molecule-ai/molecule-core
51
0
Fork 2
Code Issues 165 Pull Requests 161 Actions 46 Packages Projects Releases Wiki Activity

Compare commits

merge into: molecule-ai/molecule-core:fix/plugin-uninstall-exec-errors
Branches Tags
molecule-ai/molecule-core:main molecule-ai/molecule-core:fix/2450-local-provision-dynamic-port molecule-ai/molecule-core:refile/2155-migration-replay-from-scratch molecule-ai/molecule-core:fix/2448-ops-scripts-fail-closed-zero-tests molecule-ai/molecule-core:fix/handlers-pg-required-tables-widen molecule-ai/molecule-core:fix/sop-checklist-author-self-ack molecule-ai/molecule-core:fix/ci-fail-on-zero-tests-collected molecule-ai/molecule-core:fix/2421-heartbeat-backfill-agent-card molecule-ai/molecule-core:fix/scheduler-enqueue-cron-on-busy molecule-ai/molecule-core:fix/sev1-812-approval-validator molecule-ai/molecule-core:test/2391-hydrate-inflight-turn-status molecule-ai/molecule-core:fix/2442-chat-desktop-enter-map-view molecule-ai/molecule-core:feat/a2a-message-flight-envelope molecule-ai/molecule-core:fix/e2e-chat-desktop-concierge-reskin-selector molecule-ai/molecule-core:fix/concierge-role-truncate molecule-ai/molecule-core:fix/2429-case-fold-trailing-dot-tunnel-hostname molecule-ai/molecule-core:fix/provider-on-isrunning-status molecule-ai/molecule-core:feat/canvas-concierge-ui molecule-ai/molecule-core:feat/ws-switch-provider-endpoint molecule-ai/molecule-core:fix/platform-tunnel-hostname-normalize molecule-ai/molecule-core:fix/validate-agent-url-pending-tunnel molecule-ai/molecule-core:fix/2248-canvas-platform-managed-credential-gating molecule-ai/molecule-core:fix/memories-commit-error-server-log molecule-ai/molecule-core:fix/gate-context-target-suffix molecule-ai/molecule-core:feat/ws-compute-provider-validation molecule-ai/molecule-core:fix/2396-sop-auto-tier-and-trigger molecule-ai/molecule-core:fix/1306-gitea-label-singular molecule-ai/molecule-core:remove/data-residency-banner molecule-ai/molecule-core:fix/2392-stop-by-instance-id-on-persist-fail molecule-ai/molecule-core:harden/merge-control-required-checks-json molecule-ai/molecule-core:fix/2396-sop-auto-tier-qa-security-auto-trigger molecule-ai/molecule-core:fix/2398-enrich-commit-memory-log molecule-ai/molecule-core:fix/ec2-orphan-instance-id-persist-failure molecule-ai/molecule-core:fix/merge-control-script-hardening molecule-ai/molecule-core:fix/provider-derivation-fail-closed molecule-ai/molecule-core:fix/restart-sync-update-status-guard molecule-ai/molecule-core:fix/restart-guard-removed-workspace molecule-ai/molecule-core:fix/fail-open-status-persist-trio molecule-ai/molecule-core:fix/2248-suppress-platform-managed-credentials molecule-ai/molecule-core:fix/2386-send-provider-on-deprovision molecule-ai/molecule-core:fix/delegate-task-async-sender-pushback-2244 molecule-ai/molecule-core:fix/2331-sop-ceremony-required-checks molecule-ai/molecule-core:feat/platform-agent-gate-wiring molecule-ai/molecule-core:fix/umbrella-reaper-1780 molecule-ai/molecule-core:fix/block-internal-paths-hard-gate molecule-ai/molecule-core:fix/backends-md-drift-risk-6-stale molecule-ai/molecule-core:cp455-minimal-cell-boot-e2e-stage1 molecule-ai/molecule-core:fix/chat-seed-admin-auth molecule-ai/molecule-core:fix/goroutine-panic-recovery molecule-ai/molecule-core:fix/1080-org-helpers-typo-main molecule-ai/molecule-core:fix/canvas-e2e-transient-failed-2632 molecule-ai/molecule-core:fix/admin-images-codex-and-std-encoding molecule-ai/molecule-core:fix/render-status-body-state molecule-ai/molecule-core:fix/memory-section-marker molecule-ai/molecule-core:test-1675-canvas-user-activity-log-regression molecule-ai/molecule-core:design/secrets-accessibility-fix molecule-ai/molecule-core:test/canvas/Toolbar-a11y molecule-ai/molecule-core:fix/channels-matchesChatID-tests molecule-ai/molecule-core:fix/workspace-server-healthcheck molecule-ai/molecule-core:fix/ci-org-helpers-demorgan molecule-ai/molecule-core:test/delegate-record-db-errors molecule-ai/molecule-core:infra-sre/fix-platform-go-test molecule-ai/molecule-core:fix/ci-drift-pagination molecule-ai/molecule-core:fix/merge-queue-direct-merge-no-update-churn molecule-ai/molecule-core:fix/stdio-clean molecule-ai/molecule-core:feat/platform-agent-install molecule-ai/molecule-core:fix/audit-force-merge-curl-fail-closed molecule-ai/molecule-core:fix/fail-closed-hardening-trio molecule-ai/molecule-core:feat/platform-agent-kind molecule-ai/molecule-core:docs/mark-drift-risk-6-resolved molecule-ai/molecule-core:feat/byok-create-gate-and-liveness molecule-ai/molecule-core:feat/workspace-provider-field molecule-ai/molecule-core:fix/main-red-2308-lint-trackers-fast molecule-ai/molecule-core:fix/status-reaper-observability molecule-ai/molecule-core:fix/internal-805-sweep-cf-cloudflare-fallback-clean molecule-ai/molecule-core:feat/platform-agent-approval-gate molecule-ai/molecule-core:fix/lint-pre-flip-fail-closed-clean molecule-ai/molecule-core:fix/main-red-2305-lint-and-e2e-platform-managed molecule-ai/molecule-core:fix/sop-checklist-hold molecule-ai/molecule-core:fix/main-red-e2e-chat-auth-token molecule-ai/molecule-core:fix/internal-802-bp-directive-comments molecule-ai/molecule-core:fix/reconciler-debounce-coupling-2284 molecule-ai/molecule-core:fix/main-red-canvas-e2e-tablist-strict-mode molecule-ai/molecule-core:fix/canvas-pause-resume-cascade-param-2122-followup molecule-ai/molecule-core:fix/2251-delegate-task-message-role-contract-test molecule-ai/molecule-core:fix/internal-797-postgres-integration-runner-label molecule-ai/molecule-core:fix/817-canvas-deploy-reminder-per-step-gate molecule-ai/molecule-core:fix/2139-sop-tier-check-real-qa-security-teams molecule-ai/molecule-core:fix/sop-checklist-hold-volume-skip molecule-ai/molecule-core:fix/lint-pre-flip-fail-closed molecule-ai/molecule-core:feat/2185-manifest-entry-existence-check molecule-ai/molecule-core:feat/2151-chunk2-integration-tests molecule-ai/molecule-core:cr2/sec-c-2130-transcript-ssrf molecule-ai/molecule-core:fix/status-reaper-pagination-observability molecule-ai/molecule-core:fix/http-client-timeout-panic-recovery-main molecule-ai/molecule-core:fix/pause-resume-cascade-opt-in-1991 molecule-ai/molecule-core:fix/plugin-uninstall-exec-errors molecule-ai/molecule-core:fix/gitea-merge-queue-pagination molecule-ai/molecule-core:fix/review-check-remove-generic-comment-bypass molecule-ai/molecule-core:fix/sop-tier-remove-fail-open-dead-code molecule-ai/molecule-core:fix/review-check-tests-jq-fail-closed molecule-ai/molecule-core:fix/sop-tier-check-remove-fail-open-core molecule-ai/molecule-core:feat/merge-queue-auto-discovery molecule-ai/molecule-core:rfc/platform-agent molecule-ai/molecule-core:test/flip-probe-governance-gates-2331 molecule-ai/molecule-core:fix/block-internal-paths-fail-open molecule-ai/molecule-core:test/governance-gate-flip-probe-2331 molecule-ai/molecule-core:fix/merge-queue-hold-on-409-conflict-update molecule-ai/molecule-core:fix/e2e-smoke-diagnose-detail-767 molecule-ai/molecule-core:fix/sop-checklist-emdash-slug-parse molecule-ai/molecule-core:fix/2352-merge-queue-409-hold molecule-ai/molecule-core:fix/merge-queue-autonomous-genuine-approvals molecule-ai/molecule-core:researcher-gate-probe-1780730963 molecule-ai/molecule-core:fix/578-google-adk-image-refresh-allowlist molecule-ai/molecule-core:e2e/data-persistence-recreate-2332 molecule-ai/molecule-core:fix/channels-unmarshal-fallback-invalid-json molecule-ai/molecule-core:feat/workspace-provider-routing molecule-ai/molecule-core:fix/google-adk-model-registration-coremirror molecule-ai/molecule-core:fix/renew-lint-coe-tracker-837-clean molecule-ai/molecule-core:fix/renew-lint-coe-tracker-837 molecule-ai/molecule-core:test/channels-dataprune-e2e-p110 molecule-ai/molecule-core:core2332-p110-workspace-lifecycle-staginge2e molecule-ai/molecule-core:chore/providers-gen-docker-target molecule-ai/molecule-core:feat/core-2332-display-reconnect-renewal-e2e molecule-ai/molecule-core:cr2/google-adk-e2e-coverage molecule-ai/molecule-core:fix/vertex-ssot-registry-drift molecule-ai/molecule-core:fix/audit-force-merge-stale-contexts molecule-ai/molecule-core:fix/port-cp544-fail-closed molecule-ai/molecule-core:fix/sop-tier-authz-no-org-fallback molecule-ai/molecule-core:fix/core-ci-fail-closed molecule-ai/molecule-core:docs/sop-fail-closed-ci molecule-ai/molecule-core:fix/restore-seo-adk-templates-manifest-auth molecule-ai/molecule-core:rfc/byok-fail-closed-billing molecule-ai/molecule-core:fix/forensic145-preserve-workspace-scm-token molecule-ai/molecule-core:fix/ci-coe-trackers-e2e-chat-staging-external molecule-ai/molecule-core:fix/e2e-reconciler-platform-model-and-boot-error molecule-ai/molecule-core:fix/e2e-saas-step9-hma-surface molecule-ai/molecule-core:fix/e2e-staging-byok-opt-in-before-vendor-key molecule-ai/molecule-core:fix/e2e-saas-model-slug-bare molecule-ai/molecule-core:fix/e2e-claude-code-minimax-bare-slug molecule-ai/molecule-core:fix/e2e-tenant-call-surface-body molecule-ai/molecule-core:fix/main-red-peer-visibility-platform-managed-secrets molecule-ai/molecule-core:fix/main-red-minimax-model-slug molecule-ai/molecule-core:fix/sop-tier-check-and-token-parse molecule-ai/molecule-core:harden/staging-saas-all-runtimes molecule-ai/molecule-core:harden/no-fail-open-auth molecule-ai/molecule-core:fix/main-red-lint-continue-on-error-2294 molecule-ai/molecule-core:harden/keyless-feature-e2e-coverage molecule-ai/molecule-core:harden/derive-provider-matrix-e2e molecule-ai/molecule-core:harden/enforce-ci-gates-core-v2 molecule-ai/molecule-core:fix/cascade-true-callers-ahead-of-2122 molecule-ai/molecule-core:fix/2151-chunk1-activity-delegation-a2a-integration-tests molecule-ai/molecule-core:harden/sop-tier-check-remove-expired-coe