
2026-03-02 18:48:18 -08:00
85d17fd429
CI: migrate docker release build cache to Blacksmith
2026-03-02 18:48:18 -08:00
96d56a9721
CI: enable sticky-disk pnpm cache on Linux CI jobs
2026-03-02 18:48:18 -08:00
6bf1abf603
ci: use valid Blacksmith Windows runner label
2026-03-03 02:47:06 +00:00
40f2e2b8a6
ci: scale Windows CI runner and test workers
2026-03-03 02:42:32 +00:00
59567a8c5d
ci: move changed-scope logic into tested script
2026-03-03 02:37:23 +00:00
0fd77c9856
refactor: modularize plugin runtime and test hooks
2026-03-03 02:06:58 +00:00
1a42ea3abf
fix(auto-reply): normalize block-reply callback to Promise for timeout path ( #31200 )
...
* Auto-reply: wrap block reply callback in Promise.resolve for timeout safety
* Build: add strict smoke build script for CI regression gating
* CI: gate strict TS smoke build in check workflow
* docs(changelog): add auto-reply block reply timeout fix under Unreleased
* docs(changelog): credit original #19779 contributor and vincentkoc
2026-03-01 19:23:38 -08:00
030565b18c
Docker: add OCI base-image labels and document base-image metadata ( #31196 )
...
* Docker: add OCI base image labels
* Docs(Docker): document base image metadata context
* Changelog: note Docker base annotation docs update
* Changelog: add author credit for Docker base annotations
* Update docker.md
* Docker: add OCI source and docs labels
* CI(Docker): publish OCI revision/version labels
* Docs(Docker): list OCI image annotations
* Changelog: expand OCI annotation coverage note
* Docker: set OCI license annotation to MIT
* Docs(Docker): align OCI license annotation to MIT
* Docker: note docs sync path for OCI annotations
* Docker: normalize OCI label block indentation
2026-03-01 19:22:44 -08:00
94a5d28d26
CI: remove Vitest JSON report artifacts ( #30976 )
...
* CI: remove vitest JSON report upload steps
* Tests: stop injecting vitest JSON reporter
* Tests: remove vitest slowest report script
2026-03-01 13:03:06 -08:00
ff563eef0f
Issues: unify bug form and subtype auto-labeling (openclaw#30733) thanks @Takhoffman
...
Verified:
- pnpm build
- pnpm check
- pnpm test:macmini
Co-authored-by: Takhoffman <781889+Takhoffman@users.noreply.github.com>
2026-03-01 09:20:57 -06:00
54c46b7c8c
temp disable stale workflow to help with ratelimits
2026-02-28 22:51:34 -06:00
3685ccb536
chore: lock inactive closed issues
2026-02-28 20:48:02 -06:00
a5b1e86535
chore: add fallback GitHub App token
2026-02-27 22:49:58 -06:00
645791c35e
ci: add timeout for windows checks job
2026-02-27 16:20:02 +00:00
e8e673992a
CI: smoke test root Dockerfile openclaw CLI ( #28308 )
2026-02-26 23:54:17 -05:00
03159f3942
CI: add maintainer ping auto-response
2026-02-26 13:30:12 -06:00
72adf2458b
CI: shard Windows test lane for faster CI critical path ( #27234 )
...
Merged via /review-pr -> /prepare-pr -> /merge-pr.
Prepared head SHA: f7c41089e0
2026-02-26 00:33:36 -06:00
7493f11b40
fix(ci): allow legacy patch tags to publish docker latest
2026-02-26 09:38:13 +05:30
41314c691d
fix(ci): gate docker latest tag to stable release format
2026-02-26 09:38:13 +05:30
bf70614943
fix(ci): publish latest tag for stable docker release
2026-02-26 09:38:13 +05:30
e9750104b2
ui: block svg data image opens and harden tests
2026-02-24 22:28:58 +00:00
8897c9d53a
ci: install pyyaml in skills-python job
2026-02-23 10:44:18 +00:00
1be8897339
Security: enforce pre-commit security checks in hooks and CI ( #24265 )
...
* chore(pre-commit): add security audit hooks
* ci(security): enforce security hooks in ci
* docs(changelog): add security hooks and ci attribution
2026-02-23 02:20:00 -05:00
76dabd5214
CI/Skills: add Python lint and test harness for skills scripts ( #24246 )
...
