vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-06 12:50:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
30,863 Commits 1,843 Branches 149 Tags
8a4a63ca076ea052a3c3939b503820dca0cc5dc6
Commit Graph

423 Commits

Author SHA1 Message Date
Vincent Koc
5b6667ef97 fix(ci): gate static import cycles with madge 2026-04-12 12:41:18 +01:00
HDYA
26f633b604 feat(msteams): add federated credential support (certificate + managed identity) (#53615) 
* feat(msteams): add federated authentication support (certificate + managed identity + workload identity)

* msteams: fix vitest 4.1.2 compat, type errors, and regenerate config baseline

* msteams: fix lint errors, update fetch allowlist, regenerate protocol Swift

* fix(msteams): gate secret-only delegated auth flows

* fix(ci): unblock gateway watch and install smoke

* fix(ci): restore mergeability for pr 53615

* fix(ci): restore channel registry helper typing

* fix(ci): refresh raw fetch guard allowlist

---------

Co-authored-by: Chudi Huang <Chudi.Huang@microsoft.com>
Co-authored-by: Brad Groux <3053586+BradGroux@users.noreply.github.com>
 2026-04-11 13:29:22 -05:00
Peter Steinberger
40beb68fb0 chore: remove legacy shim packages 2026-04-11 14:07:29 +01:00
Peter Steinberger
3b6fac85ea chore: prepare 2026.4.10 release 2026-04-11 03:22:18 +01:00
sudie-codes
0f19271092 msteams: add message actions — pin, unpin, read, react, reactions (#53432) 
* msteams: add pin/unpin, list-pins, and read message actions

Wire up Graph API endpoints for message read, pin, unpin, and list-pins
in the MS Teams extension, following the same patterns as edit/delete.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

* msteams: address PR review comments for pin/unpin/read actions

- Handle 204 No Content in postGraphJson (Graph mutations may return empty body)
- Strip conversation:/user: prefixes in resolveConversationPath to avoid Graph 404s
- Remove dead variable in channel pin branch
- Rename unpin param from messageId to pinnedMessageId for semantic clarity
- Accept both pinnedMessageId and messageId in unpin action handler for compat

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

* msteams: resolve user targets + add User-Agent to Graph helpers

- Resolve user:<aadId> targets to actual conversation IDs via conversation
  store before Graph API calls (fixes 404 for DM-context actions)
- Add User-Agent header to postGraphJson/deleteGraphRequest for consistency
  with fetchGraphJson after rebase onto main

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

* msteams: resolve DM targets to Graph chat IDs + expose pin IDs

- Prefer cached graphChatId over Bot Framework conversation IDs for user
  targets; throw descriptive error when no Graph-compatible ID is available
- Add `id` field to list-pins rows so default formatters surface the pinned
  resource ID needed for the unpin flow

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

* msteams: add react and reactions (list) message actions

* msteams: fix reaction count undercount and remove unpin messageId fallback

* msteams: wire pinnedMessageId through CLI/tool schema, add channel pin beta warnings, add list-pins pagination

* msteams: address PR #53432 remaining review feedback

* fix(msteams): route channel actions via teamId/channelId path (#53432)

* msteams: add unpin pinnedMessageId test coverage (#53432)

* fix(msteams): keep graph routing scoped to graph actions

* fix(msteams): align graph routing context types

* msteams: route fetchGraphAbsoluteUrl through fetchWithSsrFGuard

---------

Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: Brad Groux <3053586+BradGroux@users.noreply.github.com>
 2026-04-10 20:25:57 -05:00
Peter Steinberger
796ea57378 test: validate Codex app-server config 2026-04-10 22:43:44 +01:00
Peter Steinberger
31a0b7bd42 feat: add Codex app-server controls 2026-04-10 22:19:00 +01:00
Peter Steinberger
e892def77c chore: bump basic-ftp override 2026-04-10 21:44:16 +01:00
Peter Steinberger
b174d8aed4 build: refresh pi-ai lockfile snapshot 2026-04-10 21:22:16 +01:00
Peter Steinberger
2bd56b8c38 build: refresh Codex harness lockfile 2026-04-10 21:22:16 +01:00
Peter Steinberger
b79f9f965e fix: address Codex harness review issues 2026-04-10 21:22:16 +01:00
Peter Steinberger
59925c1a74 chore: update dependencies and oxc tooling 2026-04-10 19:28:42 +01:00
Peter Steinberger
8127c6cc15 build(deps): update workspace dependencies 2026-04-10 19:17:39 +01:00
Shadow
d5b25f81cf update carbon 2026-04-10 01:53:36 -05:00
sudie-codes
a59a9bfb07 fix(msteams): accept Bot Framework audience in JWT validation (#58249) (#62674) 
* fix(msteams): use jsonwebtoken directly for JWT validation with correct audience (#58249)

