4fa11632b4
fix: escalate to model fallback after rate-limit profile rotation cap ( #58707 )
...
* fix: escalate to model fallback after rate-limit profile rotation cap
Per-model rate limits (e.g. Anthropic Sonnet-only quotas) are not
relieved by rotating auth profiles — if all profiles share the same
model quota, cycling between them loops forever without falling back
to the next model in the configured fallbacks chain.
Apply the same rotation-cap pattern introduced for overloaded_error
(#58348 ) to rate_limit errors:
- Add `rateLimitedProfileRotations` to auth.cooldowns config (default: 1)
- After N profile rotations on a rate_limit error, throw FailoverError
to trigger cross-provider model fallback
- Add `resolveRateLimitProfileRotationLimit` helper following the same
pattern as `resolveOverloadProfileRotationLimit`
Fixes #58572
* fix: cap prompt-side rate-limit failover (#58707 ) (thanks @Forgely3D)
* fix: restore latest-main gates for #58707
---------
Co-authored-by: Ember (Forgely3D) <ember@forgely.co>
Co-authored-by: Peter Steinberger <steipete@gmail.com>
2026-04-01 17:54:10 +09:00
95182d51cc
fix: harden bundled plugin runtime deps
2026-04-01 08:55:00 +01:00
f5431bc07e
docs: clarify doctor cron migration guidance
2026-04-01 16:44:10 +09:00
418fa12dfa
fix: make overload failover configurable
2026-03-31 21:34:35 +01:00
5c9408d3ca
docs: update docs for unreleased channel and gateway changes
...
Cover Teams member-info action, Teams/Matrix sender-allowlist
context filtering, macOS MagicDNS discovery preference, and
trusted-proxy mixed token config hardening.
2026-04-01 02:20:44 +09:00
0d7f1e2c84
feat(security): fail closed on dangerous skill installs
2026-03-31 23:27:20 +09:00
44b9936136
feat(plugins): add dangerous unsafe install override
2026-03-31 23:16:11 +09:00
dc0e0b0f68
docs(security): mark shared-secret HTTP auth as designed
2026-03-31 22:58:09 +09:00
cbfeecfab4
fix(gateway): restore shared-secret HTTP tool invoke auth
2026-03-31 22:55:15 +09:00
5474796735
docs(security): clarify acpx yolo mode
2026-03-31 20:54:30 +09:00
0633406ff6
fix(gateway): restore compat HTTP operator auth
2026-03-31 16:49:30 +09:00
788f56f30f
Secrets: hard-fail unsupported SecretRef policy and fix gateway restart token drift ( #58141 )
...
* Secrets: enforce C2 SecretRef policy and drift resolution
* Tests: add gateway auth startup/reload SecretRef runtime coverage
* Docs: sync C2 SecretRef policy and coverage matrix
* Config: hard-fail parent SecretRef policy writes
* Secrets: centralize unsupported SecretRef policy metadata
* Daemon: test service-env precedence for token drift refs
* Config: keep per-ref dry-run resolvability errors
* Docs: clarify config-set parent-object policy checks
* Gateway: fix drift fallback and schema-key filtering
* Gateway: align drift fallback with credential planner
* changelog
Signed-off-by: joshavant <830519+joshavant@users.noreply.github.com>
---------
Signed-off-by: joshavant <830519+joshavant@users.noreply.github.com>
2026-03-31 02:37:31 -05:00
5ee054e9db
docs: merge network-model stub into network hub, improve bridge deprecation
...
- network.md: add Core model prose (loopback-first, canvas host, remote access)
from the 22-line network-model.md stub
- network-model.md: add redirect note pointing to /network#core-model
- bridge-protocol.md: replace scattered deprecation notes with prominent
<Warning> callout at the top
2026-03-31 14:37:43 +09:00
b970187379
docs: fix oxfmt formatting in remote.md and THREAT-MODEL-ATLAS.md
2026-03-31 14:36:49 +09:00
ff1ae5df22
docs: add 8 missing doctor checks and --generate-gateway-token flag
2026-03-31 14:34:56 +09:00
1bf8fb26f4
docs: fix config examples -- perSession deprecation and dmScope guidance
...