* CI: add skills Python checks job
* Chore: add Python lint and test pre-commit hooks
* Tests: fix skill-creator package test import path
* Chore: add Python tooling config for skills scripts
* CI: run all skills Python tests
* Chore: run all skills Python tests in pre-commit
* Chore: enable pytest discovery for all skills tests
* Changelog: note skills Python quality harness
2026-02-23 01:52:00 -05:00
d9844c6afa
CI: remove docs spellcheck step ( #22738 )
2026-02-21 10:58:34 -05:00
92ac6c95cc
CI: format github workflow ( #22497 )
2026-02-21 02:12:36 -05:00
3002be76e4
docs: add custom spellcheck dictionary and fix docs typos ( #22457 )
...
* docs: fix typos and add docs spellcheck workflow
* docs: add changelog entry for docs spellcheck updates
* docs: fix FAQ TOC fragment links for markdownlint
* docs: fix TOC nesting and spellcheck dictionary flags
2026-02-21 01:35:35 -05:00
d3bb924709
chore(deadcode): add deadcode scanning and remove unused lockfile deps ( #22468 )
...
* chore(deadcode): add deadcode scanning and remove unused lockfile deps
* chore(changelog): mention deadcode CI scan pass
* ci: disable deadcode job temporarily
* docs(changelog): add PR ref and thanks for deadcode scan entry
* ci: comment out deadcode job condition while keeping it disabled
2026-02-21 01:29:20 -05:00
df002ef840
Workflow: clarify dirty PR response
2026-02-20 16:32:05 -06:00
ce1f0c0a10
ci: move workflows to blacksmith 16vcpu runners
2026-02-19 17:25:15 +01:00
2c05cbb43e
fix(ci): use versioned actionlint checksum asset
2026-02-19 17:07:20 +01:00
2435499862
ci: move blacksmith runners to 8 vcpu
2026-02-19 16:50:22 +01:00
869ebbce46
fix(ci): verify actionlint release checksum before install
2026-02-19 16:33:32 +01:00
9130fd2b06
ci: harden workflow action input handling
2026-02-19 15:27:48 +01:00
18179fc2c1
ci: move bun push-skip condition out of job-level matrix if
2026-02-19 08:59:58 +00:00
47bfb765a1
ci: skip bun matrix steps on push runs
2026-02-19 08:57:20 +00:00
f57ba32f88
ci: skip bun matrix lane on push
2026-02-19 08:54:30 +00:00
586b1f6ee6
ci: drop docker metadata action to avoid API throttling
2026-02-19 08:44:32 +00:00
13f2fa0c5c
ci: avoid bun setup API flake in node checks
2026-02-19 08:41:31 +00:00
072b16b58f
ci: use git context for docker metadata extraction
2026-02-19 08:37:36 +00:00
647a46a061
ci: skip bun setup for windows checks
2026-02-19 08:36:08 +00:00
2cbf15eb66
ci: pin bun setup version to avoid API rate-limit flakes
2026-02-19 08:04:18 +00:00
5f2bcfc4d2
ci: skip bun bootstrap in check and docs-check jobs
2026-02-19 07:58:54 +00:00
2e3219ff66
Update auto-response message for third-party extensions
2026-02-17 10:47:22 -06:00
f17b42d2f8
CI: remove formal models conformance workflow ( #19007 )
2026-02-16 23:52:24 -08:00
e391827ea9
CI: use self-hosted for labeler/automation
2026-02-16 22:16:20 -06:00
ff2e790e03
CI: increase stale operations per run
2026-02-16 18:06:35 -06:00
314f193030
fix(ci): run scope detection on blacksmith runners
2026-02-16 09:56:11 +01:00
1e4cf489e0
fix(ci): keep main runs alive while coalescing newer pushes
2026-02-16 09:53:36 +01:00
ada7a6289f
fix(ci): dedupe docker release runs by ref
2026-02-16 09:50:37 +01:00
2983ef0243
fix(ci): use ref-based concurrency across workflows
2026-02-16 09:47:07 +01:00
025d4152d1
fix(ci): key concurrency by ref instead of sha
2026-02-16 09:42:58 +01:00
3daaa19426
fix(ci): use JDK 17 for Android SDK setup
2026-02-16 09:36:54 +01:00
cd44a0d01e
fix: codex and similar processes keep dying on pty, solved by refactoring process spawning ( #14257 )
...