molecule-ai/molecule-core:fix/2255-e2e-smoke-poll-parser-kind-discriminator molecule-ai/molecule-core:fix/a2a-2251-go-role-default molecule-ai/molecule-core:fix/2140-sop-tier-refire-real-exit-code molecule-ai/molecule-core:harden/regression-coverage-v2 molecule-ai/molecule-core:fix/521-claude-code-colon-form-overclaim molecule-ai/molecule-core:fix/core2261-reconciler-toctou-degraded-hardening molecule-ai/molecule-core:fix/core2261-providers-byte-sync-cp521 molecule-ai/molecule-core:fix/core2261-e2e-instanceid-tag-fallback molecule-ai/molecule-core:fix/core2261-reconciler-e2e-create molecule-ai/molecule-core:fix/cascade-canvas-callers molecule-ai/molecule-core:harden/e2e-staging-saas-failclosed molecule-ai/molecule-core:harden/e2e-staging-external-chat-failclosed molecule-ai/molecule-core:harden/e2e-staging-canvas-deflake molecule-ai/molecule-core:feat/umbrella-reaper molecule-ai/molecule-core:feat/2261-gap1-takecontrol-e2e molecule-ai/molecule-core:fix/1997-canary-minimax-m2.7 molecule-ai/molecule-core:fix/2263-staging-canary-namespaced-model molecule-ai/molecule-core:fix/security-review-owners-na-eligibility molecule-ai/molecule-core:feat/core2261-reconciler-live-e2e molecule-ai/molecule-core:feat/core2261-takecontrol-wsproxy-test molecule-ai/molecule-core:feat/security-review-owners-na-eligibility molecule-ai/molecule-core:feat/core2261-instance-state-reconciler molecule-ai/molecule-core:fix/cp529-enforcer-test-unbreak-main molecule-ai/molecule-core:feat/cp529-byok-vendor-providers molecule-ai/molecule-core:fix/activity-feed-stable-ordering molecule-ai/molecule-core:fix/2245-platform-managed-provider-credential-gate molecule-ai/molecule-core:fix/2245-platform-managed-no-cred molecule-ai/molecule-core:harden/contract-tests-core molecule-ai/molecule-core:feat/cp529-byok-routability-enforcer molecule-ai/molecule-core:feat/core2235-canvas-buildinfo molecule-ai/molecule-core:fix/2235-canvas-buildinfo-docker-sha molecule-ai/molecule-core:review/pr3029-pr3033-local molecule-ai/molecule-core:feat/traces-v1-workspace-secrets-2976 molecule-ai/molecule-core:fix/816-sop-tier-check-stale-reviews molecule-ai/molecule-core:fix/818-sop-checklist-na-declarations-terminal-success molecule-ai/molecule-core:fix/core2226-canvas-ordered-deploy molecule-ai/molecule-core:fix/2222-a2a-delegate-task-attachments molecule-ai/molecule-core:chore/cp514-byte-sync-drop-vertex-arm molecule-ai/molecule-core:fix/1093-adapter-py-test-margin molecule-ai/molecule-core:fix/2205-e2e-api-health-wait-migration-gate molecule-ai/molecule-core:fix/core2225-staging-canvas-e2e-fixture molecule-ai/molecule-core:fix/2225-e2e-canvas-stale-hermes-model molecule-ai/molecule-core:fix/2185-bp-directive-window molecule-ai/molecule-core:fix/2192-manifest-repo-existence-check-v2 molecule-ai/molecule-core:fix/desktop-takecontrol-reconnect-renewal molecule-ai/molecule-core:fix/2172-provider-validation-setmodel molecule-ai/molecule-core:fix/2192-manifest-repo-existence-check molecule-ai/molecule-core:fix/prod-deploy-verify-tenant-lag-2213 molecule-ai/molecule-core:fix/2204-liveness-probe-max-tokens molecule-ai/molecule-core:fix/internal-805-cf-auth-drift molecule-ai/molecule-core:fix/internal-804-parser-json-variant molecule-ai/molecule-core:fix/peer-visibility-test-model-required-2212 molecule-ai/molecule-core:fix/77-bp-directive-4-emitters molecule-ai/molecule-core:fix/e2e-api-health-wait-migration-chain molecule-ai/molecule-core:devops/saas-a2a-empty-completion-diagnostic molecule-ai/molecule-core:fix/e2e-staging-canvas-tabs-red molecule-ai/molecule-core:fix/e2e-chat-readiness-curl-tempfile-2198 molecule-ai/molecule-core:test/provider-matrix-boot-regression-moonshot molecule-ai/molecule-core:sre/fix-auto-deploy-writable-home-2193 molecule-ai/molecule-core:fix/e2e-chat-mobile-history-reload-flake molecule-ai/molecule-core:fix/deploy-production-superseded-false-stale molecule-ai/molecule-core:fix/manifest-rm-deleted-org-templates molecule-ai/molecule-core:fix/2158-auto-sync-token-hard-fail molecule-ai/molecule-core:fix/create-dialog-registry-provider-catalog molecule-ai/molecule-core:fix/ensure-default-config-stamp-derived-provider molecule-ai/molecule-core:fix/2183-remove-missing-free-beats-all molecule-ai/molecule-core:feat/google-adk-platform-provider-mirror-ssot molecule-ai/molecule-core:fix/core-2176-a2a-full-body-guard molecule-ai/molecule-core:fix/publish-latest-tag-platform-tenant molecule-ai/molecule-core:feat/2172-config-save-provider-validation molecule-ai/molecule-core:feat/handler-admin-test-token molecule-ai/molecule-core:feat/plugins-listing-and-sources-coverage molecule-ai/molecule-core:feat-handler-admin-test-token molecule-ai/molecule-core:test/2175-a2a-full-body-delivery-guard molecule-ai/molecule-core:regression/2149-scheduler-real-pg molecule-ai/molecule-core:fix/internal-760-review-event-trigger molecule-ai/molecule-core:fix/2166-blocker2-integration-fail-open molecule-ai/molecule-core:dev-b/sec-c-2132-reorder molecule-ai/molecule-core:fix/2163-cr2-live-fire-freshness molecule-ai/molecule-core:fix/test-async-cleanup-order molecule-ai/molecule-core:fix/shellcheck-arm64-pilot-main-red-2146 molecule-ai/molecule-core:docs/2159-pr-head-workflow-selection molecule-ai/molecule-core:fix/2152-unmask-real-infra-gates molecule-ai/molecule-core:cherry-pick-2167-suspenders-to-main molecule-ai/molecule-core:fix/2159-qa-security-auto-trigger-review-state-guard molecule-ai/molecule-core:fix/remove-dead-code-QueueDepth molecule-ai/molecule-core:staging molecule-ai/molecule-core:cp/469-tenant-proxy-env-delivery molecule-ai/molecule-core:fix/2162-platform-managed-fail-closed-missing-proxy molecule-ai/molecule-core:docs-test/gate-auto-fire-livefire-2159 molecule-ai/molecule-core:fix/gate-followup-refire-token-direct-trigger-regression molecule-ai/molecule-core:test/2148-registry-auth-real-postgres molecule-ai/molecule-core:regression/2150-migration-replay-from-scratch-real-pg molecule-ai/molecule-core:ci/unmask-required-real-infra-gates-mc1982 molecule-ai/molecule-core:fix/internal-760-qa-security-pr-review-trigger molecule-ai/molecule-core:fix/internal-760-ceremony-ai-sop-ack molecule-ai/molecule-core:runtime/lazy-workspace-id molecule-ai/molecule-core:fix/2134-chat-files-forward-ssrf-2316 molecule-ai/molecule-core:feat/rfc742-rescue-read molecule-ai/molecule-core:fix/2131-patch-abilities-atomic molecule-ai/molecule-core:cr2/sec-d-2316-chat-files-ssrf molecule-ai/molecule-core:cr2/sec-a-2029-traces-ssrf molecule-ai/molecule-core:fix/continue-on-error-triage-2113 molecule-ai/molecule-core:feat/rescue-rebase-2019-v2 molecule-ai/molecule-core:feat/rfc742-rescue-capture molecule-ai/molecule-core:test/handlers-misc-coverage molecule-ai/molecule-core:fix/errcheck-unchecked-errors-main molecule-ai/molecule-core:fix/broadcast-org-root-test-cleanup molecule-ai/molecule-core:fix/broadcast-itest-cleanup-hygiene-2108 molecule-ai/molecule-core:fix/log-execasroot-errors-plugin-cleanup-main molecule-ai/molecule-core:fix/http-client-timeouts-panic-recovery-error-checks-main molecule-ai/molecule-core:fix/panic-recovery-goroutines-channels-handlers-scheduler-main molecule-ai/molecule-core:fix/canvas-e2e-transient-failed-2632-main molecule-ai/molecule-core:fix/backends-md-drift-risk-6-stale-main molecule-ai/molecule-core:fix/ci-required-drift-1739 molecule-ai/molecule-core:fix/audit-force-merge-branch-aware molecule-ai/molecule-core:test/org-scope-abilities-coverage-clean molecule-ai/molecule-core:fix/renew-coe-tracker-mc774-clean-20260601 molecule-ai/molecule-core:fix/registry-root-sibling-leak-1955 molecule-ai/molecule-core:fix/registry-cancommunicate-cross-tenant-roots-1955 molecule-ai/molecule-core:fix/broadcast-itest-status-enum-online molecule-ai/molecule-core:fix/rows-affected-core molecule-ai/molecule-core:fix/broadcast-org-root-cte molecule-ai/molecule-core:fix/broadcast-org-root-cte-1959 molecule-ai/molecule-core:sync/providers-serving-urls molecule-ai/molecule-core:fix/staging-test-hermetic-env molecule-ai/molecule-core:fix/restart-context-defer-rows-close molecule-ai/molecule-core:fix/channels-rows-err-check molecule-ai/molecule-core:fix/ci-lint-suppression-1062 molecule-ai/molecule-core:fix/defer-rows-close-audit molecule-ai/molecule-core:fix/delegation-rows-err-check molecule-ai/molecule-core:fix/errcheck-unchecked-errors-1062 molecule-ai/molecule-core:fix/execcontext-err-check-high-impact molecule-ai/molecule-core:fix/execcontext-err-check-sweep2 molecule-ai/molecule-core:fix/execcontext-error-audit molecule-ai/molecule-core:fix/http-defaultclient-auth-paths molecule-ai/molecule-core:fix/registry-rows-err-check molecule-ai/molecule-core:fix/secrets-scan-error-restart molecule-ai/molecule-core:fix/workspace-restart-rows-err molecule-ai/molecule-core:pr-3033 molecule-ai/molecule-core:fix/restart-context-rows-err molecule-ai/molecule-core:fix/discovery-rows-err-check molecule-ai/molecule-core:fix/broadcast-org-root-cte-1959-staging molecule-ai/molecule-core:fix/rowserr-checks-events-channels-manager molecule-ai/molecule-core:fix/rowserr-memory-schedules-audit molecule-ai/molecule-core:fix/channels-duplicate-encrypt molecule-ai/molecule-core:fix/audit-rows-err-check molecule-ai/molecule-core:feat/minimax-m3-sync molecule-ai/molecule-core:fix/missing-rows-err-llm-billing-mode molecule-ai/molecule-core:fix/ci-scheduler-fanout molecule-ai/molecule-core:feat/openapi-management-spec molecule-ai/molecule-core:pr2056 molecule-ai/molecule-core:fix/channels-memory-rows-err-check molecule-ai/molecule-core:fix/traces-error-handling molecule-ai/molecule-core:fix/codeql-sarif-export molecule-ai/molecule-core:fix/instructions-rows-err-check molecule-ai/molecule-core:fix/providers-ssot-sync-codex-subscription