Merge remote-tracking branch 'origin/main' into pr-50994
2026-06-22 18:48:07 -05:00
fix(windows): suppress console flashes and harden gateway restarts
2026-06-25 14:42:38 -07:00
fix(approval): fold Windows absolute home paths in dangerous-command detection
2026-06-25 17:49:39 -07:00
feat(delegation): background fan-out — parallel subagents, one consolidated return ( #49734 )
2026-06-20 11:27:12 -07:00
refactor(cron): rebrand Cron Recipes -> Automation Blueprints
2026-06-11 10:49:47 -07:00
fix(browser): force secret-pattern redaction on browser_type display
2026-06-25 22:02:22 -07:00
fix(deps): declare websockets as core dep + relax dev setuptools pin (salvage #45486 , #44693 ) ( #46744 )
2026-06-15 12:44:44 -04:00
feat: auto-launch Chromium-family browser for CDP
2026-05-19 22:34:05 -07:00
fix(browser): recover from CDP DOM-node serialization crash in browser_console ( #35385 )
2026-05-30 07:31:25 -07:00
fix(browser): force secret-pattern redaction on browser_type display
2026-06-25 22:02:22 -07:00
fix(agent): scale tool-output budget to the model context window ( #23767 )
2026-06-21 17:46:38 +05:30
fix(cron): compact cron failure messages + repair bare repo dirs after git gc
2026-06-19 07:35:29 -07:00
feat(gateway): wire clarify tool with inline keyboard buttons on Telegram ( #24199 )
2026-05-12 16:33:33 -07:00
fix(clarify): docstring — put options in choices[] only, never enumerate in question text
2026-06-19 07:34:02 -07:00
fix(security): quote HERMES_TIMEZONE in remote code execution to prevent shell injection
2026-06-21 16:55:12 -07:00
feat(computer_use): cross-platform cua-driver (macOS/Windows/Linux)
2026-06-22 06:42:30 -07:00
fix(slack): make video attachments available to agents ( #45512 )
2026-06-13 03:33:27 -07:00
fix(security): align cron invisible-unicode set with install-time scanner
2026-06-26 01:11:11 -07:00
feat(moa): expose MoA presets as selectable virtual models ( #46081 )
2026-06-25 13:52:06 -07:00
feat(moa): expose MoA presets as selectable virtual models ( #46081 )
2026-06-25 13:52:06 -07:00
feat: add Discord message deletion action
2026-05-07 05:11:09 -07:00
harden(env_passthrough): apply GHSA-rhgp-j443-p4rf filter to config.yaml path ( #27794 )
2026-05-25 03:35:23 -07:00
fix: prevent TUI gateway stdin EOF crash across all TUI-context subprocess calls
2026-06-08 22:46:57 -07:00
refactor(image_gen): port FAL backend to plugins/image_gen/fal
2026-05-22 04:10:45 -07:00
perf(cli): cut ~19s from 'hermes' cold start (skills cache + lazy Feishu + no Nous HTTP) ( #22138 )
2026-05-08 16:39:32 -07:00
perf(cli): cut ~19s from 'hermes' cold start (skills cache + lazy Feishu + no Nous HTTP) ( #22138 )
2026-05-08 16:39:32 -07:00
fix: warn on line-oriented newline search patterns
2026-06-20 23:23:47 -07:00
feat(delegate): cross-agent file state coordination for concurrent subagents ( #13718 )
2026-04-21 16:41:26 -07:00
fix(tools): isolate per-session worktree cwd
2026-06-25 16:40:27 -05:00
fix(fuzzy-match): preserve boundary space after whitespace-normalized match
2026-06-26 01:55:27 +05:30
krea
2026-06-25 12:38:33 -07:00
fix(interrupt): propagate to concurrent-tool workers + opt-in debug trace ( #11907 )
2026-04-17 20:39:25 -07:00
feat(kanban): typed block reasons + unblock-loop breaker ( #52848 )
2026-06-25 21:46:58 -07:00
fix(docker): redirect lazy installs to a durable target so opt-in backends work in the immutable image ( #51136 )
2026-06-25 09:20:13 +10:00
fix(managed-gateway): keep tool availability scans off the Nous token-refresh path
2026-05-30 07:58:08 -07:00
fix(mcp): auto-recover from invalid_client on stale OAuth client registration
2026-06-26 00:35:27 -07:00
fix(mcp): auto-recover from invalid_client on stale OAuth client registration
2026-06-26 00:35:27 -07:00
fix(mcp): run OSV malware preflight off the event loop with a bounded timeout ( #29184 )
2026-06-25 23:30:41 +05:30
fix(memory): skip drift guard for add (append-only) action ( #42874 )
2026-06-25 00:51:12 +05:30
feat(msgraph): add auth and client foundation
2026-05-08 09:27:26 -07:00
fix(msgraph): stream download_to_file body instead of buffering