* exec: clean up PTY resources on timeout and exit
* cli: harden resume cleanup and watchdog stalled runs
* cli: productionize PTY and resume reliability paths
* docs: add PTY process supervision architecture plan
* docs: rewrite PTY supervision plan as pre-rewrite baseline
* docs: switch PTY supervision plan to one-go execution
* docs: add one-line root cause to PTY supervision plan
* docs: add OS contracts and test matrix to PTY supervision plan
* docs: define process-supervisor package placement and scope
* docs: tie supervisor plan to existing CI lanes
* docs: place PTY supervisor plan under src/process
* refactor(process): route exec and cli runs through supervisor
* docs(process): refresh PTY supervision plan
* wip
* fix(process): harden supervisor timeout and PTY termination
* fix(process): harden supervisor adapters env and wait handling
* ci: avoid failing formal conformance on comment permissions
* test(ui): fix cron request mock argument typing
* fix(ui): remove leftover conflict marker
* fix: supervise PTY processes (#14257 ) (openclaw#14257) (thanks @onutc)
2026-02-16 02:32:05 +01:00
4bdb857eca
chore: Use proper pnpm caching in one CI step.
2026-02-16 09:07:09 +09:00
6c33bd9c67
ci: reduce node test OOM on linux
2026-02-15 19:41:39 +00:00
c8c8fc4530
ci(sandbox): add sandbox-common smoke
2026-02-15 00:57:13 +01:00
68b00a5388
CI: add dirty label auto-response
2026-02-14 11:22:00 -06:00
f6232bc2b4
CI: close invalid items without response
2026-02-13 13:41:13 -06:00
aec3221391
chore: revert upstream labeler.yml to unblock fork push
...
The fork's OAuth token lacks the workflow scope required to push
changes to .github/workflows/. Reverting the upstream labeler.yml
change so the branch can be force-pushed. The PR merge into main
will pick up the correct upstream version automatically.
2026-02-13 19:43:20 +01:00
2f9c523bbe
CI: run auto-response on label events ( #15657 )
2026-02-13 12:14:49 -06:00
684578ecf6
CI: drop trusted label for experienced contributors ( #15605 )
2026-02-13 11:23:05 -06:00
4aa035f38f
CI: gate auto-response with trigger label
2026-02-12 15:41:16 -06:00
978effcf26
CI: close PRs with excessive labels
2026-02-12 15:35:32 -06:00
282fb9ad52
CI: handle search 422 in labeler
2026-02-12 14:58:25 -06:00
47cd7e29ef
CI: add labeler backfill dispatch
2026-02-12 14:43:14 -06:00
1f41f7b1e6
CI: add contributor tier labels
2026-02-12 14:33:30 -06:00
8fce7dc9b6
perf(test): add vitest slowest report artifact
2026-02-12 17:16:42 +00:00
7a0591ef87
fix(whatsapp): allow media-only sends and normalize leading blank payloads ( #14408 )
...
Co-authored-by: Tak Hoffman <781889+Takhoffman@users.noreply.github.com>
2026-02-11 23:21:21 -06:00
c28cbac512
CI: add PR size autolabel workflow ( #14410 )
2026-02-11 21:12:27 -06:00
c2178e2522
chore: Cleanup useless CI job.
2026-02-12 09:37:45 +09:00
cfd1fa4bd2
Revert "CI: extend stale timelines to be contributor-friendly ( #13209 )"
...
This reverts commit 656a467518
2026-02-10 10:24:28 -06:00
bf308cf6a8
CI: expand Docker Release paths-ignore to skip on any markdown
2026-02-10 00:39:26 -08:00
656a467518
CI: extend stale timelines to be contributor-friendly ( #13209 )
...
Extends stale automation timelines:
- Issues: 30 days stale → 14 days close (44 total, was 12)
- PRs: 14 days stale → 7 days close (21 total, was 8)
PR #13209
2026-02-09 22:34:36 -08:00
e7f0769c82
CI: configure stale automation
2026-02-09 23:37:12 -06:00
f38dfe4544
Chore: add testflight auto-response
2026-02-09 22:52:46 -06:00
Vincent Koc
Shadow
Sally O'Malley
Josh Avant
Peter Steinberger
Tak Hoffman
Ayaan Zaidi
Shakker
Julia HeySalad
Shadow
Vignesh
Onur
cpojer
Yi LIU
Karim Naguib
quotentiroler
max
Shadow