5253 Commits

This Branch

This Branch

All Branches

Author	SHA1	Message	Date
Molecule AI Core-DevOps	c36bbce76f	fix(ci): pass commits JSON via env block to avoid bash quoting break ... The detect-changes step's push path used `echo '${{ toJSON(github.event.commits) }}'` which broke on every main push because every main commit is a Gitea merge commit whose message contains single quotes (e.g. "Merge pull request 'fix: ...' from branch into main"). The embedded `'` ended the single-quoted bash string mid-JSON, and a subsequent `(` (e.g. in "#523)") was parsed as a subshell → "syntax error near unexpected token `('". This caused detect-changes to exit 2 → main-red. Fix: pass the JSON via an `env:` block (env values bypass shell quoting entirely) and pipe it to the script using `printf '%s' "$COMMITS_JSON"`. Closes #526. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 17:38:16 +00:00
Molecule AI Core-DevOps	b6a5825105	fix(tests): correct test_sanitize_agent_error_stderr_and_exc assertion ... The test expected the exception class to be hidden when stderr is provided, but the implementation always uses the exc type as the tag. Fix the assertion to match actual (correct) behavior: ValueError is in the tag, stderr is the body. Also add a check that we don't fall back to the generic "workspace logs" form. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 17:25:03 +00:00
Molecule AI Fullstack Engineer	74df9e4353	fix(workspace): include ~1KB sanitized stderr in A2A error responses ... Adds an optional `stderr` parameter to sanitize_agent_error(). When provided, up to 1 KB of stderr text is included in the A2A error response after sanitization (API keys / bearer tokens ≥20 chars / long paths redacted). The existing generic form is preserved when stderr is absent. Updates both the main a2a_executor and the google-adk adapter. Closes: roadmap item — SDK executor stderr swallowing. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 17:22:29 +00:00
hongming-pc2	7064f6d9f2	Merge pull request 'fix(a2a): add cache-first check to enrich_peer_metadata_nonblocking' (#518) from sre/fix-enrich-nonblocking-cache-check into main	2026-05-11 17:11:35 +00:00
Molecule AI Infra-SRE	1380bf0907	fix(a2a): add cache-first check to enrich_peer_metadata_nonblocking ... enrich_peer_metadata_nonblocking (a2a_client.py) never checked the _peer_metadata cache before scheduling a background fetch — it always returned None and always fired the executor thread pool. The docstring promised "cache hit: return the cached record" but the code did not implement it. Fix: add the same TTL-check that enrich_peer_metadata uses before scheduling the worker. On a warm cache hit the function now returns immediately without touching the in-flight set or the executor. Closes the remaining 5 test failures in test_a2a_mcp_server.py on main that were not covered by PR #508's test-assertions fix. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 16:59:54 +00:00
Molecule AI · core-lead	fc1b15b46a	Merge pull request 'fix(workspace): update test_delegation_sync_via_polling assertions for OFFSEC-003 (PR #477)' (#508) from sre/fix-test-delegation-sync-polling-assertions into main	2026-05-11 16:37:38 +00:00
Molecule AI Infra-SRE	ec20cd04ba	fix(workspace): update 3 test assertions for OFFSEC-003 boundary wrapping (PR #477) ... PR #477 added _A2A_BOUNDARY_START/END wrapping to tool_delegate_task's success path. Three tests in test_delegation_sync_via_polling.py were still asserting exact raw strings and broke: test_flag_off_uses_send_a2a_message_not_polling test_queued_sentinel_triggers_polling_fallback test_non_queued_send_result_does_not_trigger_fallback Fix: check for boundary markers + inner content instead of exact match. Import _A2A_BOUNDARY_START/END from _sanitize_a2a in the affected test methods. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 16:29:31 +00:00
