vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-06 23:20:43 +00:00
Code Issues Packages Projects Releases Wiki Activity
33,691 Commits 1,843 Branches 149 Tags
bba63d4e784cbf487cb1d9b2041b56aee40e57a4
Commit Graph

78 Commits

Author SHA1 Message Date
Peter Steinberger
bba63d4e78 test(codex): await event projector setup 2026-04-23 00:46:04 +01:00
pashpashpash
ff02563c7c feat(codex): add guardian app-server mode (#70090) 
Reworks the Codex app-server Guardian change into the final landing shape:

- keep YOLO as the default local app-server mode
- add explicit `appServer.mode: "guardian"`
- remove the legacy `OPENCLAW_CODEX_APP_SERVER_GUARDIAN` shortcut
- document Guardian configuration and behavior
- add Guardian event projection and Docker live probes for approved/ask-back decisions

Co-authored-by: pashpashpash <nik@vault77.ai>
 2026-04-23 00:25:43 +01:00
Vincent Koc
34e45ecfcc feat(codex): add llm lifecycle hooks (#70312) 
* feat(codex): add llm lifecycle hooks

* fix(codex): close llm hook lifecycle gaps

* fix(codex): dedupe llm hook context

* fix(codex): preserve abort and error hook state
 2026-04-22 16:19:59 -07:00
Vincent Koc
a5128777ee feat(codex): add tool hook parity (#70307) 
* feat(codex): add tool hook parity

* fix(codex): stabilize tool hook parity

* fix(codex): tighten transcript hook typing

* fix(codex): preserve mirrored transcript idempotency

* fix(codex): normalize tool hook context
 2026-04-22 16:18:10 -07:00
Vincent Koc
e8b56a9928 feat(codex): add prompt and compaction hooks (#70313) 
* feat(codex): add prompt and compaction hooks

* fix(codex): clean prompt and compaction hook tests
 2026-04-22 15:56:08 -07:00
Lucenx9
ec5015924c fix(codex): fail closed for unknown approvals 2026-04-22 23:38:44 +01:00
Peter Steinberger
4285958bcd test(codex): cover websocket token rotation (#70328) (thanks @Lucenx9) 2026-04-22 23:37:58 +01:00
Lucenx9
15f285c0cb fix(codex): scope stale shared-client cleanup 2026-04-22 23:37:58 +01:00
Lucenx9
0bc5ccc706 fix(codex): rotate shared app-server clients on auth changes 2026-04-22 23:37:58 +01:00
Peter Steinberger
2cd3164a0f feat(providers): share GPT-5 prompt overlay 2026-04-22 23:36:06 +01:00
Peter Steinberger
d1e06407bf chore: add extension runtime dependency manifests 2026-04-22 22:36:40 +01:00
pashpashpash
cd41bd1359 fix(codex): apply GPT-5 prompt overlay (#70175) 2026-04-22 22:00:23 +09:00
pashpashpash
abf940db61 fix(codex): unchain app-server defaults (#70082) 2026-04-22 17:53:49 +09:00
pashpashpash
1dd3fb1611 Fix Codex auth handoff for the app-server harness (#69990) 
* Codex: fix auth bridge token shape

* Codex: preserve selected auth tokens

* Codex: prefer selected profile id token

* Codex: honor inherited Codex home

---------

Co-authored-by: Val Alexander <68980965+BunsDev@users.noreply.github.com>
 2026-04-22 16:22:29 +09:00
Peter Steinberger
0f4dc42767 build: update pi packages to 0.68.1 2026-04-22 03:35:15 +01:00
Sanjay Santhanam
081da17090 fix(codex): exclude codex-app-server synthetic apiKey from secrets audit (#69581) 
* fix(codex): exclude codex-app-server synthetic apiKey from secrets audit

The Codex extension uses the literal string "codex-app-server" as a
hardcoded placeholder apiKey in provider.ts, since the real
authentication is managed by the app-server transport itself.

The secrets audit currently reports this as a real plaintext leak
(PLAINTEXT_FOUND), producing a false positive for any user who has
configured the Codex harness.

Declare it as a plugin-owned non-secret marker in the Codex plugin
manifest, so it flows through the standard
`listKnownNonSecretApiKeyMarkers()` path alongside `ollama-local`,
`lmstudio-local`, `gcp-vertex-credentials`, and `minimax-oauth`.

Also extends the existing `model auth markers` unit tests to lock
in the behavior.