* chore(msteams): regenerate lockfile for jwt deps

* fix(msteams): clean up unused serviceUrl parameter in JWT validator

* test(msteams): cover STS issuer in JWT validation

* fix(msteams): type jwt verify audiences and issuers

---------

Co-authored-by: Brad Groux <bradgroux@users.noreply.github.com>
 2026-04-09 22:05:54 -05:00
Altay
004bab53fa fix(ci): repair protocol drift and audit failures (#63917) 
* CI: fix protocol drift and audit failures

* CI: narrow axios release-age exception

* CI: drop ineffective feishu override

* test: fix workspace-root guard mock typing
 2026-04-09 22:07:51 +01:00
Peter Steinberger
0fce013ebf build: mirror bundled plugin runtime deps 2026-04-09 00:31:08 +01:00
Peter Steinberger
9286de5d95 fix(deps): patch basic-ftp advisory 2026-04-08 22:49:45 +01:00
Peter Steinberger
1979a28803 fix: patch hono security advisories 2026-04-08 18:02:54 +01:00
Peter Steinberger
edf6b490a6 fix: harden bundled plugin dependency release checks 2026-04-08 15:15:44 +01:00
scoootscooob
d52d5ad6ff release: mirror bundled channel deps at root (#63065) 
Merged via squash.

Prepared head SHA: ac26799a54
Co-authored-by: scoootscooob <167050519+scoootscooob@users.noreply.github.com>
Co-authored-by: scoootscooob <167050519+scoootscooob@users.noreply.github.com>
Reviewed-by: @scoootscooob
 2026-04-08 04:00:17 -07:00
Peter Steinberger
b4034b32c3 fix: honor Slack Socket Mode env proxies (#62878) (thanks @mjamiv) 2026-04-08 05:38:45 +01:00
Bob
f6124f3e17 ACP: harden Discord recovery and reset flow (#62132) 
* ACP: harden Discord recovery and reset flow

* CI: harden bundled vitest excludes

* ACP: fix Claude launch and reset recovery

* Discord: use follow-up replies after slash defer

* ACP: route bound resets through gateway service

* ACP: unify bound reset authority

* ACPX: update OpenClaw branch to 0.5.2

* ACP: fix rebuilt branch replay fallout

* ACP: fix CI regressions after ACPX 0.5.2 update

---------

Co-authored-by: Onur <2453968+osolmaz@users.noreply.github.com>
 2026-04-07 12:23:50 +02:00
Peter Steinberger
1697bb7d23 build: sync pnpm lockfile for acpx plugin sdk dep 2026-04-07 09:05:06 +01:00
Peter Steinberger
fd6d3f270d fix: repair ci lockfile and boundary drift 2026-04-07 09:02:26 +01:00
Peter Steinberger
4094bf9985 build(deps): update vulnerable packages 2026-04-07 03:40:25 +01:00
Onur
08296e9645 chore: bump bundled acpx to 0.5.1 (#62148) 
* chore: bump bundled acpx to 0.5.1

* chore: note acpx 0.5.1 pin bump (#62148) (thanks @onutc)
 2026-04-06 23:54:26 +02:00
Peter Steinberger
177be0f237 fix: remove provider hardcoding and fix arcee openrouter 2026-04-06 19:53:27 +01:00
OpenClaw Contributor
37e89b930f fix(discord): restore voice receive path and reply playback 2026-04-06 18:44:19 +01:00
Peter Steinberger
04e360e7e8 build(lockfile): sync proxy-agent dependency 2026-04-06 15:06:54 +01:00
Mariano
ebad21c94d plugins: add bundled webhooks TaskFlow bridge (#61892) 
Merged via squash.

Prepared head SHA: ca58fb77a8
Co-authored-by: mbelinky <132747814+mbelinky@users.noreply.github.com>
Co-authored-by: mbelinky <132747814+mbelinky@users.noreply.github.com>
Reviewed-by: @mbelinky
 2026-04-06 15:59:47 +02:00
Onur Solmaz
154a7edb7c refactor: consume acpx runtime library (#61495) 
* refactor: consume acpx runtime library

* refactor: remove duplicated acpx runtime files

* fix: update acpx runtime dependency

* fix: preserve acp runtime error codes

* fix: migrate legacy acpx session files

* fix: update acpx runtime dependency

* fix: import Dirent from node fs

* ACPX: repin shared runtime engine

* ACPX: repin runtime semantics fixes

* ACPX: repin runtime contract cleanup

* Extensions: repin ACPX after layout refactor

* ACPX: drop legacy session migration

* ACPX: drop direct ACP SDK dependency

* Discord ACP: stop duplicate direct fallback replies

* ACP: rename delivered text visibility hook

* ACPX: pin extension to 0.5.0

* Deps: drop stale ACPX build-script allowlist

* ACPX: add local development guidance

* ACPX: document temporary pnpm exception flow

* SDK: preserve legacy ACP visibility hook

* ACP: keep reset commands on local path

* ACP: make in-place reset start fresh session

* ACP: recover broken bindings on fresh reset

* ACP: defer fresh reset marker until close succeeds

* ACP: reset bound sessions fresh again

* Discord: ensure ACP bindings before /new

* ACP: recover missing persistent sessions
 2026-04-06 15:51:08 +02:00
Harold Hunt
0bd0097557 refactor: add xai plugin-sdk boundary canary (#61548) 
* docs: plan real plugin-sdk workspace rollout