- Replace perSession: true with scope: "session" (preferred syntax)
- Add dmScope: "per-channel-peer" to expanded example for multi-user safety
2026-03-31 14:34:56 +09:00
4ab7947ec0
docs: merge remote-gateway-readme content into remote.md
2026-03-31 14:34:56 +09:00
637f15375b
docs: fix Gateway & Ops audit findings (7 pages)
...
- cli-backends.md: remove duplicate modelAliases key
- discovery.md: add missing transport=gateway and displayName TXT keys
- authentication.md: retitle to "Authentication (Model Providers)", add
disambiguation Note pointing to gateway connection auth docs
- health.md: expand frontmatter scope, add --probe flag and response shape docs
- gateway-lock.md: remove stale hardcoded date, add Related section
- troubleshooting.md: fix wrong auth cross-link (model auth -> gateway config)
- logging.md: add Related section linking to gateway logging internals
2026-03-31 14:24:19 +09:00
d352bd050a
docs: fix tools-invoke default deny list (was missing 8 of 13 entries)
2026-03-31 14:24:19 +09:00
ab8d999917
docs: fix sandbox scope default (session -> agent per resolveSandboxScope)
2026-03-31 14:24:19 +09:00
81b777c768
fix(config): harden SecretRef round-trip handling in Control UI and RPC writes ( #58044 )
...
* Config: harden SecretRef round-trip handling
* Gateway: test SecretRef preflight on config writes
* Agents: align skill loader with upstream Skill type
* Docs: align SecretRef write semantics with Control UI and RPC behavior
* Config: add UI and gateway regression evidence for SecretRef hardening
* Config: add token SecretRef restore regression and skill sourceInfo compat
* UI: scope structured-value lockout to SecretRef fields
* Agents: remove out-of-scope skill loader compat edits
* UI: reduce app-render churn to rawAvailable-only changes
* Gateway: scope SecretRef preflight to submitted config
* Docs: clarify config write SecretRef preflight scope
* changelog
Signed-off-by: joshavant <830519+joshavant@users.noreply.github.com>
---------
Signed-off-by: joshavant <830519+joshavant@users.noreply.github.com>
2026-03-30 23:55:03 -05:00
d4cccda570
fix: add requireAgentId to block sessions_spawn without explicit agen… ( #29380 )
...
* fix: add requireAgentId to block sessions_spawn without explicit agentId (#29368 )
* Config: regenerate base schema for requireAgentId
Signed-off-by: sallyom <somalley@redhat.com>
---------
Signed-off-by: sallyom <somalley@redhat.com>
Co-authored-by: 周鹤0668001310 <zhou.he3@xydigit.com>
Co-authored-by: sallyom <somalley@redhat.com>
2026-03-30 23:06:59 -04:00
c918ab4faf
fix(tts): restore 3.28 schema compatibility and fallback observability ( #57953 )
...
* fix(tts): restore legacy config compatibility and fallback observability
* fix(tts): surface fallback attempts in status and telephony
* test(tts): cover /tts audio to /tts status fallback flow
* docs(tts): align migration and fallback observability guidance
* TTS: redact fallback logs and scope legacy plugin migration
* Infra: dedupe UV_EXTRA_INDEX_URL in host env policy
* Docs: scope doctor TTS migration to voice-call
* voice-call: restore strict known TTS provider validation
2026-03-30 22:05:03 -05:00
ef6250d9a0
docs: refresh channel delivery examples
2026-03-30 22:33:44 -04:00
e682b72154
docs: Batch 1 — create automation hub + add Related sections
...
New page: docs/automation/index.md — single entry point for all automation
mechanisms (heartbeat, cron, tasks, hooks, standing-orders, webhooks) with
a decision flowchart and comparison table.