molecule-ai/molecule-core:fix/github-token-fallback-timeout-1101 molecule-ai/molecule-core:fix/codex-central-refresher molecule-ai/molecule-core:feat/google-adk-runtime-ssot molecule-ai/molecule-core:worktree-agent-aa572c7374a57f03a molecule-ai/molecule-core:fix/sync-providers-yaml-openai-split-20260531 molecule-ai/molecule-core:feat/workspace-data-persistence molecule-ai/molecule-core:e2e/google-adk-ci-wiring molecule-ai/molecule-core:feat/register-google-adk-runtime molecule-ai/molecule-core:feat/mc-multiperiod-workspace-budget molecule-ai/molecule-core:feat/schedule-orphan-monitor-cleaner molecule-ai/molecule-core:fix/schedule-migration-on-recreate molecule-ai/molecule-core:fix/google-adk-runtime-doc-accuracy molecule-ai/molecule-core:fix/setglobal-drop-retired-org-billing-guard molecule-ai/molecule-core:fix/internal-728-provider-matched-cred-injection molecule-ai/molecule-core:fix/internal-724-prod-auto-deploy-straggler-surfacing molecule-ai/molecule-core:fix/1994-provision-billing-model-passthrough molecule-ai/molecule-core:fix/renew-coe-tracker-1982 molecule-ai/molecule-core:test/a2a-queue-status-depth-coverage molecule-ai/molecule-core:fix/broadcast-cte-non-root-sender-1959 molecule-ai/molecule-core:feat/internal-718-p3b-canvas-consume-registry molecule-ai/molecule-core:test/patch-abilities-coverage-1312 molecule-ai/molecule-core:feat/internal-718-p4-followup-llm-provider-removal molecule-ai/molecule-core:fix/cancel-in-progress-flip-1357 molecule-ai/molecule-core:feat/internal-718-p4-pr2-hard-reject-unregistered molecule-ai/molecule-core:feat/internal-718-p4-pr1-reconcile-colon-vocab-sync molecule-ai/molecule-core:fix/mcp-tools-slim-residue molecule-ai/molecule-core:feat/internal-718-p3a-templates-from-registry molecule-ai/molecule-core:feat/internal-718-p2a-registry-codegen-distribution molecule-ai/molecule-core:feat/internal-718-p2b-billing-derives-from-provider molecule-ai/molecule-core:refactor/drop-org-tier-llm-billing-mode molecule-ai/molecule-core:fix/suppression-rationales-1769 molecule-ai/molecule-core:pr1930 molecule-ai/molecule-core:eng-b/rebase-1952 molecule-ai/molecule-core:fix/ssot-provider-selection-billing-mode-711-713 molecule-ai/molecule-core:fix/1769-suppression-rationales molecule-ai/molecule-core:fix/byok-global-llm-cred-leak-internal-711 molecule-ai/molecule-core:fix/workspace-broadcast-cte-1959 molecule-ai/molecule-core:fix/1953-scope-peer-discovery-a2a-to-org molecule-ai/molecule-core:fix/cancel-in-progress-low-risk-9 molecule-ai/molecule-core:fix/cross-tenant-isolation-1953 molecule-ai/molecule-core:fix/python-open-encoding molecule-ai/molecule-core:fix-1644-workspace-create-returns-auth-token molecule-ai/molecule-core:fix/1837-docs-stale-monorepo-ref molecule-ai/molecule-core:fix/review-check-all-403-diagnostic molecule-ai/molecule-core:fix/audit-force-merge-staging-drift-1739 molecule-ai/molecule-core:fix/nil-safe-scans-validation-hardening molecule-ai/molecule-core:fix/delegate-async-return-after-marshal-fail molecule-ai/molecule-core:fix/canvas-user-verified-session-1673 molecule-ai/molecule-core:fix/canvas-chat-poll-mode-1673 molecule-ai/molecule-core:fix/mcp-tools-marshal-error-return molecule-ai/molecule-core:fix/ci-remove-race-from-blocking-gate-1184 molecule-ai/molecule-core:fix/watchdog-close-stale-contexts-on-red molecule-ai/molecule-core:fix/time-after-single-retry-delegation molecule-ai/molecule-core:fix/time-after-goroutine-leaks molecule-ai/molecule-core:fix/json-marshal-log-continue-2nd-pass molecule-ai/molecule-core:fix/cp329-retire-config-files-userdata-cap molecule-ai/molecule-core:fix/703-provider-billing-mode-ui molecule-ai/molecule-core:fix/internal-703-byok-billing-mode-env molecule-ai/molecule-core:eng-b-test-1779917746 molecule-ai/molecule-core:fix/workspace-ec2-leak-delete-retry molecule-ai/molecule-core:fix/ci-arm64-tracker molecule-ai/molecule-core:fix/1669-syntax-error molecule-ai/molecule-core:fix/docs-monorepo-refs molecule-ai/molecule-core:refactor/drop-org-tier-llm-billing-mode-canvas molecule-ai/molecule-core:fix/publish-buildx-writable-config molecule-ai/molecule-core:fix/publish-docker-config-api-20260520 molecule-ai/molecule-core:feat/seed-schedules-from-ws-template molecule-ai/molecule-core:feat/canvas-llm-billing-mode-section molecule-ai/molecule-core:feat/per-workspace-llm-billing-mode molecule-ai/molecule-core:fix/memory-v2-upsert-namespace-20260526 molecule-ai/molecule-core:fix/platform-managed-provider-key-leak molecule-ai/molecule-core:fix/mcp-tools-test-db-import-20260526 molecule-ai/molecule-core:pr-3029 molecule-ai/molecule-core:fix-tiny-readme molecule-ai/molecule-core:fix-shellcheck-arm64-pilot-runner-label molecule-ai/molecule-core:feat/canvas-lib-tests molecule-ai/molecule-core:docs/fix-stale-channel-install-refs-230 molecule-ai/molecule-core:design/modal-a11y-followup molecule-ai/molecule-core:fix-1769-suppression-justifications molecule-ai/molecule-core:fix-365-scope-divergence-gate-check molecule-ai/molecule-core:fix-1763-org-include-test molecule-ai/molecule-core:docs/readme-quickstart-context molecule-ai/molecule-core:style/fix-ruff-e501-etc molecule-ai/molecule-core:fix/main-ci-display-deploy-blockers molecule-ai/molecule-core:fix/display-keyboard-clipboard molecule-ai/molecule-core:fix/runtime-template-repo-cache molecule-ai/molecule-core:fix/create-dialog-platform-defaults molecule-ai/molecule-core:fix/pending-upload-preview-after-ack molecule-ai/molecule-core:fix/create-dialog-runtime-provider-flow molecule-ai/molecule-core:fix/platform-us-default-provider molecule-ai/molecule-core:fix/seo-template-provider-env-prompt molecule-ai/molecule-core:chore/advisory-legacy-e2e molecule-ai/molecule-core:fix/seo-template-visible molecule-ai/molecule-core:fix/panel-contained-attachment-preview molecule-ai/molecule-core:fix/pdf-preview-csp molecule-ai/molecule-core:fix/pdf-preview-visible molecule-ai/molecule-core:fix/prod-auto-deploy-scoped-rollout molecule-ai/molecule-core:fix-1763-test-minimal molecule-ai/molecule-core:feat/llm-native-auth-flow molecule-ai/molecule-core:fix/issue-1823-delete-confirm-name molecule-ai/molecule-core:fix/display-control-browser-session molecule-ai/molecule-core:fix/agent-message-attachment-broadcast molecule-ai/molecule-core:chore/maintained-runtime-registry molecule-ai/molecule-core:fix/issue-1686-cost-efficient-workspace-defaults molecule-ai/molecule-core:fix/hermes-user-attachments-core molecule-ai/molecule-core:fix/gate-check-v3-ruff-f401-e741 molecule-ai/molecule-core:docs/issue-1793-workspace-placement-rfc molecule-ai/molecule-core:fix/ruff-batch-2026-05-24 molecule-ai/molecule-core:chore/issue-1760-rename-go-module molecule-ai/molecule-core:fix/platform-managed-llm-default molecule-ai/molecule-core:chore/issue-1812-remove-backfill-from-image molecule-ai/molecule-core:fix/ruff-f401-f541-f841-e741-batch molecule-ai/molecule-core:fix/ruff-e501-merge-queue molecule-ai/molecule-core:fix-1763-webhook-token-redaction-skip molecule-ai/molecule-core:fix/ruff-final-batch-f401-e741-f841 molecule-ai/molecule-core:fix/ruff-e501-batch-4 molecule-ai/molecule-core:fix/ruff-lint-batch-3 molecule-ai/molecule-core:fix/ruff-lint-more-scripts molecule-ai/molecule-core:fix/user-message-fanout-1440 molecule-ai/molecule-core:fix/workspace-compute-settings-control molecule-ai/molecule-core:fix/1763-finding-3-token-test-integration-tag molecule-ai/molecule-core:fix-1775-deploy-wait-alignment molecule-ai/molecule-core:fix/memory-plugin-nil-jsonb-marshal molecule-ai/molecule-core:fix/pv-staging-tenant-auth molecule-ai/molecule-core:fix/real-user-upload-staging-e2e molecule-ai/molecule-core:feat/issue-1791-bundle-memory-backfill molecule-ai/molecule-core:feat/issue-1754-mcp-memory-activity-broadcast molecule-ai/molecule-core:feat/issue-1791-memories-commit-v2-plugin molecule-ai/molecule-core:fix-1763-discord-token-test molecule-ai/molecule-core:chore/remove-stale-runtime-comment molecule-ai/molecule-core:fix/revert-1781-templates-runtime-relax molecule-ai/molecule-core:chore/remove-unmaintained-runtimes molecule-ai/molecule-core:fix/e2e-orphan-guard molecule-ai/molecule-core:docs/issue-1780-compensating-status-runbook molecule-ai/molecule-core:fix/issue-1778-templates-test-fixtures molecule-ai/molecule-core:fix/templates-supported-runtime-tests molecule-ai/molecule-core:fix/prod-auto-deploy-aggregate-context molecule-ai/molecule-core:chore/issue-1753-awareness-docs-sweep molecule-ai/molecule-core:chore/issue-1755-seed-initial-memories-v2 molecule-ai/molecule-core:fix/ci-all-required-bookkeeping molecule-ai/molecule-core:fix/supported-runtime-catalog molecule-ai/molecule-core:chore/issue-1733-memory-plugin-schema-isolation molecule-ai/molecule-core:chore/issue-1735-remove-awareness-backend molecule-ai/molecule-core:fix/memory-list-rows-err molecule-ai/molecule-core:feat/1686-display-session-proxy molecule-ai/molecule-core:chore/issue-1733-a1-kill-v1-fallback molecule-ai/molecule-core:fix/issue-1734-memory-tab-v2 molecule-ai/molecule-core:fix/codex-scheduled-a2a-timeout molecule-ai/molecule-core:fix/prod-auto-deploy-nonblocking molecule-ai/molecule-core:fix/arm64-pilot-label-macfix molecule-ai/molecule-core:fix/review-check-empty-pr-guard molecule-ai/molecule-core:fix/canvas-publish-docker-config molecule-ai/molecule-core:fix/channels-manager-rows-err molecule-ai/molecule-core:fix/rows-err-restart-discovery molecule-ai/molecule-core:fix/slack-webhook-response-body-close molecule-ai/molecule-core:fix/sweeper-rows-err molecule-ai/molecule-core:feat/1686-display-workspace-flow molecule-ai/molecule-core:fix-1700-A-github-token-http-timeout molecule-ai/molecule-core:fix/workspace-crud-descrows-err molecule-ai/molecule-core:task342/local-e2e-harness