2026-05-08 09:27:26 -07:00
fix(osv_check): honor npx --package/-p install target when parsing package arg ( #40567 )
2026-06-06 18:30:39 -07:00
fix(lint): skip per-file shell linter when LSP will handle the file ( #29054 )
2026-05-20 01:46:40 -05:00
feat(gateway): scale-to-zero idle detection + dormant-quiesce (Phase 0)
2026-06-24 18:47:18 -07:00
feat(tools): add project workspace tools
2026-06-25 16:40:27 -05:00
feat(read): extract notebook and office documents ( #37082 )
2026-06-13 14:42:51 -07:00
feat(desktop): resizable VS Code-themed terminal pane + palette polish ( #42521 )
2026-06-09 23:15:20 -05:00
security: sanitize tool error strings before injecting into model context ( #26823 )
2026-05-16 00:57:39 -07:00
fix(tools): strip default from $ref nodes in tool schemas
2026-06-12 00:30:51 -05:00
refactor(gateway): migrate slack/dingtalk/whatsapp/matrix/feishu/telegram/wecom/email/sms adapters to bundled plugins
2026-06-20 10:26:45 -07:00
fix(tools): let session_search match session titles
2026-06-26 01:12:26 +05:30
fix(curator): protect external skills from background curation
2026-06-25 22:03:02 -07:00
fix(curator): only mark agent-created for background-review sediment ( #19621 )
2026-05-04 02:42:16 -07:00
fix(curator): protect external skills from background curation
2026-06-25 22:03:02 -07:00
refactor(skills): slim AST diagnostic to single entry point
2026-05-23 17:47:26 -07:00
fix(skills-guard): stop flagging benign skill content + honor skill ignore files ( #36231 )
2026-06-01 01:58:48 -07:00
fix(skills): let ClawHub index build walk past the 12s browse budget ( #44500 )
2026-06-11 18:03:11 -04:00
fix(skills): refuse SKILLS_DIR root in rmtree guard, not just outside-tree
2026-06-18 08:53:35 -07:00
fix(skills): ignore support docs in skill discovery
2026-06-16 13:08:34 -07:00
fix(async): close unscheduled coroutines in all threadsafe bridges ( #26584 )
2026-05-15 14:00:01 -07:00
fix(tools): isolate per-session worktree cwd
2026-06-25 16:40:27 -05:00
fix(code-exec): propagate agent-turn context into tool worker threads
2026-05-29 03:44:49 -07:00
fix(security): stop blocking AGENTS.md/SOUL.md that name an agent 'Praxis' ( #52925 )
2026-06-26 00:36:01 -07:00
fix(tools): catch mkdtemp OSError in tirith install to prevent unbounded retry and temp-dir leak ( #51826 )
2026-06-25 02:13:56 +05:30
fix(tools): defensive type coercion in todo_tool for malformed LLM input ( #14185 )
2026-06-25 23:42:42 +05:30
feat(tools): surface the free tool pool in entitlement + setup ( #36153 )
2026-06-01 06:32:48 +05:30
fix: tool_output_limits re-reads config on every call (no caching)
2026-05-31 00:50:19 -07:00
fix(tool-result-storage): persist via stdin to bypass 128 KB exec-arg cap ( #22913 )
2026-05-09 18:44:58 -07:00
fix(tool-search): scope bridge catalog + dispatch to the session's toolsets
2026-05-29 02:04:12 -07:00
fix: prevent TUI gateway stdin EOF crash across all TUI-context subprocess calls
2026-06-08 22:46:57 -07:00
feat(tts): add xAI TTS speed and optimize_streaming_latency config knobs
2026-06-19 07:26:56 -07:00
fix(security): handle IPv6 scope IDs in URL safety checks to prevent bypass
2026-06-21 13:56:35 -07:00
fix(image/video gen): make schema delivery instruction platform-neutral ( #51031 )
2026-06-22 13:40:42 -07:00
fix(deps): force prompt=False on the two mid-session lazy-install tool paths
2026-06-06 18:44:15 -07:00
fix: prevent TUI gateway stdin EOF crash across all TUI-context subprocess calls
2026-06-08 22:46:57 -07:00
revert(web): remove keyless Parallel search fallback ( #46350 )
2026-06-14 16:47:57 -07:00
chore(web): remove web_crawl tool + provider crawl plumbing ( #33824 )
2026-05-28 04:52:42 -07:00
fix(memory,skills): repair write-approval inline prompt, gateway staging, and gateway /skills review ( #43452 )
2026-06-10 02:57:15 -07:00
chore: prune unused imports and duplicate import redefinitions
2026-05-28 22:26:25 -07:00
feat(web): add xAI Web Search provider plugin
2026-05-19 19:27:34 -07:00
Fix unsafe gateway media path delivery
2026-05-23 01:40:35 -07:00
fbfccbb3ee