Molecule AI · core-devops	c9dfb70314	Merge pull request 'chore(workspace): remove unused imports and f-string prefixes' (#506) from ci/lint-fixes into main	2026-05-11 16:12:32 +00:00
Molecule AI Core-DevOps	40ca44aa4d	chore(workspace): remove unused imports and f-string prefixes ... - test_a2a_tools_delegation.py: remove unused `import os` - test_a2a_tools_impl.py: remove unused `import sys` and `import pytest` - test_a2a_sanitization.py: remove unused `import pytest` and fix two f-strings with no placeholders (extra `f` prefix) All 27 related tests still pass.	2026-05-11 16:10:17 +00:00
Molecule AI · core-be	92f3a17a17	test(workspace): add 17-case coverage for enrich_peer_metadata + nonblocking + worker (#502) ... Co-authored-by: Molecule AI · core-be <core-be@agents.moleculesai.app> Co-committed-by: Molecule AI · core-be <core-be@agents.moleculesai.app>	2026-05-11 15:56:25 +00:00
Molecule AI · core-be	7b783aa2ed	fix(workspace): poll activity_logs for a2a_proxy delegation results (closes #354) (#501) ... Co-authored-by: Molecule AI · core-be <core-be@agents.moleculesai.app> Co-committed-by: Molecule AI · core-be <core-be@agents.moleculesai.app>	2026-05-11 15:53:05 +00:00
Molecule AI Core-DevOps	9025e86cc7	fix(harness-replays): use github.event.commits for push event detect-changes (#499) ... Co-authored-by: Molecule AI Core-DevOps <core-devops@agents.moleculesai.app> Co-committed-by: Molecule AI Core-DevOps <core-devops@agents.moleculesai.app>	2026-05-11 15:49:48 +00:00
core-be	952bfb3ca2	fix(workspace): replace asyncio.get_event_loop().run_until_complete with asyncio.run() (#307) (#498) ... Co-authored-by: core-be <core-be@agents.moleculesai.app> Co-committed-by: core-be <core-be@agents.moleculesai.app>	2026-05-11 15:37:34 +00:00
Molecule AI Infra-Runtime-BE	82083fbad9	fix(harness-replays): correct BASE/HEAD for push events in Compare API call (#497) ... Co-authored-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app> Co-committed-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app>	2026-05-11 15:32:08 +00:00
Molecule AI · core-devops	3a28330f9c	Merge pull request 'fix: TestPollingPathSanitization regression (3 bugs, closes #495)' (#496) from sre/fix-test-polling-sanitization into main	2026-05-11 15:29:25 +00:00
Molecule AI · core-lead	3d73fb1a72	Merge branch 'main' into sre/fix-test-polling-sanitization	2026-05-11 15:28:34 +00:00
Molecule AI Core-DevOps	ca5831b81e	fix(harness-replays): use Gitea Compare API instead of git diff for detect-changes (#476) ... Co-authored-by: Molecule AI Core-DevOps <core-devops@agents.moleculesai.app> Co-committed-by: Molecule AI Core-DevOps <core-devops@agents.moleculesai.app>	2026-05-11 15:26:11 +00:00
Molecule AI Infra-SRE	d7de4afad4	fix: TestPollingPathSanitization regression — 3 bugs, correct assertions ... Three bugs introduced in PR #477: 1. fake_discover(ws_id) missing source_workspace_id kwarg — discover_peer signature is (target_id, source_workspace_id=None). 2. Direct attribute assignment (d._delegate_sync_via_polling = ...) does not replace module-level 'from module import name' bindings resolved at call time; must use monkeypatch.setattr. 3. Assertions checked for [A2A_RESULT_FROM_PEER] but the polling path uses _A2A_BOUNDARY_START/END — _A2A_RESULT_FROM_PEER is added by send_a2a_message (messaging path), not by _delegate_sync_via_polling. Additionally: monkeypatch.setenv("DELEGATION_SYNC_VIA_INBOX", "1") forces the polling code path so the test exercises the correct logic regardless of environment defaults. Closes #495. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 15:22:16 +00:00
Molecule AI Infra-Runtime-BE	c4dcfbb089	fix(workspace): default PLATFORM_URL to host.docker.internal in all modules (#475) ... Co-authored-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app> Co-committed-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app>	2026-05-11 15:17:53 +00:00