molecule-ai/molecule-core:fix/messagestore-extractfiles-unmarshal molecule-ai/molecule-core:fix/pgplugin-writejson-encode-error molecule-ai/molecule-core:feat/1686-display-control-ui molecule-ai/molecule-core:fix/discord-read-body-error molecule-ai/molecule-core:fix/capturebroadcaster-data-race molecule-ai/molecule-core:fix-scheduler-detect-result-kind-message-allow molecule-ai/molecule-core:fix/lark-read-body-error molecule-ai/molecule-core:fix/memory-decode-error-read-body molecule-ai/molecule-core:fix/slack-read-body-errors molecule-ai/molecule-core:fix/traces-read-body-error molecule-ai/molecule-core:fix/schedules-events-rows-err molecule-ai/molecule-core:fix/channels-json-unmarshal-errors molecule-ai/molecule-core:rfc-1706-openapi-phase1-schedules molecule-ai/molecule-core:fix/mcp-tools-scanpeers-err molecule-ai/molecule-core:fix/handlers-rows-err-batch molecule-ai/molecule-core:fix/slack-webhook-response-body-close-clean molecule-ai/molecule-core:fix/github-token-http-timeout molecule-ai/molecule-core:minimax-autonomous-test molecule-ai/molecule-core:fix/scheduler-1696-sdk-error-detection molecule-ai/molecule-core:fix/1696-scheduler-adapter-error-status molecule-ai/molecule-core:feat/1686-phase1-compute-schema molecule-ai/molecule-core:fix/1692-mount-schedule-routes molecule-ai/molecule-core:fix/1684-native-session-enqueue-on-busy molecule-ai/molecule-core:fix/1646-staging-saas-timeout molecule-ai/molecule-core:fix/ci-path-scope-main-push molecule-ai/molecule-core:fix/e2e-wait-after-config-put molecule-ai/molecule-core:fix/e2e-delegation-a2a-retry molecule-ai/molecule-core:fix/e2e-minimax-m2-default molecule-ai/molecule-core:platform-kill-defaultmodel-require-model-at-create molecule-ai/molecule-core:fix/e2e-a2a-busy-retry molecule-ai/molecule-core:fix/e2e-a2a-readiness-body molecule-ai/molecule-core:fix/t4-pid-probe-agent-safe molecule-ai/molecule-core:fix/t4-gitea-egress-ssot molecule-ai/molecule-core:docs-fix-claude-code-channel-template molecule-ai/molecule-core:fix/activity-flat-upload-attachments molecule-ai/molecule-core:fix/aws-secrets-janitor-literal-region molecule-ai/molecule-core:fix/activity-feed-peer-info-enrichment molecule-ai/molecule-core:fix/aws-secrets-janitor-fail-loud molecule-ai/molecule-core:fix/aws-secrets-janitor-staging molecule-ai/molecule-core:fix/staging-token-diagnostic molecule-ai/molecule-core:chore/publish-staging-ecr-with-ssot-publisher molecule-ai/molecule-core:fix/e2e-bash32-empty-array molecule-ai/molecule-core:chore/mirror-tenant-image-staging-ecr molecule-ai/molecule-core:fix/mcp-delegate-platform-path molecule-ai/molecule-core:chore/retrigger-peer-visibility-after-publish molecule-ai/molecule-core:fix/publish-buildx-docker-config molecule-ai/molecule-core:docs/multi-external-workspace-registration molecule-ai/molecule-core:fix/e2e-token-fallback-diagnostics molecule-ai/molecule-core:ci/clean-superseded-push-noise molecule-ai/molecule-core:ci/path-scope-go-handler-pr molecule-ai/molecule-core:fix/main-red-watchdog-action-run-status-filter molecule-ai/molecule-core:fix/admin-workspace-token-mint molecule-ai/molecule-core:test/e2e-chat-a2a-dns-regression molecule-ai/molecule-core:fix/staging-peer-visibility-token molecule-ai/molecule-core:chore/delete-core-workspace-runtime molecule-ai/molecule-core:fix/split-heavy-e2e-required-path molecule-ai/molecule-core:fix/ci-cron-bots-prebake-1357 molecule-ai/molecule-core:fix/self-delegation-peer-list-hardening molecule-ai/molecule-core:fix/523-allow-user-set-workspace-secrets molecule-ai/molecule-core:feat/canvas-org-info-tab molecule-ai/molecule-core:fix/624-file-write-restart-debounce molecule-ai/molecule-core:fix/377-canvas-polite-cancel-before-restart molecule-ai/molecule-core:task227/external-mcp-progress-ux molecule-ai/molecule-core:fix/canvas-chat-a2a-hint-activity-tab-closeout-212 molecule-ai/molecule-core:fix/t4-probe-docker-socket-and-pid-host molecule-ai/molecule-core:chore/ssot4-delete-dead-github-workflows molecule-ai/molecule-core:task335/drop-runtime-image-pins-mig-fresh molecule-ai/molecule-core:chore/ssot10-ecr-registry-var molecule-ai/molecule-core:fix/sop-checklist-stream-pagination-oom molecule-ai/molecule-core:task335/drop-dead-runtime-image-pins-mig-047 molecule-ai/molecule-core:fix/a2a-error-hint-timeout-class molecule-ai/molecule-core:fix/a2a-error-detail-field-rename molecule-ai/molecule-core:feat/uploads-limits-ssot-task-320 molecule-ai/molecule-core:core-devops/cascade-structural-hardening molecule-ai/molecule-core:chore/retrigger-publish-after-eacces molecule-ai/molecule-core:fix/poll-mode-pending-uploads-100mb-mc1588 molecule-ai/molecule-core:fix/redeploy-fleet-confirm-callers molecule-ai/molecule-core:fix/lint-workflow-yaml-slash-in-name molecule-ai/molecule-core:retrigger/publish-workspace-server-after-pr110-deploy molecule-ai/molecule-core:infra-runtime-be/upload-100mb-and-correct-reason-errors molecule-ai/molecule-core:infra-sre/rfc596-publish-runtime-dual-push-gitea-pypi molecule-ai/molecule-core:fix/workflow-name-no-token-slash molecule-ai/molecule-core:infra-sre/audit-log-phase1-emit-secrets molecule-ai/molecule-core:fix/main-red-watchdog-skip-cancel-cascade-mc1564 molecule-ai/molecule-core:feat/rfc563-ws-server-binary-strip molecule-ai/molecule-core:ci/146-lint-no-tenant-gitea-token molecule-ai/molecule-core:feat/agent-card-identity-seed-prod-team-internal-492-followup molecule-ai/molecule-core:fix/rfc524-layer1-bare-go-conversion molecule-ai/molecule-core:fix/ci-docker-host-guardrail-red molecule-ai/molecule-core:test/e2e-todays-pr-coverage molecule-ai/molecule-core:feat/146-forbidden-env-guard molecule-ai/molecule-core:fix/sop-checklist-widen-ack-internal-442 molecule-ai/molecule-core:ci/mac-arm64-pilot-shellcheck molecule-ai/molecule-core:e2e/peer-visibility-local-backend-task166 molecule-ai/molecule-core:fix/canvas-surface-error-detail molecule-ai/molecule-core:fix/wsserver-broadcast-error-detail molecule-ai/molecule-core:ci/oom-storm-concurrency-fix molecule-ai/molecule-core:fix/chat-upload-ssot-100mb-1520 molecule-ai/molecule-core:feat/provisioner-inject-gitea-credential-helper molecule-ai/molecule-core:sre/fix-remaining-scheduled-cancel-in-progress molecule-ai/molecule-core:fix/user-message-role-1514 molecule-ai/molecule-core:sre/fix-gate-check-cancel-in-progress molecule-ai/molecule-core:sre/fix-ci-drift-false-positive-and-queue-limit molecule-ai/molecule-core:ci-retry-noop molecule-ai/molecule-core:test/plugin-listing-coverage-1488 molecule-ai/molecule-core:infra/canvas-ci-retry-20260518145806 molecule-ai/molecule-core:fix/json5-comments-manifest-1496 molecule-ai/molecule-core:test/canvas-hook-coverage molecule-ai/molecule-core:feat/canvas-agent-abilities-toggle molecule-ai/molecule-core:fix/sop-tier-check-secrets-read-v2 molecule-ai/molecule-core:fix/canvas-configtab-wcag-alert-v2 molecule-ai/molecule-core:fix/canvas-configtab-wcag-alert molecule-ai/molecule-core:fix/sop-tier-check-secrets-read molecule-ai/molecule-core:fix/ci-sop-tier-check-secrets-read molecule-ai/molecule-core:fix/runtime-registry-manifest-v2 molecule-ai/molecule-core:test/runtime-provision-timeouts-coverage molecule-ai/molecule-core:fix/sev1-secrets-read-v2 molecule-ai/molecule-core:fix/sev1-missing-secrets-read-perms molecule-ai/molecule-core:test/canvas-secret-formats-coverage molecule-ai/molecule-core:test/canvas-hook-tests molecule-ai/molecule-core:test/canvas-theme-ts-coverage molecule-ai/molecule-core:feat/canvas-agent-abilities-toggles molecule-ai/molecule-core:test/canvas-theme-lib-coverage molecule-ai/molecule-core:fix/runtime-registry-json5-comment molecule-ai/molecule-core:fix/ws-server-188-failclosed-template-runtime molecule-ai/molecule-core:test/plugins-listing-coverage molecule-ai/molecule-core:fix/issue-1480-manifest-json5 molecule-ai/molecule-core:fix/review-check-wrong-event-string-diagnostic molecule-ai/molecule-core:test/workspace-abilities-name-coverage molecule-ai/molecule-core:ci-fix-main-runtime-secret-scan molecule-ai/molecule-core:fix/secret-scan-exclude-secrets-detector-test-fixtures molecule-ai/molecule-core:fix/secrets-read-qa-security-main molecule-ai/molecule-core:fix/secrets-read-qa-security-workflows molecule-ai/molecule-core:test/workspace-broadcast-coverage molecule-ai/molecule-core:fix/1473-bp-all-required-suffix molecule-ai/molecule-core:infra/secrets-read-qa-security-main-fix molecule-ai/molecule-core:fix/pr1450-staging-main-conflict molecule-ai/molecule-core:fix/issue-1420-actionable-errors molecule-ai/molecule-core:fix/issue-228-user-message-fanout molecule-ai/molecule-core:design/externalconnectmodal-a11y molecule-ai/molecule-core:fix/tabs-error-aria-alert molecule-ai/molecule-core:fix/settings-a11y-fixes molecule-ai/molecule-core:fix/canvas-errors-aria-alert molecule-ai/molecule-core:fix/canvas-loading-aria-live molecule-ai/molecule-core:sre/fix-scheduled-workflow-cancel-in-progress molecule-ai/molecule-core:feat/handler-test-abilities-and-sources molecule-ai/molecule-core:fix/handlers-plugin-listing-tests molecule-ai/molecule-core:fix/tabs-a11y-scattered molecule-ai/molecule-core:runtime/port-identity-tools-staging molecule-ai/molecule-core:runtime/fix-merge-queue-cancel-in-progress molecule-ai/molecule-core:fix/canvas-misc-wcag-fixes molecule-ai/molecule-core:infra/quirks-789-fills molecule-ai/molecule-core:infra/queue-runbook-updates molecule-ai/molecule-core:design/skills-accessibility-v2 molecule-ai/molecule-core:design/skills-a11y-followup molecule-ai/molecule-core:fix/a2a-delegation-detached-ctx-canceled-internal-497 molecule-ai/molecule-core:fix/secrets-honest-ui-491-490 molecule-ai/molecule-core:design/mobile-comms-a11y molecule-ai/molecule-core:design/mobile-chat-a11y molecule-ai/molecule-core:test/org-import-pure-funcs