vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-08 15:00:44 +00:00
Code Issues Packages Projects Releases Wiki Activity
39,418 Commits 1,843 Branches 149 Tags
66c58e6d544fcfa47b4787ce7b7d374c3d9d8a67
Commit Graph

888 Commits

Author SHA1 Message Date
Peter Steinberger
0c23584c2c ci: run Telegram package E2E in full release validation 2026-05-02 00:05:33 +01:00
Peter Steinberger
bcd6499abd test: harden plugin update validation 2026-05-01 23:33:05 +01:00
Peter Steinberger
ed8f50f240 refactor: simplify plugin dependency handling 
Simplify plugin installation and runtime loading around package-manager-owned dependencies, with Jiti reserved for local/TS fallback paths.

Also scans npm plugin install roots so hoisted transitive dependencies are covered by dependency denylist and node_modules symlink checks.
 2026-05-01 21:32:22 +01:00
Peter Steinberger
666ab0a00b ci: stop parity gate on pull requests 2026-05-01 12:42:33 +01:00
Vincent Koc
15adc741ff test(package): expand upgrade survivor baselines 2026-05-01 03:18:31 -07:00
Peter Steinberger
61985cb1d2 chore: simplify crabbox integration 2026-05-01 09:27:00 +01:00
Vincent Koc
dffc295a74 test(e2e): add upgrade survivor scenario probes 2026-05-01 01:18:11 -07:00
Vincent Koc
2500b5d4ec test(e2e): expand published upgrade survivor baselines 2026-05-01 01:18:11 -07:00
clawsweeper[bot]
3af8e17cc5 fix(ci): accept ClawSweeper bot mention alias 
Co-authored-by: openclaw-clawsweeper[bot] <280122609+openclaw-clawsweeper[bot]@users.noreply.github.com>
 2026-04-30 22:42:47 -07:00
Peter Steinberger
3e67ee63b4 ci: route ClawSweeper command comments 2026-05-01 04:14:41 +01:00
Josh Avant
ce833acbdb test: strengthen published upgrade survivor lane (#75361) 
* test: integrate upgrade survivor baseline controls

* test: gate published upgrade survivor path

* test: preserve upgrade survivor fixture contract

* test: keep upgrade survivor temp state off overlay
 2026-04-30 21:50:36 -05:00
Peter Steinberger
206b5f78a2 ci: tighten full release validation 2026-05-01 03:19:49 +01:00
Peter Steinberger
e7dafaf2af ci: add crabbox hydrate workflow 2026-05-01 03:05:40 +01:00
Peter Steinberger
c0058fda2f test: add published upgrade survivor lane (#75221) 
* test: add published upgrade survivor lane

* test: keep published upgrade exit chunk
 2026-04-30 23:39:50 +00:00
Shadow
ef799fd57a ci: exclude app PRs from active limit 2026-04-30 18:34:41 -05:00
Peter Steinberger
231e5c618f ci(release): allow public mac validation from main 2026-04-30 22:53:39 +01:00
Peter Steinberger
7beebc9afc test: add upgrade survivor package lane 2026-04-30 19:06:33 +01:00
clawsweeper[bot]
29d3b65a83 fix(ci): bound manual stale closure backfill 
Co-authored-by: openclaw-clawsweeper[bot] <280122609+openclaw-clawsweeper[bot]@users.noreply.github.com>
 2026-04-30 03:52:23 -07:00
Vincent Koc
9d68c6768a ci: shallow checkout OpenGrep PR scan 2026-04-30 02:43:00 -07:00
Vincent Koc
9f0bf1c71e chore(ci): skip maintainer assignees in stale backfill 2026-04-30 02:13:18 -07:00
Vincent Koc
d117ed183a chore(ci): tune stale policy and add backfill 
* chore(ci): tune stale grace periods

* chore(ci): add stale closure backfill
 2026-04-30 02:01:02 -07:00
Vincent Koc
005eeca06f ci: right-size OpenGrep PR scan 
* ci: right-size opengrep pr scan