Molecule AI Infra-Runtime-BE	635a42745a	fix(workspace): OFFSEC-003 — separate sanitize vs. wrap, fix tool_delegate_task (#477) ... Co-authored-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app> Co-committed-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app>	2026-05-11 15:10:25 +00:00
hongming-pc2	a5d4bea96b	test(canvas): add MemoryTab tests (36 cases) (#493) ... Co-authored-by: hongming-pc2 <hongming-pc2@moleculesai.app> Co-committed-by: hongming-pc2 <hongming-pc2@moleculesai.app>	2026-05-11 15:03:08 +00:00
hongming-pc2	f99b0fdf94	test(OrgCancelButton): 17 test cases for cancel-deployment pill (#485) ... Co-authored-by: hongming-pc2 <hongming-pc2@moleculesai.app> Co-committed-by: hongming-pc2 <hongming-pc2@moleculesai.app>	2026-05-11 14:44:12 +00:00
Molecule AI Core-DevOps	8019481452	fix(ci): reconcile sweep workflow secrets — use confirmed-existing names (#482) ... Co-authored-by: Molecule AI Core-DevOps <core-devops@agents.moleculesai.app> Co-committed-by: Molecule AI Core-DevOps <core-devops@agents.moleculesai.app>	2026-05-11 14:07:53 +00:00
Molecule AI App-FE	9ca86bee85	fix(canvas/test): consistent fake-timer state — fix ApprovalBanner test flakiness (#479) ... Co-authored-by: Molecule AI App-FE <app-fe@agents.moleculesai.app> Co-committed-by: Molecule AI App-FE <app-fe@agents.moleculesai.app>	2026-05-11 14:04:04 +00:00
Molecule AI Infra-SRE	7a731f6b42	fix(runbooks): correct Gitea runner fetch timing facts (post-#457) (#478) ... Co-authored-by: Molecule AI Infra-SRE <infra-sre@agents.moleculesai.app> Co-committed-by: Molecule AI Infra-SRE <infra-sre@agents.moleculesai.app>	2026-05-11 13:45:42 +00:00
Molecule AI · core-be	6403c5196f	Merge pull request 'tools: gate-check-v3 MVP — automated SOP-6 + CI gate detector' (#393) from tools/gate-check-v3 into main	2026-05-11 13:41:08 +00:00
Molecule AI Core-DevOps	b57cebf8d4	fix(gate-check-v3): tier-aware gate verdict computation ... tier:low and tier:high are OR gates — any one positive verdict is sufficient. The previous implementation required ALL groups to have positive verdicts, causing INCOMPLETE even when core-devops APPROVED and core-lead was absent. Now uses tier-specific logic: - tier:low / tier:high (OR): any positive = CLEAR - tier:medium (AND): all positive = CLEAR Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 13:38:02 +00:00
Molecule AI Core-DevOps	15e2d93989	fix(gate-check-v3): add pagination to api_list for comment/review scans ... Paginate all list endpoints (comments, reviews) to handle PRs with many comments without missing entries. Uses per_page=100 with page increment loop, safety-capped at 20 pages. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 13:38:02 +00:00
Molecule AI Core-DevOps	3eb06e40e6	fix(gate-check-v3): use submitted_at for review timestamps ... Gitea reviews use "submitted_at" not "created_at" for when the review was submitted. The earlier signal_1_comment_scan fix (inherited from sop-tier-check investigation) already handled this; signal_2 and signal_3 were missing the same correction. Fixes KeyError: 'created_at' on PRs with no comments/reviews. Includes the individual-check-status fix (use "status" not "state"). Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 13:38:02 +00:00
Molecule AI Core-DevOps	9d05335b1a	fix(gate-check-v3): use correct API field for individual check status ... Gitea Actions API uses "status" (pending/success/failure) not "state" for individual status entries. The "state" field is null for pending runs. This caused all_check_statuses to show Python null instead of "pending" for queued jobs. Also verified on PR #391 and PR #393 — individual checks now correctly display "pending" while combined_state is "pending" (CI_PENDING verdict). Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 13:38:02 +00:00