molecule-ai/molecule-core:fix/mcp-tools-sql-fix molecule-ai/molecule-core:fix/delegation-list-shows-both-directions molecule-ai/molecule-core:design/mobile-tabbar-a11y molecule-ai/molecule-core:feat/mobile-tabbar-a11y molecule-ai/molecule-core:fix/mobile-ios-focus-zoom molecule-ai/molecule-core:fix/mobile-canvas-render-parity molecule-ai/molecule-core:ci/arm64-advisory-mac-offload-pilot molecule-ai/molecule-core:fix/canvas-user-message-cross-session-fanout molecule-ai/molecule-core:test/a2a-proxy-pure-coverage molecule-ai/molecule-core:fix/mobile-focus-visible-rings molecule-ai/molecule-core:fix/external-workspace-progress-feedback molecule-ai/molecule-core:fix/canvas-mobile-ws-wake-resume molecule-ai/molecule-core:fix/mobile-chat-input-ios-focus-zoom molecule-ai/molecule-core:test/org-helpers-coverage molecule-ai/molecule-core:ci/timing-test-hygiene-host-load-internal molecule-ai/molecule-core:fix/setup-node-pin-corrupt-1432 molecule-ai/molecule-core:fix/ci-required-drift-polling-sentinel molecule-ai/molecule-core:fix/issue212-actionable-agent-error-reason molecule-ai/molecule-core:runtime/fix-api03-test-fixture molecule-ai/molecule-core:test/traces-list-http-coverage molecule-ai/molecule-core:runtime/fix-test-fixture-v3 molecule-ai/molecule-core:runtime/fix-test-fixture-on-1420 molecule-ai/molecule-core:fix/queue-status-sort molecule-ai/molecule-core:runtime/fix-test-fixture-secret-scan-false-positive molecule-ai/molecule-core:test/workspace-abilities-coverage-20260517 molecule-ai/molecule-core:fix/sop-engineers-main molecule-ai/molecule-core:fix/queue-merge-permanent-error molecule-ai/molecule-core:fix/delegations-list-deduplication molecule-ai/molecule-core:fix/canvas-npm-ci molecule-ai/molecule-core:fix/sop-staging-engineers-backport molecule-ai/molecule-core:offsec-015-staging-v2 molecule-ai/molecule-core:fix/queue-skip-permanent-merge-error molecule-ai/molecule-core:design/settings-button-focus-v2 molecule-ai/molecule-core:test/coverage-broadcast-listing-20260517 molecule-ai/molecule-core:fix/workspace-tokens-global-sentinel-500 molecule-ai/molecule-core:fix/sop-workflow-secrets-read molecule-ai/molecule-core:test/coverage-abilities-design-tokens-20260517 molecule-ai/molecule-core:design/agentcomms-focus-visible molecule-ai/molecule-core:design/skills-aria-accessibility molecule-ai/molecule-core:infra/action-sha-pin-e2e-chat molecule-ai/molecule-core:fix/sop-checklist-na-gate-probe-bug molecule-ai/molecule-core:test/coverage-2026-05-17 molecule-ai/molecule-core:fix/queue-merge-error-surfacing-v2 molecule-ai/molecule-core:test/all-coverage-v5 molecule-ai/molecule-core:fix/settings-panel-focus-visible molecule-ai/molecule-core:sre/ci-coldrunner-main-fix molecule-ai/molecule-core:fix/skills-tab-focus-visible molecule-ai/molecule-core:test/all-coverage-v4 molecule-ai/molecule-core:test/all-coverage-v3 molecule-ai/molecule-core:fix/aria-live-errors-v2 molecule-ai/molecule-core:fix/canvas-attachment-focus-visible molecule-ai/molecule-core:fix/queue-merge-error-surfacing molecule-ai/molecule-core:test/all-coverage-v2 molecule-ai/molecule-core:fix/app-page-focus-v2 molecule-ai/molecule-core:fix/app-page-focus-visible molecule-ai/molecule-core:fix/delete-dialog-focus molecule-ai/molecule-core:fix/sop-checklist-probe-na-gate molecule-ai/molecule-core:test/all-handler-lib-coverage molecule-ai/molecule-core:test/handlers-and-lib-coverage-v2 molecule-ai/molecule-core:test/delegation-sweeper-pure-funcs molecule-ai/molecule-core:fix/queue-update-then-wait-loop molecule-ai/molecule-core:fix/workspace-abilities-test-coverage molecule-ai/molecule-core:test/workspace-crud-validators molecule-ai/molecule-core:fix/canvas-user-message-persist-at-ingest molecule-ai/molecule-core:test/handlers-and-lib-coverage molecule-ai/molecule-core:fix/filetree-wcag-icons molecule-ai/molecule-core:fix/mobile-wcag-focus-visible molecule-ai/molecule-core:sre/pr1381-retrigger molecule-ai/molecule-core:infra/add-missing-workflow-concurrency molecule-ai/molecule-core:infra/scheduled-workflow-cancel-in-progress molecule-ai/molecule-core:fix/canvas-wcag-focus-visible-2 molecule-ai/molecule-core:ci/twine-verbose-403-reason-body molecule-ai/molecule-core:test/handlers-and-theme-coverage molecule-ai/molecule-core:fix/ci-required-drift-skip-f1 molecule-ai/molecule-core:fix/sop-checklist-na-declarations molecule-ai/molecule-core:test/workspace-abilities-and-theme molecule-ai/molecule-core:test/plugins-sources-and-theme molecule-ai/molecule-core:sre/comment-dispatch-consolidation-v2 molecule-ai/molecule-core:chore/remove-crewai-deepagents-gemini-cli molecule-ai/molecule-core:test/workspace-broadcast-handler molecule-ai/molecule-core:test/workspace-abilities-patch molecule-ai/molecule-core:fix/inbox-self-echo molecule-ai/molecule-core:feat/test-status-config-constants molecule-ai/molecule-core:feat/test-plugins-install-handlers molecule-ai/molecule-core:test/local-provisioner-token-ownership-parity molecule-ai/molecule-core:infra/internal-462-publish-deploy-lane molecule-ai/molecule-core:fix/staging-sync-persist-fix molecule-ai/molecule-core:feat/broadcast-coverage molecule-ai/molecule-core:__disk-test-137017 molecule-ai/molecule-core:fix/main-red-watchdog-close-on-pending molecule-ai/molecule-core:fix/review-refire-comments-token-scope molecule-ai/molecule-core:feat/canvas-abilities-banner-test molecule-ai/molecule-core:pr-1307 molecule-ai/molecule-core:staging-dev-lead-test-4107230 molecule-ai/molecule-core:feat/workspace-abilities-test-coverage molecule-ai/molecule-core:ci/scheduled-cancel-in-progress-1357 molecule-ai/molecule-core:feat/broadcast-test-coverage molecule-ai/molecule-core:fix/a2a-queue-status-coverage molecule-ai/molecule-core:pr-1351 molecule-ai/molecule-core:ci/e2e-peer-visibility-bp-pending-1296 molecule-ai/molecule-core:ci/e2e-peer-visibility-bp-required-1328 molecule-ai/molecule-core:fix/review-refire-conflict molecule-ai/molecule-core:sre/consolidated-main-to-staging molecule-ai/molecule-core:fix/org-helpers-duplicate-comment molecule-ai/molecule-core:fix/a2a-self-delegation-echo-inbox molecule-ai/molecule-core:perf/canvas-favicon-shrink molecule-ai/molecule-core:perf/canvas-toolbar-logo-shrink molecule-ai/molecule-core:perf/canvas-bundle-analyzer-optimize-imports molecule-ai/molecule-core:fix/offsec-015-staging molecule-ai/molecule-core:fix/workspace-token-injection-agent-owned molecule-ai/molecule-core:ci/sop-checklist-narrow-issue-comment-trigger molecule-ai/molecule-core:fix/broadcast-handler-coverage-1343 molecule-ai/molecule-core:fix/test-patchAbilities-toolbar-1313-1334 molecule-ai/molecule-core:docs/gitea-actions-quirks-runbook molecule-ai/molecule-core:fix/1256-enable-button-focus-ring molecule-ai/molecule-core:pr-1327 molecule-ai/molecule-core:feat/workspace-sizing-override molecule-ai/molecule-core:fix/sop-checklist-na-post molecule-ai/molecule-core:canvas/broadcast-chat-wcag molecule-ai/molecule-core:fix/test-matchesChatID-1304 molecule-ai/molecule-core:test/canvas/FileTree-render-a11y molecule-ai/molecule-core:test/canvas/ChatTab-subtab-a11y molecule-ai/molecule-core:test/canvas/SidePanel-a11y-and-state molecule-ai/molecule-core:enforce/peer-visibility-bp-directive-1296 molecule-ai/molecule-core:infra/main-ci-retrigger molecule-ai/molecule-core:sre/queue-api-fix molecule-ai/molecule-core:fix/handlers-untested-helpers-2026-05-16 molecule-ai/molecule-core:sre/sop-na-fix molecule-ai/molecule-core:promote/staging-to-main molecule-ai/molecule-core:infra/detect-changes-shallow-v2 molecule-ai/molecule-core:feat/publish-lane-runs-on-394 molecule-ai/molecule-core:test/canvas/FilesToolbar-a11y molecule-ai/molecule-core:fix/workspace-abilities-coverage-1312 molecule-ai/molecule-core:fix/sop-checklist-merged-blank-line molecule-ai/molecule-core:fix/e2e-chat-setup-node-mirror-sha molecule-ai/molecule-core:e2e/peer-visibility-local-backend molecule-ai/molecule-core:fix/secrets-coverage-compile-err-1274 molecule-ai/molecule-core:e2e/peer-visibility-mcp-gate molecule-ai/molecule-core:fix/e2e-chat-setup-node-mirror molecule-ai/molecule-core:fix/canvas-arrangeChildren-coverage molecule-ai/molecule-core:sre/fix-queue-null-created-at-sort molecule-ai/molecule-core:fix/sop-checklist-blank-line-detect molecule-ai/molecule-core:fix/a2a-proxy-test-async-drain molecule-ai/molecule-core:fix/handlers-admin-delegations-coverage molecule-ai/molecule-core:sre/platform-go-timeout-60m molecule-ai/molecule-core:infra/sop-tier-check-token-guard molecule-ai/molecule-core:fix/handlers-test-async-drain molecule-ai/molecule-core:fix/gate-check-login-aliases molecule-ai/molecule-core:fix/secrets-scan-test-fixture-exclusion molecule-ai/molecule-core:fix/secrets-coverage-tests-v2 molecule-ai/molecule-core:fix/ci-concurrency-cancel-superseded-storm molecule-ai/molecule-core:fix/secret-scan-exclude-secrets-tests molecule-ai/molecule-core:fix/secrets-patterns-100pct-coverage molecule-ai/molecule-core:fix/secrets-100-coverage molecule-ai/molecule-core:standalone/review-check-403-fix molecule-ai/molecule-core:feat/files-agent-home-stub molecule-ai/molecule-core:feat/agent-home-docker-exec-internal-425-phase-2b molecule-ai/molecule-core:sre/secret-scan-timeout molecule-ai/molecule-core:feat/canvas-files-agent-home-internal-425-phase-3 molecule-ai/molecule-core:fix/top-level-modules-add-a2a-tools-identity molecule-ai/molecule-core:feat/secrets-patterns-ssot-internal-425-phase-2a molecule-ai/molecule-core:stub/files-api-agent-home-root-2026-05-15 molecule-ai/molecule-core:fix/sop-n-a-v2 molecule-ai/molecule-core:fix/files-api-agent-home-stub molecule-ai/molecule-core:be/workspace-server-accumulated-fixes molecule-ai/molecule-core:fix/sop-n-a-clean molecule-ai/molecule-core:design/themetoggle-test-teardown-fix