Fixes #69511

* ci: retrigger checks (no-op)
 2026-04-21 21:38:26 +10:00
Peter Steinberger
f1805ab54d fix: centralize provider thinking profiles 2026-04-21 09:13:35 +01:00
Peter Steinberger
047acaa176 fix: stage ACP and Codex runtime deps 2026-04-21 08:47:24 +01:00
Peter Steinberger
201bf85ce9 test: expand codex image fallback coverage (#65061) (thanks @zhulijin1991) 2026-04-21 04:20:22 +01:00
zhulijin1991
15258921ee fix(codex): avoid re-exposing image tool on vision turns 2026-04-21 04:20:22 +01:00
Lucenx9
d04f7e7ce7 fix(codex): default app-server approvals to on-request 2026-04-21 01:06:36 +01:00
Peter Steinberger
660e4257a7 refactor: share codex auth bridge 2026-04-21 00:54:08 +01:00
Peter Steinberger
25428c4631 fix: keep Codex projector events isolated (#69072) (thanks @ayeshakhalid192007-dev) 2026-04-21 00:49:54 +01:00
ayeshakhalid192007-dev
f2f27775fb fix(codex/app-server): release session lane when projector throws on turn/completed 2026-04-21 00:49:54 +01:00
ayeshakhalid192007-dev
54a2a20447 test(codex): wait for initialize write before reading harness in models.test.ts 2026-04-21 00:49:54 +01:00
Peter Steinberger
f42fc9e6c2 test: share codex provider fixtures 2026-04-20 16:59:18 +01:00
Peter Steinberger
f0ef3070fa refactor: share codex app-server client factory 2026-04-20 16:58:16 +01:00
Peter Steinberger
d2e2d971b6 test: share codex app-server setup helpers 2026-04-20 16:54:01 +01:00
Peter Steinberger
1f24ecbf24 test: share codex projector fixtures 2026-04-20 16:51:34 +01:00
Peter Steinberger
68b7666d7c test: share codex app-server client fixtures 2026-04-20 16:46:32 +01:00
Peter Steinberger
d3c9b9d30f test: share codex run-attempt fixtures 2026-04-20 16:41:11 +01:00
Peter Steinberger
78f9f3093e test: share codex app-server test helpers 2026-04-20 16:39:15 +01:00
Peter Steinberger
6abbe837b5 perf(test): shorten codex app-server timeout tests 2026-04-20 16:07:05 +01:00
Peter Steinberger
d2a271d5c8 perf(test): tighten codex model and fs bridge tests 2026-04-20 15:48:12 +01:00
Peter Steinberger
8116e638f3 chore: release 2026.4.20 2026-04-20 13:16:40 +01:00
Peter Steinberger
ac8f0c9c0d chore: prepare 2026.4.19-beta.1 release 2026-04-19 02:09:43 +01:00
Cyrus Forbes
9a94194329 fix: avoid cumulative codex usage as context (#64669) (thanks @cyrusaf) 2026-04-18 23:09:05 +01:00
Peter Steinberger
2fc429dfbf fix: keep codex oauth bridge extension-owned (#68284) (thanks @vincentkoc) 2026-04-18 21:27:27 +01:00
Vincent Koc
f1cc8f0cfc fix(codex): reuse bound auth profile for app-server startup 2026-04-18 21:27:27 +01:00
Vincent Koc
4a4f52b097 fix(auth): restore codex oauth error and resume handling 2026-04-18 21:27:27 +01:00
Vincent Koc
a018257487 fix(auth): harden codex oauth bridge security 2026-04-18 21:27:27 +01:00
Vincent Koc
20debfab90 test(auth): align codex bootstrap expectations 2026-04-18 21:27:27 +01:00
Vincent Koc
78288e37ed fix(auth): close codex review gaps 2026-04-18 21:27:27 +01:00
Vincent Koc
859eb06662 refactor(auth): route codex runtimes through canonical oauth 2026-04-18 21:27:27 +01:00
Peter Steinberger
753183e081 build(deps): update workspace dependencies 2026-04-18 18:04:56 +01:00
Peter Steinberger
3f2e73b723 chore(release): bump version to 2026.4.18 2026-04-18 15:46:33 +01:00
Chunyue Wang
0b3d876e74 fix(codex): prevent gateway crash when app-server subprocess terminates abruptly (#67947) 
Fixes openclaw#67886. Handles stdin EPIPE in CodexAppServerClient by attaching an error handler, guarding writeMessage against writes after close, and aligning closeWithError cleanup with close.
 2026-04-17 23:28:37 +08:00
Peter Steinberger
0dc4c4076c chore: bump version to 2026.4.16 2026-04-17 00:45:04 +01:00
duqaXxX
69ba924b53 fix(codex): activate harness plugin for forced runtime 2026-04-16 09:06:45 -07:00
Cyrus Forbes
728295c046 Codex: parse Desktop app-server user agents 2026-04-16 08:56:56 -07:00