Add "Related" sections to 5 high-traffic pages that were dead ends:
- gateway/heartbeat.md → links to tasks, cron-vs-heartbeat, timezone, troubleshooting
- concepts/session.md → links to multi-agent, tasks, channel-routing
- concepts/multi-agent.md → links to channel-routing, subagents, ACP, presence, session
- concepts/agent-loop.md → links to tools, hooks, compaction, exec-approvals, thinking
- concepts/timezone.md → links to heartbeat, cron-jobs, date-time
Add automation/index to Mintlify nav as first item in Automation group.
2026-03-30 19:07:18 +09:00
ae0e1ecf5c
docs: add background tasks cross-references across 6 doc pages
...
Link to /automation/tasks from all pages that mention subagent runs,
ACP runs, or detached background work:
- tools/subagents.md: note that each sub-agent run is tracked as a background task
- tools/acp-agents.md: note that ACP session spawns are tracked as background tasks
- cli/index.md: link tasks section to doc page, add tasks audit subcommand
- concepts/queue.md: note that detached lane runs are tracked as background tasks
- gateway/configuration-reference.md: cron section cross-ref to tasks
- help/faq.md: add tasks link to sub-agent offloading FAQ answer
2026-03-30 16:42:47 +09:00
8a916652e8
docs: add Background Tasks page and clean up cross-references
...
New page: docs/automation/tasks.md — comprehensive reference for the task
system covering lifecycle, delivery, notifications, audit, CLI commands,
storage, maintenance, and how tasks relate to cron/heartbeat/sessions.
- Add to Mintlify navigation (docs.json) under Automation group
- Clean up engineer's earlier scattered additions in cron-jobs.md,
cron-vs-heartbeat.md, and heartbeat.md to be concise and link to the
new canonical tasks page
- Replace verbose inline explanations with cross-reference links
2026-03-30 16:26:13 +09:00
e624fdcf0a
docs(tasks): clarify heartbeat, cron, and background runs
2026-03-30 16:19:28 +09:00
1ad88b58d1
feat(matrix): add explicit channels.matrix.proxy config ( #56930 ) ( #56931 )
...
Merged via squash.
Prepared head SHA: facdf94b65
2026-03-30 02:51:33 -04:00
03a03c2dc4
fix(ci): restore skill fixtures and security doc anchors
2026-03-30 11:41:08 +09:00
5e4a64848f
fix(exec): harden async approval followup delivery in webchat-only sessions ( #57359 )
...
* fix(exec): harden approval followup delivery fallback
* refactor(delivery): share best-effort followup routing helpers
* test(subagents): cover webchat-only completion announce delivery
* docs(exec): clarify async followup delivery behavior
* fix(exec): harden delivery downgrade logging
* test(gateway): cover multi-channel best-effort fallback
* fix(exec): preserve webchat origin on session-only followups
* fix(subagents): keep internal announces channel-less
2026-03-29 20:54:13 -05:00
66f8fb9e9b
docs: fix P2 in security -- normalize Security audit checklist heading to sentence case
2026-03-30 10:19:51 +09:00
d19ccde297
docs: fix P2s in configuration-reference -- built-in model catalog, PI_CODING_AGENT_DIR legacy note, deduplicate Identity section
2026-03-30 10:19:51 +09:00
50d815579c
docs: consolidate security page structure and add navigation
...
- Merge 3 duplicate trust-model sections into one (Scope first + Deployment/host trust)
- Promote "What the audit checks" from h3 to h2 (standalone topic, not child of Shared inbox)
- Add "On this page" navigation links at the top for the 1200+ line page
2026-03-30 10:19:51 +09:00
cb428aca1c
docs: add 11 missing config sections to configuration-reference
...
Add documentation for config schema sections that existed in source but had
zero coverage in the reference doc:
- diagnostics (otel, cacheTrace, flags, stuckSessionWarnMs)
- update (channel, checkOnStart, auto.*)
- acp (enabled, dispatch, backend, stream.*, runtime.*)
- gateway.tls (enabled, autoGenerate, certPath, keyPath, caPath)
- gateway.reload (mode, debounceMs, deferralTimeoutMs)
- cron.retry (maxAttempts, backoffMs, retryOn)
- cron.failureAlert (enabled, after, cooldownMs, mode)
- auth.cooldowns (billingBackoffHours, billingMaxHours, failureWindowHours)
- logging.maxFileBytes
- session.scope (per-sender vs global)
- session.agentToAgent.maxPingPongTurns (range 0-5)
2026-03-30 10:19:51 +09:00
169bbc82f2
docs: fix security page P1s -- dmScope, heading style, roadmap language
...