molecule-ai/molecule-core:feat/canvas-growParentsToFitChildren-coverage molecule-ai/molecule-core:fix/openclaw-skip-config-write-and-canvas-timeout-to-main molecule-ai/molecule-core:feat/agent-card-update-and-runtime-identity-tools-relocated molecule-ai/molecule-core:fix/openclaw-skip-config-write-and-canvas-timeout molecule-ai/molecule-core:fix/prod-auto-deploy-timeout molecule-ai/molecule-core:feat/chat-unify-clean molecule-ai/molecule-core:fix/autobump-skip-existing-tags molecule-ai/molecule-core:fix/issue-1187-broadcast-abilities-coverage molecule-ai/molecule-core:fix/runtime-autobump-next-free-tag molecule-ai/molecule-core:pr-1211 molecule-ai/molecule-core:feat/queue-status-abilities-handler-tests molecule-ai/molecule-core:fix/queue-channels-coverage molecule-ai/molecule-core:infra-sre/golangci-lint-connectivity-fix molecule-ai/molecule-core:infra/main-sop-na-fix molecule-ai/molecule-core:fix/staging-golangci-30m-v2 molecule-ai/molecule-core:fix/scheduler-coverage-gaps molecule-ai/molecule-core:fix/channels-rows-err-and-cwe312 molecule-ai/molecule-core:fix/container-name-no-uuid-truncation molecule-ai/molecule-core:fix/staging-golangci-noconfig molecule-ai/molecule-core:fix/provider-base-url-fallback molecule-ai/molecule-core:fix/provisioner-uuid-no-truncate molecule-ai/molecule-core:fix/queue-label-filter-all-ids molecule-ai/molecule-core:fix/review-check-403-skip molecule-ai/molecule-core:fix/ki-010-container-name-truncation molecule-ai/molecule-core:fix/provisioner-no-uuid-truncation molecule-ai/molecule-core:fix/issue-1176-db-db-race molecule-ai/molecule-core:fix/channels-rows-err molecule-ai/molecule-core:test/issue-1156-messaging-coverage molecule-ai/molecule-core:sre/fix-test-sop-parse-directives molecule-ai/molecule-core:infra/staging-sop-na-fix molecule-ai/molecule-core:test/workspace-adapter-base-coverage molecule-ai/molecule-core:sre/fix-sop-test-parse-directives molecule-ai/molecule-core:fix/pr-1070-push-tokens molecule-ai/molecule-core:test/push-package-coverage molecule-ai/molecule-core:hotfix/offsec-015-org-isolation molecule-ai/molecule-core:infra/sop-n-a-plus-drift-fix molecule-ai/molecule-core:fix/issue-1183-settingspanel-act-wrap molecule-ai/molecule-core:pr-1185-current molecule-ai/molecule-core:infra/main-golangci-no-config molecule-ai/molecule-core:test/qa-broadcast-abilities-coverage molecule-ai/molecule-core:fix/delegations-list-endpoint-wrong-column molecule-ai/molecule-core:core-be/fix/platform-go-timeout molecule-ai/molecule-core:fix/issue-1152-delegation-activity-db-err-tests molecule-ai/molecule-core:core-be/fix/tokens-rate-limit-scan-err-v2 molecule-ai/molecule-core:fix/handlers-rows-err-missing molecule-ai/molecule-core:infra/canvas-deploy-reminder-polling-list molecule-ai/molecule-core:fix/staging-ci-timeouts molecule-ai/molecule-core:fix/settingspanel-act-flush molecule-ai/molecule-core:fix/rows-err-instructions-resolve molecule-ai/molecule-core:fix/ci-cold-runner-timeout molecule-ai/molecule-core:fix/issue-1171-rows-err-memory-events-channels molecule-ai/molecule-core:fix/sentinel-remove-phas3-masked molecule-ai/molecule-core:infra/fix-all-required-combined-status-check molecule-ai/molecule-core:pr1165-rebase molecule-ai/molecule-core:fix/approvals-json-marshal-guard molecule-ai/molecule-core:feat/canvas-broadcast-handler molecule-ai/molecule-core:sre/fix-ci-drift-false-positive molecule-ai/molecule-core:sre/fix-queue-remove-label-bug molecule-ai/molecule-core:infra/workspace-server-healthcheck molecule-ai/molecule-core:fix/ci-drift-canvas-deploy-reminder molecule-ai/molecule-core:fix/offsec-015-broadcast-org-isolation molecule-ai/molecule-core:fix/delegation-list-callee-plus-golangci-lint molecule-ai/molecule-core:sre/fix-queue-gate-context molecule-ai/molecule-core:core-be/test/delegate-record-db-errors-v2 molecule-ai/molecule-core:fix/tokens-rate-limit-scan-err molecule-ai/molecule-core:pr-1117 molecule-ai/molecule-core:pr-1117-latest molecule-ai/molecule-core:infra/staging-golangci-no-config molecule-ai/molecule-core:fix/openclaw-molecule-mcp-version-pin molecule-ai/molecule-core:offsec015 molecule-ai/molecule-core:fix/openclaw-mcp-version-check molecule-ai/molecule-core:feat/provider-routing-base-v2 molecule-ai/molecule-core:feat/e2e-chat-stabilization molecule-ai/molecule-core:fix/sop-concurrency-throttle molecule-ai/molecule-core:p1102 molecule-ai/molecule-core:p1117 molecule-ai/molecule-core:fix/canvas-deploy-reminder-deadlock molecule-ai/molecule-core:infra/main-golangci-timeout-fix molecule-ai/molecule-core:feat/provider-routing-base molecule-ai/molecule-core:sre/sweep-cf-orphans-aws-timeout molecule-ai/molecule-core:sre/queue-merge-conflict-handling molecule-ai/molecule-core:fix/na-declarations-gate molecule-ai/molecule-core:fix/handlers-log-db-scan-errors molecule-ai/molecule-core:fix/channels-marshal-errors molecule-ai/molecule-core:fix/channels-silent-json-errors molecule-ai/molecule-core:sre/channels-unmarshal-errors molecule-ai/molecule-core:sre/queue-pre-receive-hook-fix molecule-ai/molecule-core:sre/ci-timeout-increase molecule-ai/molecule-core:fix/approvals-terminal-db-err-logging molecule-ai/molecule-core:infra/ci-platform-go-timeout-fix molecule-ai/molecule-core:fix/push-notifications molecule-ai/molecule-core:fix/channels-json-unmarshal-guard molecule-ai/molecule-core:fix/main-rows-err-instructions molecule-ai/molecule-core:fix/main-test-fix-from-0c152a24 molecule-ai/molecule-core:fix/staging-offsec010-cp-wiring molecule-ai/molecule-core:fix/handlers-instructions-test-bugs molecule-ai/molecule-core:fix/ci-allrequired-needs molecule-ai/molecule-core:fix/staging-goasync-configseed molecule-ai/molecule-core:fix/issue-1080-org-helpers-comment molecule-ai/molecule-core:fix/issue-1081-errors-import molecule-ai/molecule-core:fix/1080-org-helpers-comment-typo molecule-ai/molecule-core:infra-sre/fix-missing-test-imports molecule-ai/molecule-core:fix/offsec-010-wiring molecule-ai/molecule-core:fix/saas-t4-cp-config-seed molecule-ai/molecule-core:fix/offsec-010-clean molecule-ai/molecule-core:fix/offsec-003-boundary-wrapping molecule-ai/molecule-core:fix/offsec-003-escaped-markers-main molecule-ai/molecule-core:fix/mobile-chat-history molecule-ai/molecule-core:fix/staging-CWE-78-rows-err molecule-ai/molecule-core:fix/1062-mobilechat-history molecule-ai/molecule-core:hotfix/cwe-78-staging molecule-ai/molecule-core:fix/stdio-v2 molecule-ai/molecule-core:fix/offsec-010-symlink-walkdir molecule-ai/molecule-core:fix/test-stdio-function-name molecule-ai/molecule-core:fix/offsec-010-symlink-walkdir-isSaaS-fix molecule-ai/molecule-core:sre/fix-stale-platform-server-port molecule-ai/molecule-core:fix/offsec-010-from-pr1047 molecule-ai/molecule-core:staging-v6 molecule-ai/molecule-core:fix/e2e-api-port-collision molecule-ai/molecule-core:fix/main-async-db-race molecule-ai/molecule-core:infra/sync-staging-v6-to-main molecule-ai/molecule-core:pr/1030 molecule-ai/molecule-core:fix/handlers-instructions-test-compile molecule-ai/molecule-core:fix/instructions-test-compile molecule-ai/molecule-core:fix/openclaw-empty-required-keys molecule-ai/molecule-core:sre/main-rows-err-checks molecule-ai/molecule-core:fix/staging-v6-conflict-markers molecule-ai/molecule-core:fix/delegation-list-test-conflict-marker molecule-ai/molecule-core:fix/main-red-cdb0b040-ci-tests molecule-ai/molecule-core:fix/theme-toggle-selector-main-red molecule-ai/molecule-core:sre/ci-required-drift-canvas-reminder-skip molecule-ai/molecule-core:test/instructions-handler-coverage molecule-ai/molecule-core:sre/canvas-build-timeout molecule-ai/molecule-core:test/externalconnectmodal molecule-ai/molecule-core:fix/resolve-conflict-marker-delegation-list-test molecule-ai/molecule-core:fix/1008-themetoggle-css-selector molecule-ai/molecule-core:design/826-searchdialog-mount-v2 molecule-ai/molecule-core:test/orgcancelbutton molecule-ai/molecule-core:fix/2088-themetoggle-queryselectorall-errors molecule-ai/molecule-core:design/704-tree-test-fix molecule-ai/molecule-core:fix/ci-required-drift-github-ref-skip molecule-ai/molecule-core:ci/975-db-pollution-fix molecule-ai/molecule-core:fix/968-remove-duplicate-test-declarations molecule-ai/molecule-core:fix/980-schedules-handler-test-coverage molecule-ai/molecule-core:design/tier-legend-contrast-2026-05-14 molecule-ai/molecule-core:sre/platform-go-timeout-fix molecule-ai/molecule-core:fix/delegation-list-test-db-leak molecule-ai/molecule-core:fix/984-delegation-id-response-body molecule-ai/molecule-core:sre/queue-bot-fix-ctx-check molecule-ai/molecule-core:fix/983-remove-duplicate-test-declarations molecule-ai/molecule-core:fix/986-canvas-wcag-focus-rings molecule-ai/molecule-core:fix/993-agent-handler-test-coverage molecule-ai/molecule-core:design/wcag-focus-contrast-2026-05-14 molecule-ai/molecule-core:design/wcag-focus-rings-round5-2026-05-14 molecule-ai/molecule-core:fix/activity-logs-delegation-id-response-body molecule-ai/molecule-core:fix/982-expand-posix-identifier-guard molecule-ai/molecule-core:fix/test-offsec003-redundant-file molecule-ai/molecule-core:feat/976-schedules-handler-test-coverage molecule-ai/molecule-core:fix/org-helpers-test-panic molecule-ai/molecule-core:promote/main-to-staging-v5 molecule-ai/molecule-core:fix/965-test-panic-resolveInsideRoot molecule-ai/molecule-core:promote/main-to-staging-v4 molecule-ai/molecule-core:feat/delegation-list-tests molecule-ai/molecule-core:fix/test-a2a-sanitization-v3 molecule-ai/molecule-core:promote/main-to-staging-v3 molecule-ai/molecule-core:fix/duplicate-test-declarations molecule-ai/molecule-core:feat/org-helpers-security-tests molecule-ai/molecule-core:fix/main-push-operational-red molecule-ai/molecule-core:promote/main-to-staging-v2 