* build: add xai plugin-sdk boundary canary

* build: generate plugin-sdk package types

* build: hide plugin-sdk core export

* build: alias scoped plugin-sdk runtime imports

* build: repair plugin-sdk boundary drift

* fix(plugins): remove duplicated plugin-sdk entrypoints

* test(plugins): make tsc boundary canary portable

---------

Co-authored-by: Vincent Koc <vincentkoc@ieee.org>
 2026-04-06 14:13:11 +01:00
Peter Steinberger
45875ed532 chore(deps): update dependencies 2026-04-06 13:25:17 +01:00
Peter Steinberger
d43ac5d14c fix(discord): restore carbon beta 2026-04-06 13:01:22 +01:00
Peter Steinberger
e6d6b10470 build: refresh pnpm lockfile 2026-04-06 05:14:10 +01:00
wirjo
0793136c63 feat(bedrock-mantle): add IAM credential auth via @aws/bedrock-token-… (#61563) 
* feat(bedrock-mantle): add IAM credential auth via @aws/bedrock-token-generator

Mantle previously required a manually-created API key (AWS_BEARER_TOKEN_BEDROCK).
This adds automatic bearer token generation from IAM credentials using the
official @aws/bedrock-token-generator package.

Auth priority:
1. Explicit AWS_BEARER_TOKEN_BEDROCK env var (manual API key from Console)
2. IAM credentials via getTokenProvider() → Bearer token (instance roles,
   SSO profiles, access keys, EKS IRSA, ECS task roles)

Token is cached in memory (1hr TTL, generated with 2hr validity) and in
process.env.AWS_BEARER_TOKEN_BEDROCK for downstream sync reads.

Falls back gracefully when package is not installed or credentials are
unavailable — Mantle provider simply not registered.

Closes #45152

* fix(bedrock-mantle): harden IAM auth

---------

Co-authored-by: Vincent Koc <vincentkoc@ieee.org>
 2026-04-06 01:41:24 +01:00
Peter Steinberger
f42a06b1a4 build: refresh lockfile for control ui deps 2026-04-06 01:25:39 +01:00
wirjo
699b2320a8 feat(memory): add Bedrock embedding provider for memory search (#61547) 
* feat(memory): add Bedrock embedding provider for memory search

Add Amazon Bedrock as a native embedding provider for memory search.
Supports Titan Embed Text v1/v2 and Cohere Embed models via AWS SDK.

- New embeddings-bedrock.ts: BedrockRuntimeClient + InvokeModel
- Auth via AWS default credential chain (same as Bedrock inference)
- Auto-selected in 'auto' mode when AWS credentials are detected
- Titan V2: configurable dimensions (256/512/1024), normalization
- Cohere: native batch support with search_query/search_document types
- 16 new tests covering all model types, auth detection, edge cases

Closes #26289

* fix(memory): harden bedrock embedding selection

---------

Co-authored-by: Vincent Koc <vincentkoc@ieee.org>
 2026-04-06 01:19:56 +01:00
Vignesh Natarajan
61e61ccc18 Dreaming: simplify sweep flow and add diary surface 2026-04-05 17:18:54 -07:00
Mariano
7f97fa6ed5 Lobster: run workflows in process (#61523) 
* Lobster: run workflows in process

* docs: note in-process lobster runtime

* docs: add lobster changelog attribution
 2026-04-06 01:30:47 +02:00
Peter Steinberger
8e1c81e707 feat(qa): recreate qa lab docker stack 2026-04-05 23:21:56 +01:00
Peter Steinberger
932194b7d5 feat(video): add provider support and discord fallback 2026-04-05 22:06:56 +01:00
Vincent Koc
c3fd7fbbe7 fix(acpx): repair sdk dependency lockfile 2026-04-05 17:20:46 +01:00
Peter Steinberger
d70162864a chore(deps): update direct dependencies 2026-04-05 13:33:16 +01:00
Peter Steinberger
227a13bd55 fix: pin defu to 6.1.5 2026-04-05 13:03:30 +01:00
Altay
0089eb28fa fix(pnpm-workspace): add acpx to minimumReleaseAgeExclude (#61032) 2026-04-04 23:57:34 +03:00
Onur
7de3a16ab4 ACPX: bump pinned version to 0.4.1 (#60918) 
* ACPX: bump pinned version to 0.4.1

* ACPX: refresh lockfile for 0.4.1
 2026-04-04 17:37:17 +02:00
Peter Steinberger
76d1f26782 chore(deps): update workspace dependencies 2026-04-04 22:40:08 +09:00
Peter Steinberger
eeb2888f6e fix(ci): sync openai provider lockfile 2026-04-04 04:24:31 +01:00