- Add missing per-peer dmScope value to isolation options
- Fix heading style: 3./4. -> 3)/4) for consistency with other numbered sections
- Add channel qualifier to 'Separate Numbers' heading (WhatsApp/Signal/Telegram)
- Remove roadmap speculation ('We may add readOnlyMode later')
2026-03-30 09:46:57 +09:00
445fed9dc5
docs: add missing field docs and fix config-reference P1s
...
- Document verboseDefault (off|on|full) and elevatedDefault (off|on|ask|full)
- Heartbeat every: note OAuth default (1h) and disable value (0m)
- Replace internal 'Nano Banana' code name with 'native Gemini image generation'
2026-03-30 09:45:48 +09:00
9355925690
docs: fix Mintlify callout syntax in security page
...
Replace GitHub-flavor > [!WARNING] with Mintlify <Warning> component.
The old syntax renders as a plain blockquote in Mintlify, hiding the most
safety-critical content on the page.
2026-03-30 09:43:33 +09:00
12c92b5fb2
docs: fix wrong defaults and heading in configuration-reference
...
- maxConcurrent default: 1 -> 4 (matches DEFAULT_AGENT_MAX_CONCURRENT)
- subagents.maxConcurrent example: 1 -> 8 (matches DEFAULT_SUBAGENT_MAX_CONCURRENT)
- Fix section heading: tools.subagents -> agents.defaults.subagents (matches actual config path)
2026-03-30 09:41:09 +09:00
4680335b2a
docs: fix English link audits ( #57039 )
...
Merged via squash.
Prepared head SHA: d20a3b620f
2026-03-30 01:21:00 +02:00
168ab94eee
refactor(config): pin runtime snapshot and drop ttl cache
2026-03-29 22:57:31 +01:00
276ccd2583
fix(exec): default implicit target to auto
2026-03-30 06:03:08 +09:00
694bc082a8
fix: resolve acpx MCP secret inputs
2026-03-30 05:30:32 +09:00
5d4c4bb850
fix(exec): restore runtime-aware implicit host default
2026-03-29 21:18:41 +01:00
e0f0a1aa1f
docs: clarify browser allowlist troubleshooting
2026-03-29 22:19:22 +09:00
3aac43e30b
docs: remove stale MiniMax M2.5 refs and add image generation docs
...
After the M2.7-only catalog trim (#54487 ), update 10 docs files:
- Replace removed M2.5/VL-01 model references across FAQ, wizard,
config reference, local-models, and provider pages
- Make local-models guide model-agnostic (generic LM Studio placeholder)
- Add image-01 generation section to minimax.md
- Leave third-party catalogs (Synthetic, Venice) unchanged
2026-03-29 17:26:02 +09:00
341e617c84
docs(plugins): refresh bundled plugin runtime docs
2026-03-29 09:10:39 +01:00
5d81b64343
fix(exec): fail closed when sandbox is unavailable and harden deny followups ( #56800 )
...
* fix(exec): fail closed when sandbox is unavailable and harden deny followups
* docs(changelog): note exec fail-closed fix
2026-03-28 22:20:49 -07:00
c42ec81e37
feat(acp): add conversation binds for message channels
2026-03-28 01:54:25 +00:00
ce5b0577d4
docs: fix Browserless and broken doc links ( #55881 )
...
Merged via squash.
Prepared head SHA: 528d04e070
2026-03-27 17:11:57 +01:00
Forgely3D
Peter Steinberger
Vincent Koc
Josh Avant
BUGKillerKing
Gustavo Madeira Santana
Patrick Yingxi Pan
Radek Sienkiewicz
scoootscooob