molecule-ai/molecule-core:fix-sop-concurrency-v2 molecule-ai/molecule-core:fix/sop-checklist-gate-name molecule-ai/molecule-core:fix/docker-info-pipefail molecule-ai/molecule-core:fix/publish-healthcheck-pipefail molecule-ai/molecule-core:fix/sop-checklist-workflow-rename molecule-ai/molecule-core:promote/main-to-staging molecule-ai/molecule-core:sre/fix-sop-checklist-context-name-mc948 molecule-ai/molecule-core:design/wcag-contrast-round4-2026-05-14 molecule-ai/molecule-core:fix/org-helper-tests molecule-ai/molecule-core:fix/test-a2a-sanitization-main molecule-ai/molecule-core:fix/publish-image-on-every-main-push molecule-ai/molecule-core:fix/remove-canvas-reminder-from-all-required molecule-ai/molecule-core:fix/staging-integration-test-ctx molecule-ai/molecule-core:fix/staging-canvas-reminder-deadlock molecule-ai/molecule-core:design/wcag-a11y-round3-2026-05-14 molecule-ai/molecule-core:ci/remove-canvas-reminder-from-all-required molecule-ai/molecule-core:fix/test-a2a-sanitization-assertions molecule-ai/molecule-core:fix/staging-ci-drift-canvas-reminder molecule-ai/molecule-core:fix/handlers-pg-integ-event-before molecule-ai/molecule-core:ci/platform-build-flip-coe molecule-ai/molecule-core:fix/staging-python-test-and-tier-check-lint molecule-ai/molecule-core:fix/offsec-006-slug-injection molecule-ai/molecule-core:runtime/fix-pr916-integration-test-ctx molecule-ai/molecule-core:design/chat-tab-wcag-contrast-2026-05-14 molecule-ai/molecule-core:fix/offsec-006-slug-validation molecule-ai/molecule-core:design/wcag-contrast-fixes-2026-05-14 molecule-ai/molecule-core:fix/904-handler-test-blockers molecule-ai/molecule-core:fix/ci-drift-canvas-reminder molecule-ai/molecule-core:fix/comment-trigger-storm molecule-ai/molecule-core:infra/660-codify-promote-tenant-image molecule-ai/molecule-core:fix/917-canvas-test-failures molecule-ai/molecule-core:fix/917-runtime-prbuild-detect-changes-fix molecule-ai/molecule-core:fix/filesTab-test-stale-reference molecule-ai/molecule-core:fix/files-tab-test-missing-helper molecule-ai/molecule-core:fix/runtime-prbuild-compat-detect-changes molecule-ai/molecule-core:fix/staging-test-compilation-fixes molecule-ai/molecule-core:fix/qa-review-token-fallback-v2 molecule-ai/molecule-core:test/hydrate-canvas-coverage molecule-ai/molecule-core:fix/contextmenu-react-error-185 molecule-ai/molecule-core:test/external-runtimes-coverage molecule-ai/molecule-core:fix/main-sqlmock-import-ineffassign-20260513 molecule-ai/molecule-core:fix/redeploy-tenants-on-main-lint-cleanup molecule-ai/molecule-core:sre/docker-daemon-gate-fix molecule-ai/molecule-core:fix/897-listdelegations-use-ledger-table molecule-ai/molecule-core:fix/901-listdelegations-ledger-table molecule-ai/molecule-core:fix/core-main-handlers-hotfix molecule-ai/molecule-core:fix/e2e-api-platform-port molecule-ai/molecule-core:fix/main-green-monitor-status molecule-ai/molecule-core:fix/mobile-MobileChat-infinite-render molecule-ai/molecule-core:fix/delegations-ledger-fallback-rows-err molecule-ai/molecule-core:fix/874-extractmessagetext-clean molecule-ai/molecule-core:feat/881-untested-helpers molecule-ai/molecule-core:fix/874-extractmessagetext-bug molecule-ai/molecule-core:fix/status-reaper-api-timeout-retry-20260513130514 molecule-ai/molecule-core:fix/831-admin-token-placeholder-bootstrap molecule-ai/molecule-core:feat/canvas-test-coverage-738 molecule-ai/molecule-core:feat/files-tab-tree-coverage molecule-ai/molecule-core:feat/canvas-untested-components-coverage molecule-ai/molecule-core:feat/canvas-tab-test-coverage-2 molecule-ai/molecule-core:fix/main-bundle-test-sqlmock-import molecule-ai/molecule-core:fix/stdio-fallback-all-environments molecule-ai/molecule-core:staging-sync-v3 molecule-ai/molecule-core:ci/burn-in-remove-sop-tier-check-coe molecule-ai/molecule-core:fix/issue-860-delivery-mode-tests molecule-ai/molecule-core:design/approval-banner-emerald-fix molecule-ai/molecule-core:fix/issue-854-termsgate-a11y molecule-ai/molecule-core:fix/issue-859-wcag-contrast molecule-ai/molecule-core:fix/delegations-rows-err-bbc40cb8 molecule-ai/molecule-core:design/approvalbanner-a11y molecule-ai/molecule-core:design/pricingtable-a11y molecule-ai/molecule-core:design/toolbar-help-toggle-fix molecule-ai/molecule-core:staging-sync-v2 molecule-ai/molecule-core:fix/canvas-approvalbanner-a11y molecule-ai/molecule-core:feat/canvas-external-connect-modal-coverage molecule-ai/molecule-core:staging-sync-rm molecule-ai/molecule-core:fix/test-sanitize-agent-error-stderr molecule-ai/molecule-core:test/a2a-queue-extractExpiresInSeconds molecule-ai/molecule-core:fix/pr-829-test-issues molecule-ai/molecule-core:design/826-searchdialog-mount molecule-ai/molecule-core:fix/chat-createMessage-attachments-key molecule-ai/molecule-core:fix/762-recall-memory-canary molecule-ai/molecule-core:fix/367-a2a-tools-coverage-v2 molecule-ai/molecule-core:feat/search-dialog-mount molecule-ai/molecule-core:feat/org-layout-test-coverage molecule-ai/molecule-core:fix/offsec-003-builtin-a2a-sanitize molecule-ai/molecule-core:fix/canvas-playwright-install-timeout molecule-ai/molecule-core:fix/805-audit-force-merge-main-required-checks molecule-ai/molecule-core:fix/cf-sweep-api-error molecule-ai/molecule-core:fix/e2e-diagnose-detail molecule-ai/molecule-core:fix/a2a-mcp-server-http-transport molecule-ai/molecule-core:fix/core-main-red-golangci-install molecule-ai/molecule-core:fix/test-declarations molecule-ai/molecule-core:fix/sop-checklist-body-hard-gate molecule-ai/molecule-core:merge-792 molecule-ai/molecule-core:feat/mcp-tools-test-coverage molecule-ai/molecule-core:feat/workspace-crud-test-coverage molecule-ai/molecule-core:feat/socket-handler-test-coverage molecule-ai/molecule-core:fix/686-delegation-integration-tests molecule-ai/molecule-core:feat/a2a-proxy-helpers-test-coverage molecule-ai/molecule-core:fix/publish-canvas-disable-gha-cache-20260512 molecule-ai/molecule-core:fix/publish-canvas-docker-probe-20260512 molecule-ai/molecule-core:fix/canvas-image-ecr-20260512 molecule-ai/molecule-core:fix/687-send-ssh-public-key-detail molecule-ai/molecule-core:feat/tier-2g-required-context-exists-in-bp molecule-ai/molecule-core:feat/tier-2f-bp-emit-match molecule-ai/molecule-core:fix/mc-664-class-2-mcp-offsec-contract-test molecule-ai/molecule-core:fix/main-ci-green-20260512 molecule-ai/molecule-core:infra/dockerfile-add-docker-cli-for-local-build molecule-ai/molecule-core:test/workspace-crud-helpers-coverage molecule-ai/molecule-core:fix/681-recallmemory-offsec-contract molecule-ai/molecule-core:fix/org-layout-helpers-test-coverage molecule-ai/molecule-core:fix/735-extractResponseText-tests molecule-ai/molecule-core:test/713-workspace-crud-validators molecule-ai/molecule-core:test/713-org-helpers-pure-coverage molecule-ai/molecule-core:fix/713-eic-diagnose-detail molecule-ai/molecule-core:fix/730-filterpeers-nil-guard molecule-ai/molecule-core:infra/all-required-coe-false-v2 molecule-ai/molecule-core:fix/phase3-tracker-comments molecule-ai/molecule-core:fix/mc-664-class-1-delegation-tests-postgres-integration molecule-ai/molecule-core:fix/canvas-keyboard-shortcuts-dialog-guard molecule-ai/molecule-core:infra/664-lint-coe-trackers molecule-ai/molecule-core:ci/lint-tracker-regex-fix-v2 molecule-ai/molecule-core:fix/731-nil-guard-filter-peers-by-query molecule-ai/molecule-core:fix/lint-TRACKER_RE-mid-sentence molecule-ai/molecule-core:ci-retrigger-747 molecule-ai/molecule-core:feat/709-handler-pure-coverage molecule-ai/molecule-core:fix/697-canvas-geticon-topology molecule-ai/molecule-core:ci/lint-tracker-regex-fix molecule-ai/molecule-core:test/2071-canvas-drop-target-badge-coverage molecule-ai/molecule-core:feat/2071-canvas-orgdeploystate-coverage molecule-ai/molecule-core:feat/mobile-canvas-comms-spawn-coverage molecule-ai/molecule-core:ci/lint-coe-self-fix molecule-ai/molecule-core:fix/ssm-refresh-ecr-auth-json-escaping molecule-ai/molecule-core:design/729-fix molecule-ai/molecule-core:ci/gate-check-v3-permissions-fix molecule-ai/molecule-core:fix/730-discovery-filter-nil-role molecule-ai/molecule-core:infra/publish-docker-daemon-diagnostic molecule-ai/molecule-core:fix/714-all-required-coe-false molecule-ai/molecule-core:fix/717-mobile-agentMessages-selector molecule-ai/molecule-core:infra/fix-all-required-status-reporting molecule-ai/molecule-core:fix/687-e2e-surface-diagnose-detail molecule-ai/molecule-core:infra/docker-runner-label molecule-ai/molecule-core:test/701-canvas-hydrate-coverage molecule-ai/molecule-core:test/mobile-primitives-coverage molecule-ai/molecule-core:infra/664-interim-platform-build-exempt molecule-ai/molecule-core:fix/693-offsec-recallmemory-scrub-staging molecule-ai/molecule-core:sync/main-to-staging-514-v2 molecule-ai/molecule-core:fix/693-offsec-recallmemory-global-scrub molecule-ai/molecule-core:fix/693-offsec-recallmemory-scrub molecule-ai/molecule-core:fix/634-handler-test-fixes-to-main molecule-ai/molecule-core:test/699-socket-handler-coverage molecule-ai/molecule-core:sre/workflow-run-replacement molecule-ai/molecule-core:infra/676-ssm-auth-json-hardening molecule-ai/molecule-core:fix/offsec-001-method-scrub-hotfix molecule-ai/molecule-core:fix/offsec-001-method-scrub-main molecule-ai/molecule-core:feat/workspace-crud-validation-tests molecule-ai/molecule-core:test/canvas-hydrate-coverage molecule-ai/molecule-core:infra/lint-pre-flip-continue-on-error molecule-ai/molecule-core:fix/workflow_run-to-push-gitea-1.22.6 molecule-ai/molecule-core:feat/tier-2e-tracking-issue molecule-ai/molecule-core:fix/684-offsec-scrub-method-default molecule-ai/molecule-core:feat/sop-checklist-gate-mvp molecule-ai/molecule-core:feat/tier-2d-lint-mask-pr-atomicity molecule-ai/molecule-core:infra/lint-workflow-yaml-hostile-shapes