Tak Hoffman
f16a66fa43
fix: release local heavy-check locks on success
2026-04-10 17:05:26 -05:00
Peter Steinberger
59925c1a74
chore: update dependencies and oxc tooling
2026-04-10 19:28:42 +01:00
Peter Steinberger
be9bef32df
perf: cache local tsgo checks
2026-04-10 17:06:28 +01:00
Peter Steinberger
e9fb4c7f93
perf: skip tsgo declaration transforms
2026-04-10 15:52:07 +01:00
Peter Steinberger
2ccb5cff22
test: move Vitest configs under test
2026-04-10 13:44:51 +01:00
Peter Steinberger
64f2b20963
test: isolate sharding default env
2026-04-10 13:43:25 +01:00
Peter Steinberger
e462e531ad
test: keep runtime staging fallback assertion on symlink path
2026-04-10 09:57:27 +01:00
Davanum Srinivas
08ae021d1f
fix(qqbot): guard image-size probe against SSRF ( #63495 )
...
* fix(qqbot): replace raw fetch in image-size probe with SSRF-guarded fetchRemoteMedia
Replace the bare fetch() in getImageSizeFromUrl() with fetchRemoteMedia()
from the plugin SDK, closing the blind SSRF via markdown image dimension
probing (GHSA-2767-2q9v-9326).
fetchRemoteMedia options: maxBytes 65536, maxRedirects 0, generic
public-network-only SSRF policy (no hostname allowlist, blocks
private/reserved/loopback/link-local/metadata IPs after DNS resolution).
Also fixes the repo-root resolution in scripts/lib/ts-guard-utils.mjs
which caused lint:tmp:no-raw-channel-fetch to miss extension files
entirely. The guard now walks up to .git instead of hardcoding two parent
traversals, and the allowlist is refreshed with all pre-existing raw
fetch callsites that became visible.
* fix(qqbot): guard image-size probe against SSRF (#63495 ) (thanks @dims)
---------
Co-authored-by: sliverp <870080352@qq.com >
2026-04-09 16:48:04 +08:00
Peter Steinberger
5b28ab83ef
test: run local full suite project shards in parallel
2026-04-09 02:26:22 +01:00
Peter Steinberger
a9f831e065
test: make shared-token reload deterministic
2026-04-09 01:38:16 +01:00
Peter Steinberger
a3d21539ef
test: stabilize full-suite execution
2026-04-08 19:40:57 +01:00
Ayaan Zaidi
17e6ef4076
fix(build): keep tsdown prune best-effort
2026-04-08 21:16:49 +05:30
Ayaan Zaidi
f4ec59c431
fix(build): honor postinstall disable flag
2026-04-08 21:01:53 +05:30
Ayaan Zaidi
66ec8909bd
fix(build): address bundled plugin prune review
2026-04-08 21:01:53 +05:30
Ayaan Zaidi
b28fe1b92f
fix(build): prune stale bundled plugin node_modules
2026-04-08 21:01:53 +05:30
Peter Steinberger
e65d6ebb63
test: fix full suite CI test isolation
2026-04-08 14:29:19 +01:00
Peter Steinberger
e673efe537
ci: split parallel full suite into leaf shards
2026-04-08 13:20:05 +01:00
Peter Steinberger
4d2ea434d2
ci: skip duplicate full extension shard
2026-04-08 13:03:51 +01:00
Peter Steinberger
95e397a266
refactor: dedupe repeated test helpers
2026-04-08 09:58:22 +01:00
Nimrod Gutman
6681878339
feat(ios): pin calver release versioning ( #63001 )
...
