349d3e8289
test(plugin-sdk): extract direct helper seams
2026-04-03 21:42:04 +09:00
49936f6066
refactor: move ollama synthetic auth precedence into extension
2026-04-03 21:25:02 +09:00
f59d0eac68
refactor(plugin-runtime): remove plugin-specific core seams
2026-04-03 13:08:39 +01:00
d9aa88dd6c
test(bluebubbles): split channel status seam
2026-04-03 20:46:42 +09:00
dc6e041cfe
test(bluebubbles): narrow monitor normalize number parsing
2026-04-03 20:36:24 +09:00
5400980305
test(plugin-sdk): tighten boundary guardrails
2026-04-03 11:35:37 +01:00
2766c27b2a
refactor(plugin-sdk): genericize web channel runtime seams
2026-04-03 11:17:28 +01:00
122e6f0f79
fix(plugins): route runtime imports through sdk facades
2026-04-03 11:07:31 +01:00
355dc7f3a8
fix(msteams): avoid discord approval auth import cycle
2026-04-03 10:55:47 +01:00
726bfd3434
fix(plugin-sdk): export ssrf policy type
2026-04-03 18:47:31 +09:00
1bba19decb
perf(msteams): narrow secret and ssrf runtime seams
2026-04-03 18:47:31 +09:00
2ca97a7d48
docs(plugin-sdk): refresh seam cleanup docs
2026-04-03 10:45:11 +01:00
f2d7a825b1
refactor(plugin-sdk): remove channel-specific sdk seams
2026-04-03 10:45:10 +01:00
1efa923ab8
Matrix: add native exec approvals ( #58635 )
...
Merged via squash.
Prepared head SHA: d9f048e827
2026-04-02 21:08:54 -04:00
694d12a90b
refactor: apply context visibility across channels
2026-04-03 04:34:57 +09:00
35e1605147
feat: add configurable context visibility
2026-04-03 04:34:57 +09:00
5874a387ae
fix(windows): reject unresolved cmd wrappers ( #58436 )
...
* fix(windows): reject unresolved cmd wrappers
* fix(windows): add wrapper policy coverage
* fix(windows): document wrapper fallback migration
* fix(windows): drop changelog entry from pr
* chore: add changelog for Windows wrapper fail-closed behavior
---------
Co-authored-by: Devin Robison <drobison@nvidia.com>
Co-authored-by: Devin Robison <drobison00@users.noreply.github.com>
2026-04-02 11:35:50 -06:00
d5865bbcc2
fix: decouple approval availability from native delivery enablement ( #59620 )
...
getActionAvailabilityState in createApproverRestrictedNativeApprovalAdapter
was gating on both hasApprovers AND isNativeDeliveryEnabled, causing
Telegram exec approvals to report "not allowed" when
channels.telegram.execApprovals.target was configured but
execApprovals.enabled was not explicitly true. The availability check
should only depend on whether approvers exist; native delivery mode is
a routing concern handled downstream.
2026-04-03 02:21:17 +09:00
774beb8e5c
refactor(plugin-sdk): add task domain runtime surfaces ( #59805 )
...
* refactor(plugin-sdk): add task domain runtime views
* chore(plugin-sdk): refresh api baseline
* fix(plugin-sdk): preserve task runtime owner isolation
2026-04-03 02:11:21 +09:00
17f6626ffe
feat(approvals): auto-enable native chat approvals
2026-04-02 17:30:40 +01:00
7fea8250fb
fix(approvals): use canonical decision values in interactive button payloads
2026-04-02 23:35:23 +09:00
ef86edacf7
fix: harden plugin auto-enable empty config handling
2026-04-02 15:19:53 +01:00
4f692190b4
fix(config): tolerate missing facade boundary config
2026-04-02 23:04:53 +09:00
bb3f17fc02
refactor(plugins): drop generic status report alias ( #59700 )
2026-04-02 22:59:25 +09:00
b0f94a227b
refactor(providers): normalize transport policy wiring ( #59682 )
...
* refactor(providers): normalize transport policy wiring
* fix(providers): address transport policy review
* fix(providers): harden transport overrides
* fix(providers): keep env proxy tls separate
* fix(changelog): note provider transport policy hardening
2026-04-02 22:54:34 +09:00
def5b954a8
feat(plugins): surface imported runtime state in status tooling ( #59659 )
...
* feat(plugins): surface imported runtime state
* fix(plugins): keep status imports snapshot-only
* fix(plugins): keep status snapshots manifest-only
* fix(plugins): restore doctor load checks
* refactor(plugins): split snapshot and diagnostics reports
* fix(plugins): track imported erroring modules
* fix(plugins): keep hot metadata where required
* fix(plugins): keep hot doctor and write targeting
* fix(plugins): track throwing module imports
2026-04-02 22:50:17 +09:00
9823833383
fix(plugins): preserve activation provenance ( #59641 )
...
* fix(plugins): preserve activation provenance
* fix(gateway): preserve activation reason metadata
* fix(plugins): harden activation state policy
2026-04-02 20:57:14 +09:00
c405bcfa98
refactor(providers): centralize request capabilities ( #59636 )
...
* refactor(providers): centralize request capabilities
* fix(providers): harden comparable base url parsing
2026-04-02 20:26:22 +09:00
38d2faee20
!feat(plugins): add web fetch provider boundary ( #59465 )
...