* ci: avoid opengrep rulepack self-scan

* ci: opt opengrep workflows into node24 actions

* ci: update opengrep workflow action majors
 2026-04-30 01:52:12 -07:00
Vincent Koc
02597caa8b chore(ci): add agent CodeQL PR quality guard 
Promotes the existing agent-runtime quality shard to PR/manual selection and documents the expanded twelve-shard PR quality set.
 2026-04-30 00:01:12 -07:00
Vincent Koc
e0c75cd0bd chore(ci): cover bundled channels in CodeQL PR guard 
Extends the channel CodeQL quality shard to bundled channel plugin source directories and documents the scoped PR guard coverage.
 2026-04-29 23:28:18 -07:00
clawsweeper[bot]
d55fafd130 fix(ci): disable install smoke Docker build cache 
Co-authored-by: openclaw-clawsweeper[bot] <280122609+openclaw-clawsweeper[bot]@users.noreply.github.com>
 2026-04-29 23:16:10 -07:00
Vincent Koc
423f6df5b1 chore(ci): add config CodeQL PR quality guard 
Adds the config-boundary quality shard to the PR CodeQL guard and documents the expanded eleven-shard PR quality set.
 2026-04-29 23:15:58 -07:00
Vincent Koc
3031726905 chore(ci): add auth CodeQL PR quality guard 
Adds the core-auth-secrets quality shard to the PR CodeQL guard and documents the expanded ten-shard PR quality set.
 2026-04-29 23:06:02 -07:00
Vincent Koc
e9d4cb2bb6 chore(ci): add memory CodeQL PR quality guard 
Adds the memory runtime quality shard to the PR CodeQL guard while preserving provider/plugin overlap only for the memory files that share those contracts.
 2026-04-29 22:54:37 -07:00
Vincent Koc
c500b26bb6 chore(ci): add plugin SDK reply CodeQL PR guard 
Adds the Plugin SDK reply runtime quality shard to the PR CodeQL guard while keeping reply runtime changes on the existing plugin and package-contract shards.
 2026-04-29 22:43:24 -07:00
Vincent Koc
a34ba362c6 chore(ci): add session CodeQL PR quality guard 
Adds the session diagnostics quality shard to the PR CodeQL guard while keeping diagnostics and delivery queue analysis path-sharded by surface.
 2026-04-29 22:27:27 -07:00
Vincent Koc
4fc0981a52 chore(ci): add process CodeQL PR quality guard 
Adds the MCP/process runtime quality shard to the PR CodeQL guard and keeps non-security quality analysis path-sharded by surface.
 2026-04-29 22:15:17 -07:00
Vincent Koc
6308d2a1dc chore(ci): add channel CodeQL PR quality guard 
Adds the channel runtime quality shard to the PR CodeQL guard and keeps non-security quality analysis path-sharded by surface.
 2026-04-29 22:00:55 -07:00
dependabot[bot]
9cb71bbaab chore(deps): bump actions group 
Bumps the actions group with 2 updates in the / directory: [useblacksmith/setup-docker-builder](https://github.com/useblacksmith/setup-docker-builder) and [useblacksmith/build-push-action](https://github.com/useblacksmith/build-push-action).


Updates `useblacksmith/setup-docker-builder` from 1.7.0 to 1.8.0
- [Release notes](https://github.com/useblacksmith/setup-docker-builder/releases)
- [Commits](ac083cc846...722e97d12b)

Updates `useblacksmith/build-push-action` from 2.1.0 to 2.2.0
- [Release notes](https://github.com/useblacksmith/build-push-action/releases)
- [Commits](cbd1f60d19...fb9e3e6a92)