* feat(ios): decouple app versioning from gateway
* feat(ios): pin calver release versioning
* refactor(ios): drop prerelease version helper fields
* docs(changelog): note pinned ios release versioning (#63001 ) (thanks @ngutman)
2026-04-08 11:25:35 +03:00
Vincent Koc
2e7a0fc7fb
perf(plugins): report slow boundary compiles
2026-04-08 08:52:51 +01:00
Peter Steinberger
4f5c137f88
fix: unblock windows update build
2026-04-08 07:18:31 +01:00
Peter Steinberger
f4c64168e7
test: route gateway HTTP history and startup wiring to e2e
2026-04-08 06:17:52 +01:00
Peter Steinberger
993abc1fb9
test: move gateway e2e fixture out of unit lane
2026-04-08 05:57:51 +01:00
Peter Steinberger
5eab61b45d
test: add opt-in leaf project scheduler
2026-04-08 05:28:55 +01:00
Peter Steinberger
2c5b534f65
test: guard bundled channel sidecar specifiers
2026-04-08 05:07:01 +01:00
Peter Steinberger
d03fa0899f
fix: repair bundled channel secret sidecars
2026-04-08 04:56:58 +01:00
Peter Steinberger
5982f2e5e4
fix: repair Telegram setup package entry
2026-04-08 04:48:32 +01:00
Peter Steinberger
d51f527cca
feat: add gh-read GitHub app helper
2026-04-08 00:09:07 +01:00
Vincent Koc
4c97582d4b
fix(plugins): restore shared boundary sdk prep
2026-04-07 13:11:30 +01:00
Vincent Koc
76296a9d14
fix(plugins): track package boundary dts freshness
2026-04-07 13:11:30 +01:00
Vincent Koc
fdc88a753f
perf(plugins): slim boundary canary target
2026-04-07 12:50:16 +01:00
Vincent Koc
f22d708d6f
perf(plugins): cache shared boundary freshness scans
2026-04-07 12:39:19 +01:00
Vincent Koc
12864e3b21
perf(plugins): stabilize warm boundary compile skips
2026-04-07 12:35:48 +01:00
Vincent Koc
7d2088132d
perf(plugins): skip fresh boundary plugin compiles
2026-04-07 12:26:09 +01:00
Peter Steinberger
c541a9c110
Tests: fix flaky shard expectations
2026-04-07 12:22:51 +01:00
Vincent Koc
3493db46a4
perf(plugins): skip fresh boundary dts prep
2026-04-07 12:19:49 +01:00
Vincent Koc
8ebd022377
refactor(plugins): time boundary phases
2026-04-07 12:11:17 +01:00
Vincent Koc
721097f2e9
refactor(plugins): print boundary success summary
2026-04-07 12:05:24 +01:00
Vincent Koc
f856e0b72f
refactor(plugins): annotate boundary failure metadata
2026-04-07 12:01:35 +01:00
Vincent Koc
48ea1c3492
fix(plugins): harden boundary check failures
2026-04-07 11:56:38 +01:00
Vincent Koc
1e5b026e61
perf(plugins): abort failed boundary compile siblings
2026-04-07 11:47:10 +01:00
Vincent Koc
f54188f600
fix(plugins): abort sibling boundary prep steps
2026-04-07 11:42:45 +01:00
Vincent Koc
0ca8eb40c1
refactor(plugins): stream boundary prep step output
2026-04-07 11:38:04 +01:00
Vincent Koc
a8e46e7048
fix(plugins): scrub canary artifacts for all opt-in packages
2026-04-07 11:26:34 +01:00
Vincent Koc
881f41d4a1
fix(plugins): clean package boundary canary artifacts
2026-04-07 11:10:16 +01:00
Vincent Koc
dbcb1f06ec
fix(test): suppress vitest plugin timing noise
2026-04-07 10:54:20 +01:00
Peter Steinberger
ba484d263b
Tests: add unit-fast Vitest lane
2026-04-07 10:03:42 +01:00
Vincent Koc
eac6e2d42d
fix(build): strip local workspace deps from staged plugin manifests
2026-04-07 09:44:43 +01:00
Peter Steinberger
eafe0a6d67
build: fix check and bundled runtime staging
2026-04-07 09:18:59 +01:00
