Content for internal#8 / PR #1178 launch coverage.
Angle: EC2 console output surfaced directly in Canvas — no more
tab-switching to AWS Console.
~180 words.
Adds content/docs/guides/org-api-keys.md — CLI/API reference for minting,
listing, revoking org-scoped API keys. Referenced by the org-scoped API
keys blog post CTAs.
* docs(concepts): add Memory Inspector panel (canvas PR #738)
Document the canvas Memory Inspector panel — Side Panel → Memory tab.
Covers browse (LOCAL/TEAM scopes), semantic search via ?q= param,
and key expansion. Notes polling cadence (~15s heartbeat cycle).
Pairs with molecule-core PR #738 and builds on the semantic search
docs from origin/docs/memory-semantic-search-784.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
* docs(self-hosting): add ADMIN_TOKEN production requirement page
Adds content/docs/self-hosting/admin-token.mdx explaining:
- ADMIN_TOKEN must be set in production (deadline April 22, 2026)
- Generation: openssl rand -base64 32
- What /admin/* endpoints it gates
- Fail-open risk when unset
- Verification and rotation steps
Also updates meta.json nav and adds cross-link from self-hosting.mdx.
Pairs with: monorepo PR #729 (issue #684)
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
---------
Co-authored-by: Molecule AI Documentation Specialist <documentation-specialist@agents.moleculesai.app>
Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
Co-authored-by: Molecule AI App-FE <app-fe@agents.moleculesai.app>
* docs(security): add OWASP Agentic AI Top 10 coverage report
Adds content/docs/security/owasp-agentic-top-10.mdx with honest coverage:
✅ COVERED (5): A01 Prompt Injection, A02 Sensitive Info Disclosure,
A03 Unbounded Resource Consumption, A06 Memory Poisoning,
A07 Cascade Hallucinations
⚠️ PARTIAL (3): A04 Sandboxing Escapes, A05 Agent-Human Relationship
Dysfunction, A08 Overreliance
❌ NOT COVERED: A09 Supply Chain Vulnerabilities, A10 Improper Agency Grants
Meta.json updated to include security section with all three pages.
PR merge order note: advisory (#808) should merge before this PR.
If advisory is not yet merged, rebase to remove duplicate entries.
Deadline: April 25, 2026
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
* fix(security): update molecule-monorepo → molecule-core in OWASP coverage
Terminology fix: repo reference updated to the correct name.
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
---------
Co-authored-by: Molecule AI Documentation Specialist <documentation-specialist@agents.moleculesai.app>
Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
Co-authored-by: Molecule AI App-FE <app-fe@agents.moleculesai.app>
MDX parser (next-mdx-remote or nextra) treats bare URLs as syntax
errors. Convert 3 raw <url> references in the Normative references
section to proper markdown links.
Addresses Molecule-AI/docs issue #45.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Pairs with monorepo PRs #840 (opencode MCP bridge) and #842 (org-template +
integration guide). Adds opencode.mdx with prerequisites, opencode.json config,
token issuance, available tools, transport options, and SAFE-T1401/T1201
security notes. Adds ---Integrations--- nav section to meta.json.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Pairs with monorepo PRs #840 (opencode MCP bridge) and #842 (org-template +
integration guide). Adds opencode.mdx with prerequisites, opencode.json config,
token issuance, available tools, transport options, and SAFE-T1401/T1201
security notes. Adds ---Integrations--- nav section to meta.json.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Terminology fix: all references to the repo now use the correct name
molecule-core (was molecule-monorepo). No content changes beyond the
repo name update.
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Mark Phase 2e as shipped — native tools=[] parameter and
response_format=json_schema now on the Anthropic native dispatch path.
- Update intro paragraph: Phase 2d is now stacked messages (#499),
Phase 2e is tools + structured output (#644, #645)
- Replace Phase 2d roadmap callout with "remaining roadmap" (vision + streaming)
- Update capability table: native tools and response_format now ✅ on
Anthropic native; 📋 roadmap for Gemini native
- Add two new sections with code examples for tools=[] and response_format
- Remove "not yet shipped" language from capability table header
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Document the canvas Memory Inspector panel — Side Panel → Memory tab.
Covers browse (LOCAL/TEAM scopes), semantic search via ?q= param,
and key expansion. Notes polling cadence (~15s heartbeat cycle).
Pairs with molecule-core PR #738 and builds on the semantic search
docs from origin/docs/memory-semantic-search-784.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Document the admin-only cross-org schedule health endpoint returning
last-fired, next-scheduled, consecutive-empty count, and phantom detection
status for every schedule in the org. Complements the per-workspace peer
health endpoint already documented. Pairs with molecule-core PRs #671 and
#796.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Document GET /workspaces/:id/metrics — WorkspaceAuth-required endpoint
returning input/output/cache-read/cache-write token counts over rolling
1h and 30d windows. Notes the canvas WorkspaceUsage panel as the live
counterpart. Security context: endpoint auth hardened in PR #696.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Document POST/DELETE /admin/orgs/:orgId/plugins/allowlist endpoints for
controlling which plugins workspaces in an org may load. Covers allowlist
semantics (empty = all permitted; non-empty = allowlist-only), relationship
to supply-chain pinning, and the two admin API endpoints. Adds both
endpoints to the API Reference table at the bottom of the page.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
molecule-core-net was incorrect — docker-compose.infra.yml and docker-compose.yml both
declare the network as molecule-monorepo-net (8+ references confirmed). Repo was renamed
to molecule-core but the network name was not changed.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Repo was renamed Molecule-AI/molecule-monorepo → Molecule-AI/molecule-core.
Updates git clone URLs, cd commands, and Docker network name references
in quickstart.mdx, self-hosting.mdx, and architecture.mdx.
Note: molecule-core-net Docker network name updated from molecule-monorepo-net —
verify docker-compose.infra.yml network name matches before merging.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