Molecule AI Core-DevOps	f470f589c0	tools/gate-check-v3: MVP automated PR gate detector ... SOP-6 + CI gate checker for Gitea PRs. Detects: - Signal 1: Author-aware agent-tag comment scan (tier-aware) - Signal 2: REQUEST_CHANGES reviews state machine - Signal 3: Staleness detection (SOP-12) - Signal 6: CI required-checks awareness Post `[gate-check-v3] STATUS:` comment on PRs. CLI + Gitea Actions workflow (cron hourly + PR-triggered). Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 13:38:02 +00:00
Molecule AI · core-be	0a2e1e9a97	Merge pull request 'fix(canvas/test): replace fixed-delay dialog wait with waitFor polling' (#453) from fix/canvas-purchase-success-modal-test-timing into main	2026-05-11 13:31:59 +00:00
Molecule AI · core-lead	d7e163d2a8	Merge branch 'main' into fix/canvas-purchase-success-modal-test-timing	2026-05-11 13:27:38 +00:00
Molecule AI Core-FE	05e6443e2c	test(canvas): add WorkspaceNode component test coverage (51 cases) (#480) ... Co-authored-by: Molecule AI Core-FE <core-fe@agents.moleculesai.app> Co-committed-by: Molecule AI Core-FE <core-fe@agents.moleculesai.app>	2026-05-11 13:14:19 +00:00
Molecule AI Core-BE	b62b18b523	[core-be-agent] ci: retrigger Canvas tests for env validation ... Retry CI run to confirm Canvas test suite passes on current head.	2026-05-11 12:50:57 +00:00
Molecule AI · core-be	e70955298b	Merge pull request 'docs(runbooks): add Gitea Actions operational quirks reference' (#457) from docs/gitea-operational-quirks-runbook into main	2026-05-11 12:37:37 +00:00
Molecule AI · core-lead	db647de1cd	Merge branch 'main' into docs/gitea-operational-quirks-runbook	2026-05-11 12:35:58 +00:00
Molecule AI Core-DevOps	94b08ef0de	docs(runbooks): add Gitea Actions operational quirks reference ... Documents four persistent operational findings from the 2026-05-11 Gitea migration and CI noise investigation: 1. Runner network isolation (git remote unreachable from container) 2. continue-on-error only works at step level, not job level 3. workflow_dispatch.inputs not supported 4. fetch-depth:0 on actions/checkout times out References PR #441 (harness-replays detect-changes fix) and Task #173 (pre-clone manifest deps pattern). Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 12:25:54 +00:00
Molecule AI Core-FE	1a2cfb9417	test(canvas): add Toolbar component test coverage (19 cases) (#472) ... Co-authored-by: Molecule AI Core-FE <core-fe@agents.moleculesai.app> Co-committed-by: Molecule AI Core-FE <core-fe@agents.moleculesai.app>	2026-05-11 12:25:46 +00:00
Molecule AI App-FE	3d572d97a3	fix(canvas/test): use string keys in TIER_CONFIG toHaveProperty calls (#440) ... Co-authored-by: Molecule AI App-FE <app-fe@agents.moleculesai.app> Co-committed-by: Molecule AI App-FE <app-fe@agents.moleculesai.app>	2026-05-11 12:15:29 +00:00
Molecule AI · core-lead	beea0e9b88	Merge branch 'main' into fix/canvas-purchase-success-modal-test-timing	2026-05-11 12:06:53 +00:00
claude-ceo-assistant	2747246519	fix(ci): sweep-stale-e2e-orgs reference + drop continue-on-error (closes EC2 leak) (#461) ... Co-authored-by: claude-ceo-assistant <claude-ceo-assistant@agents.moleculesai.app> Co-committed-by: claude-ceo-assistant <claude-ceo-assistant@agents.moleculesai.app>	2026-05-11 12:05:36 +00:00
Molecule AI · core-lead	67762ca422	Merge branch 'main' into fix/canvas-purchase-success-modal-test-timing	2026-05-11 12:00:57 +00:00
Molecule AI · core-be	71cfb70a6f	Merge pull request 'fix(canvas/test): ApprovalBanner mockReset to prevent queue stacking' (#467) from fix/approvalbanner-mockreset-452 into main	2026-05-11 11:58:53 +00:00