* feat(plugins): add web fetch provider boundary
* feat(plugins): add web fetch provider modules
* refactor(web-fetch): remove remaining core firecrawl fetch config
* fix(web-fetch): address review follow-ups
* fix(web-fetch): harden provider runtime boundaries
* fix(web-fetch): restore firecrawl compare helper
* fix(web-fetch): restore env-based provider autodetect
* fix(web-fetch): tighten provider hardening
* fix(web-fetch): restore fetch autodetect and compat args
* chore(changelog): note firecrawl fetch config break
2026-04-02 20:25:19 +09:00
0e9a9dae84
fix(providers): centralize Google endpoint classification ( #59556 )
...
* fix(providers): centralize Google endpoint classification
* fix(providers): tighten Google endpoint fallback parsing
* fix(security): harden provider endpoint fallback parsing
2026-04-02 19:21:31 +09:00
08962b6812
fix(browser): keep static helper seams cold ( #59471 )
...
* fix(browser): keep static helper seams cold
* fix(browser): narrow sandbox helper facade imports
* fix(browser): harden host inspection helpers
2026-04-02 17:12:32 +09:00
53f1c9968a
fix(ci): restore model override and trash-path fallbacks
2026-04-02 16:59:27 +09:00
8748b7c54c
Matrix: keep partial previews aligned with block streaming ( #59384 )
...
Merged via squash.
Prepared head SHA: 981aa35a7c
2026-04-02 03:39:27 -04:00
f28f0f29ba
fix(providers): centralize media request shaping ( #59469 )
...
* fix(providers): centralize media request shaping
* style(providers): normalize shared request imports
* fix(changelog): add media request shaping entry
* fix(google): preserve private network guard
2026-04-02 15:28:57 +09:00
52a018680d
fix(plugins): guard runtime facade activation ( #59412 )
...
* fix(plugins): guard runtime facade activation
* refactor(plugin-sdk): localize facade load policy
* fix(plugin-sdk): narrow facade activation guards
* fix(browser): keep cleanup helpers outside activation guard
* style(browser): apply formatter follow-ups
* chore(changelog): note plugin activation guard regressions
* fix(discord): keep cleanup thread unbinds outside activation guard
* fix(browser): fallback when trash exits non-zero
2026-04-02 14:37:12 +09:00
0e8e986c95
perf(memory): narrow telegram bot deps skill/runtime imports
2026-04-02 14:16:13 +09:00
534f0a644b
fix(plugins): keep browser facade helpers cold
2026-04-02 11:44:49 +09:00
7771c69caf
fix(plugins): enforce activation before shipped imports ( #59136 )
...
* fix(plugins): enforce activation before shipped imports
* fix(plugins): remove more ambient bundled loads
* fix(plugins): tighten scoped loader matching
* fix(plugins): remove channel-id scoped loader matches
* refactor(plugin-sdk): relocate ambient provider helpers
* fix(plugin-sdk): preserve unicode ADC credential paths
* fix(plugins): restore safe setup fallback
2026-04-02 11:18:49 +09:00
ba735d0158
Exec approvals: unify effective policy reporting and actions ( #59283 )
...
Merged via squash.
Prepared head SHA: d579b97a93
2026-04-01 22:02:39 -04:00
c87c8e66bf
Refactor channel approval capability seams ( #58634 )
...
Merged via squash.
Prepared head SHA: c9ad4e4706
2026-04-01 17:10:25 -04:00
71346940ad
refactor: add provider replay runtime hook surfaces ( #59143 )
...
Merged via squash.
Prepared head SHA: 56b41e87a5
2026-04-01 13:45:41 -07:00
ec426ac356
perf(test): narrow slack string normalization imports
2026-04-02 00:29:50 +09:00
0453d355fd
perf(test): narrow discord monitor runtime seams
2026-04-01 23:47:22 +09:00
76c4ecd651
perf(test): narrow sdk seams for channel hotspots
2026-04-01 23:14:48 +09:00
2d53ffdec1
fix(exec): resolve remote approval regressions ( #58792 )
...
* fix(exec): restore remote approval policy defaults
* fix(exec): handle headless cron approval conflicts
* fix(exec): make allow-always durable
* fix(exec): persist exact-command shell trust
* fix(doctor): match host exec fallback
* fix(exec): preserve blocked and inline approval state
* Doctor: surface allow-always ask bypass
* Doctor: match effective exec policy
* Exec: match node durable command text
* Exec: tighten durable approval security
* Exec: restore owner approver fallback
* Config: refresh Slack approval metadata
---------
Co-authored-by: scoootscooob <zhentongfan@gmail.com>
2026-04-01 02:07:20 -07:00
ed83d79a05
fix: tighten reply payload typing and safe text coercion
2026-03-31 22:54:36 -05:00
098125e998
test: merge channel reply pipeline typing cases
2026-04-01 03:26:24 +01:00
7ae093cf0f
test: merge command auth cases
2026-04-01 03:25:39 +01:00
ba808573ef
test: merge allowlist config helper cases
2026-04-01 03:24:41 +01:00
a217e97fe5
test: merge approval renderer cases
2026-04-01 03:23:41 +01:00
Vincent Koc
Peter Steinberger
Gustavo Madeira Santana
Agustin Rivera
joelnishanth
James Cowan
Josh Lehman
joshavant