---
updated-dependencies:
- dependency-name: useblacksmith/build-push-action
  dependency-version: 2.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: useblacksmith/setup-docker-builder
  dependency-version: 1.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-29 21:48:30 -07:00
Vincent Koc
8dc99feb50 chore(ci): add provider CodeQL PR quality guard 
Adds the provider runtime quality shard to the PR CodeQL guard, keeps PR quality analysis path-sharded by surface, and fixes selector overlap for Plugin SDK/package-contract paths.
 2026-04-29 21:47:17 -07:00
Vincent Koc
eea964330c chore(ci): add gateway CodeQL PR quality guard 
Adds the gateway runtime quality shard to the PR CodeQL guard, keeps PR quality analysis path-sharded by surface, and documents the shard selector behavior.
 2026-04-29 21:26:03 -07:00
Vincent Koc
6e73101df3 chore(ci): widen CodeQL PR guard 
Runs the PR CodeQL security guard as high-confidence high/critical security coverage and adds the initial plugin/package-contract quality guard.
 2026-04-29 20:06:50 -07:00
Vincent Koc
8aed80d2fa chore(ci): add CodeQL PR security guard 
Runs the narrow CodeQL critical-security matrix on non-draft pull requests for code and workflow security-boundary changes.
 2026-04-29 19:19:45 -07:00
Vincent Koc
845dd2a7d5 chore(ci): add provider runtime CodeQL quality shard 
Adds a focused non-security CodeQL quality shard for provider runtime and model catalog contracts.
 2026-04-29 16:15:38 -07:00
Vincent Koc
847d8fa0e1 chore(ci): add Plugin SDK reply CodeQL quality shard 
Adds a focused non-security CodeQL quality shard for Plugin SDK reply/session delivery runtime contracts.
 2026-04-29 15:56:41 -07:00
Vincent Koc
8f50920c45 chore(ci): add session diagnostics CodeQL quality shard 
Adds a focused non-security CodeQL quality shard for session diagnostics, delivery queues, and related diagnostic contracts.
 2026-04-29 15:29:03 -07:00
Peter Steinberger
c7e2aceb05 ci(dup): guard duplicate scan coverage 2026-04-29 23:24:57 +01:00
Vincent Koc
6717f8b334 chore(ci): add plugin trust CodeQL shard 
Adds the plugin trust-boundary CodeQL security shard on Blacksmith and documents the rollout scope.
 2026-04-29 15:02:06 -07:00
Vincent Koc
71ab341f46 chore(ci): rename CodeQL auth security shard 
Renames the default auth/secrets CodeQL security category from the generic javascript-typescript label to core-auth-secrets.

Proof:
- Branch CodeQL security run https://github.com/openclaw/openclaw/actions/runs/25134871512 passed on 1d9f727bfd.
- Core auth/secrets analysis 1200412263 returned 0 results.
- Branch open CodeQL alerts: none.
- Workflow Sanity, Blacksmith Testbox, Blacksmith Build Artifacts Testbox, and OpenGrep PR Diff passed.

Scope is label/config only: same paths, query pack, filters, timeout, and runner.
 2026-04-29 14:32:34 -07:00
Peter Steinberger
21e2168b8f ci: shard install smoke release checks 2026-04-29 22:25:55 +01:00
clawsweeper[bot]
27fafa4754 fix: Found two release-validation regressions in the new focused live- (#74562) 
Co-authored-by: openclaw-clawsweeper[bot] <280122609+openclaw-clawsweeper[bot]@users.noreply.github.com>
 2026-04-29 14:08:45 -07:00
clawsweeper[bot]
fbe41fbdfc fix(ci): Found one low-severity diagnostic bug in the new Full Release Val (#74513) 
Co-authored-by: openclaw-clawsweeper[bot] <280122609+openclaw-clawsweeper[bot]@users.noreply.github.com>
 2026-04-29 14:08:07 -07:00
Vincent Koc
fdf8ffaf3c fix(ci): exempt automation PRs from Barnacle PR limit 
Treat ClawSweeper and Clownfish head refs as automation PRs for Barnacle's active-PR-limit close path, and cover the behavior with a regression test.
 2026-04-29 13:58:06 -07:00
Peter Steinberger
9ccd015898 ci: bound install smoke docker builds 2026-04-29 21:56:54 +01:00
Vincent Koc
cd6efd1a42 chore(ci): add MCP process CodeQL shard 
Adds the focused MCP/process/tool-execution CodeQL security shard and documents it in CI docs.

Proof:
- Branch CodeQL security run https://github.com/openclaw/openclaw/actions/runs/25132942030 passed on 9d8ca2bae7.
- New mcp-process-tool-boundary analysis 1200250367 returned 0 results.
- Branch open CodeQL alerts: none.
- Workflow Sanity, Blacksmith Testbox, Blacksmith Build Artifacts Testbox, and OpenGrep PR Diff passed.
 2026-04-29 13:48:53 -07:00
Vincent Koc
6516be1023 fix(ci): stop ClawSweeper dispatch PAT fallback 
Remove the maintainer PAT fallback from the ClawSweeper dispatch workflow so missing app auth fails closed instead of attributing downstream automation to a human token.
 2026-04-29 13:26:02 -07:00