Molecule AI Core-BE	c2d27d2b3f	fix(canvas/test): ApprovalBanner mockReset to prevent queue stacking ... Cherry-picked from PR #452 (fix/canvas-test-and-design-fixes) which was closed without merge during the PR #443 cascade. The fix adds a mockPost reference so individual tests can reset the POST mock cleanly instead of queueing multiple resolved/rejected values. Without this, the "shows an error toast when POST fails" and "keeps the card visible when POST fails" tests queue two responses from beforeEach's mockResolvedValue({}) and the second mockRejectedValueOnce() call, causing non-deterministic test outcomes. Fixes test failures in ApprovalBanner suite.	2026-05-11 11:51:21 +00:00
claude-ceo-assistant	ce06b8cd59	Merge pull request 'fix(publish-runtime-autobump): shallow clone + explicit tag fetch (fixes main RED)' (#463) from fix/publish-runtime-autobump-fetch-depth into main ... Merge #463 — strict-root cascade clearing	2026-05-11 11:46:15 +00:00
claude-ceo-assistant	e0bbba801e	Merge branch 'main' into fix/publish-runtime-autobump-fetch-depth	2026-05-11 11:39:14 +00:00
claude-ceo-assistant	5c10ee0d73	Merge pull request 'fix(ci): canonicalize MOLECULE_STAGING_ADMIN_TOKEN -> CP_STAGING_ADMIN_API_TOKEN (post-#443 rebase; staging-smoke + 4 e2e-staging-*) + drop staging-smoke continue-on-error' (#464) from fix/canonicalize-staging-admin-token-rebase-462 into main ... Merge #464 — canonicalize MOLECULE_STAGING_ADMIN_TOKEN → CP_STAGING_ADMIN_API_TOKEN (post-#443 rebase; 5 workflows + 1 doc) + drop staging-smoke continue-on-error + fail-loud Notify. APPROVEs: hongming-pc2 1219 (Owners substance via the old #462 review chain) + core-devops 1241 (whitelist-counted). Completes internal#322 canonicalization.	2026-05-11 11:37:40 +00:00
claude-ceo-assistant	8f1d24f33f	fix(ci): canonicalize MOLECULE_STAGING_ADMIN_TOKEN -> CP_STAGING_ADMIN_API_TOKEN (post-#443 rebase) + drop staging-smoke continue-on-error ... Re-applies PR#462 on current main (PR#443 merged first and renamed canary-staging.yml -> staging-smoke.yml, conflicting #462). Swept 6 files (15 secret-ref flips): - .gitea/workflows/staging-smoke.yml (3 refs + drop continue-on-error + add notify-on-failure step) - .gitea/workflows/e2e-staging-saas.yml (3 refs) - .gitea/workflows/e2e-staging-sanity.yml (3 refs) - .gitea/workflows/e2e-staging-canvas.yml (3 refs) - .gitea/workflows/e2e-staging-external.yml (3 refs) - tests/e2e/STAGING_SAAS_E2E.md (1 heading flip + 1 historical-rename breadcrumb) Each workflow keeps one inline breadcrumb comment pointing back to the old name and internal#322. staging-smoke is the 30-min canary cadence for the entire staging SaaS stack; silent failure (continue-on-error: true) masked exactly the regressions the smoke exists to surface, same class as PR#461 (`sweep-stale-e2e-orgs`). Dropped continue-on-error from the smoke job + added a fail-loud `if: failure()` Notify step mirroring PR#461. The four other `e2e-staging-*` workflows KEEP continue-on-error: true per RFC #219 §1 — they are advisory. Excluded from this PR: - .gitea/workflows/sweep-stale-e2e-orgs.yml (PR#461 owns) - .gitea/workflows/staging-verify.yml (only references the plural MOLECULE_STAGING_ADMIN_TOKENS canary-fleet secret, out of scope) - scripts/staging-smoke.sh (same — plural only) - docs/architecture/canary-release.md (same — plural only) - .github/ mirror tree (separate scope per reference_molecule_core_actions_gitea_only) Verified locally: yaml.safe_load clean on all 5 workflows; grep returns ZERO non-breadcrumb references in the swept files; the plural MOLECULE_STAGING_ADMIN_TOKENS references in staging-verify.yml / scripts/staging-smoke.sh / canary-release.md are intentionally untouched. Refs: internal#322, PR#461, feedback_rename_pr_and_edit_pr_conflict_sequence	2026-05-11 04:33:56 -07:00
claude-ceo-assistant	ae30cdef87	refactor(ci): drop "canary-" prefix → staging-smoke/staging-verify (Hongming directive 2026-05-11) (#443) ... Co-authored-by: claude-ceo-assistant <claude-ceo-assistant@agents.moleculesai.app> Co-committed-by: claude-ceo-assistant <claude-ceo-assistant@agents.moleculesai.app>	2026-05-11 11:25:29 +00:00