molecule-ai/molecule-core:infra/lint-required-no-paths-filter molecule-ai/molecule-core:cleanup/pr-641-clean molecule-ai/molecule-core:feat/mobile-tabbar-wcag-a11y molecule-ai/molecule-core:fix/canvas-mobile-chat-loop molecule-ai/molecule-core:fix/651-canvas-chat-mobile-crash molecule-ai/molecule-core:fix/664-interim-remask-platform-build molecule-ai/molecule-core:fix/mobile-chat-max-update-depth molecule-ai/molecule-core:infra/622-force-merge-protection-fix molecule-ai/molecule-core:test/attachment-lightbox-clean-v2 molecule-ai/molecule-core:ci/652-gitea-1-22-status-key molecule-ai/molecule-core:test/memorytab-2 molecule-ai/molecule-core:infra/status-reaper-rev4-status-key-fix molecule-ai/molecule-core:infra/weekly-platform-go-vet-hard molecule-ai/molecule-core:fix/audit-force-merge-pipefail molecule-ai/molecule-core:infra/status-reaper-rev3-widen-window molecule-ai/molecule-core:test/canvas-externalconnectmodal-coverage molecule-ai/molecule-core:fix/sop-tier-check-token-graceful molecule-ai/molecule-core:infra/ci-required-drift-token-scope molecule-ai/molecule-core:test/console-modal-coverage molecule-ai/molecule-core:ci/review-check-tests-wire molecule-ai/molecule-core:test/canvas-workspacenode-coverage molecule-ai/molecule-core:test/memorytab molecule-ai/molecule-core:infra/interim-disable-reaper-watchdog-crons molecule-ai/molecule-core:test/attachment-lightbox-coverage molecule-ai/molecule-core:fix/issue-639-workspacenode-test-coverage molecule-ai/molecule-core:test/channels-tab molecule-ai/molecule-core:fix/canvas-searchdialog-test-fixtures molecule-ai/molecule-core:fix/598-attachmentLightbox-tests molecule-ai/molecule-core:fix/529-307-localbuild-async-test-fix molecule-ai/molecule-core:fix/582-attachmentviews-tests molecule-ai/molecule-core:fix/308-a2a-response-push-mode-tests molecule-ai/molecule-core:fix/529-preflight-localbuild molecule-ai/molecule-core:fix/sop-tier-check-token-graceful-staging molecule-ai/molecule-core:fix/545-approvalbanner-isolation molecule-ai/molecule-core:fix/519-memorytab-tests molecule-ai/molecule-core:infra/status-reaper-rev2-sweep-recent-commits molecule-ai/molecule-core:fix/handlers-test-fixtures molecule-ai/molecule-core:test/skill-helpers-coverage molecule-ai/molecule-core:test/ui-primitive-coverage molecule-ai/molecule-core:docs/gitea-quirks-10-11 molecule-ai/molecule-core:test/platform-bundle-exporter-coverage molecule-ai/molecule-core:infra/status-reaper-rev1-drop-concurrency molecule-ai/molecule-core:fix/608-filesTab-focusTest molecule-ai/molecule-core:test/budget-section-coverage molecule-ai/molecule-core:infra/revert-docker-runner-label molecule-ai/molecule-core:fix/weekly-platform-go-latent-error-surface molecule-ai/molecule-core:infra/revert-publish-runs-on-pin molecule-ai/molecule-core:sre/gate-check-timeout molecule-ai/molecule-core:test/a2a-error-hint-coverage molecule-ai/molecule-core:test/chat-attachment-views-coverage molecule-ai/molecule-core:test/attachment-video-coverage molecule-ai/molecule-core:infra/option-b-status-reaper molecule-ai/molecule-core:infra/gate-check-v3-timeout molecule-ai/molecule-core:infra/576-docker-runner-label molecule-ai/molecule-core:fix/593-filetab-tests molecule-ai/molecule-core:test/files-tab-notavailablepanel-coverage molecule-ai/molecule-core:fix/591-forminputs-tests molecule-ai/molecule-core:fix/471-cwe117-stderr-scrubbing molecule-ai/molecule-core:infra/diagnostic-publish-workspace-server-image molecule-ai/molecule-core:fix/582-bundle-import-tests molecule-ai/molecule-core:test/form-inputs-coverage molecule-ai/molecule-core:fix/publish-workspace-server-image-json5-comments molecule-ai/molecule-core:sre/fix-all-required-null-result molecule-ai/molecule-core:fix/publish-workspace-server-image-optional-token molecule-ai/molecule-core:pr-251 molecule-ai/molecule-core:test/ui-statusbadge-coverage molecule-ai/molecule-core:fix/all-required-null-result-assertion molecule-ai/molecule-core:fix/568-palette-context-tests molecule-ai/molecule-core:pr-527 molecule-ai/molecule-core:infra/merge-563-autobump-fix molecule-ai/molecule-core:test/mobile-palette-context-coverage molecule-ai/molecule-core:sre/fix-gate-check-v3-combined-state-loop molecule-ai/molecule-core:ci/540-review-check-bats-tests molecule-ai/molecule-core:fix/publish-runtime-autobump-push-condition molecule-ai/molecule-core:ci/558-verify-publish-runtime-marker molecule-ai/molecule-core:test/canvas-empty-state-coverage molecule-ai/molecule-core:infra/publish-runtime-verify-2026-05-11 molecule-ai/molecule-core:ci/554-oci-labels-publish-workflow molecule-ai/molecule-core:infra/drift-bot-token molecule-ai/molecule-core:infra/rfc-219-phase-4-all-required-sentinel molecule-ai/molecule-core:ci/551-gate-checkout-trusted-ref molecule-ai/molecule-core:fix/gate-check-v3-pr-HEAD-security molecule-ai/molecule-core:fix/541-token-argv-security molecule-ai/molecule-core:sre/fix-gate-check-v3-bugs molecule-ai/molecule-core:fix/537-cwe117-a2a-tools-sanitize molecule-ai/molecule-core:fix/gate-check-v3-http-error-crash molecule-ai/molecule-core:sre/fix-localbuild-preflight molecule-ai/molecule-core:infra/rfc-324-workflow-add molecule-ai/molecule-core:test/offsec-003-sanitization-backstop molecule-ai/molecule-core:fix/test-sanitize-agent-error-stderr-exc molecule-ai/molecule-core:fix/approval-banner-test-isolation molecule-ai/molecule-core:infra/scope-workflows-fix molecule-ai/molecule-core:sre/fix-pr530-deadlock molecule-ai/molecule-core:sre/reopen-516-gate-check-fix molecule-ai/molecule-core:fix/ci-scope-operational-workflows-504-419 molecule-ai/molecule-core:sre/scope-operational-workflows-to-schedule molecule-ai/molecule-core:ci/harness-replays-detect-changes-quoting-fix molecule-ai/molecule-core:fix/test-blocks-until-inflight-completes molecule-ai/molecule-core:fix/test-enrich-peer-metadata-nonblocking molecule-ai/molecule-core:sre/fix-enrich-nonblocking-cache-check molecule-ai/molecule-core:merge-pr490 molecule-ai/molecule-core:runtime/fix-offsec-003-tool-delegate-task molecule-ai/molecule-core:fix/508-update-boundary-assertions molecule-ai/molecule-core:sre/fix-test-delegation-sync-polling-assertions molecule-ai/molecule-core:fix/366-shared-runtime-coverage molecule-ai/molecule-core:fix/506-unused-imports molecule-ai/molecule-core:ci/lint-fixes molecule-ai/molecule-core:fix/367-a2a-tools-coverage molecule-ai/molecule-core:test/a2a-client-enrich-peer-rebase molecule-ai/molecule-core:fix/354-delegation-auto-resume-rebase molecule-ai/molecule-core:ci/fix-detect-changes-commits-array molecule-ai/molecule-core:fix/307-async-rebase molecule-ai/molecule-core:runtime/fix-harness-replays-push-event molecule-ai/molecule-core:sre/fix-test-polling-sanitization molecule-ai/molecule-core:fix/harness-replays-detect-changes-gitea-api molecule-ai/molecule-core:ci/fix-test-polling-sanitization molecule-ai/molecule-core:test/eventstab molecule-ai/molecule-core:runtime/335-rebase-platfrom-url molecule-ai/molecule-core:hotfix/491-offsec-003-staging-v2 molecule-ai/molecule-core:fix/pr477-test-fixes molecule-ai/molecule-core:runtime/335-rebase-platform-url molecule-ai/molecule-core:fix/354-auto-resume-delegations molecule-ai/molecule-core:fix/368-audit-hooks-coverage molecule-ai/molecule-core:runtime/temporal-platform-url-fix molecule-ai/molecule-core:infra/secret-reconciliation-v2 molecule-ai/molecule-core:fix/purchase-success-modal-test-isolation molecule-ai/molecule-core:pr-476 molecule-ai/molecule-core:sre/fix-gitea-runbook-network-quirks molecule-ai/molecule-core:tools/gate-check-v3 molecule-ai/molecule-core:fix/376-activity-delegation-polling molecule-ai/molecule-core:runtime/platform-url-fix-merge molecule-ai/molecule-core:fix/canvas-purchase-success-modal-test-timing molecule-ai/molecule-core:fix/secret-naming-reconciliation molecule-ai/molecule-core:docs/gitea-operational-quirks-runbook molecule-ai/molecule-core:test/canvas-toolbar-coverage molecule-ai/molecule-core:fix/canvas-tier-config-v2 molecule-ai/molecule-core:fix/455-offsec003-sanitize-alignment molecule-ai/molecule-core:fix/sweep-stale-e2e-orgs-secret-name molecule-ai/molecule-core:fix/approvalbanner-mockreset-452 molecule-ai/molecule-core:fix/canvas-approvalbanner-mockreset molecule-ai/molecule-core:fix/publish-runtime-autobump-fetch-depth molecule-ai/molecule-core:fix/321-cwe22-loadWorkspaceEnv-path-traversal molecule-ai/molecule-core:fix/canonicalize-staging-admin-token-rebase-462 molecule-ai/molecule-core:canvas-followup molecule-ai/molecule-core:fix/canonicalize-staging-admin-token-rest molecule-ai/molecule-core:refactor/drop-canary-prefix molecule-ai/molecule-core:fix/canvas-test-and-design-fixes molecule-ai/molecule-core:runtime/432-followup-helper-extraction molecule-ai/molecule-core:fix/harness-replays-detect-changes-fetch-depth molecule-ai/molecule-core:fix/stderr-include-a2a-error-response molecule-ai/molecule-core:feat/internal-292-sop-tier-refire molecule-ai/molecule-core:docs/update-remote-agent-tutorial-sdk-api molecule-ai/molecule-core:fix/canvas-confirm-dialog-backdrop-a11y-v3 molecule-ai/molecule-core:fix/canvas-confirm-dialog-backdrop-a11y-v2 molecule-ai/molecule-core:fix/388-github-token-501-gitea-staging molecule-ai/molecule-core:fix/dialog-backdrop-a11y molecule-ai/molecule-core:runtime/414-idle-loop-skip-pending-results-v3 molecule-ai/molecule-core:fix/test-extract-tool-trace molecule-ai/molecule-core:fix/test-plugins-atomic-tar-coverage molecule-ai/molecule-core:fix/harness-replays-fetch-depth molecule-ai/molecule-core:fix/test-instructions-handler-coverage molecule-ai/molecule-core:sre/fix-workflow-secret-naming molecule-ai/molecule-core:fix/canvas-tiers-config-string-keys molecule-ai/molecule-core:fix/offsec-003-promote-to-main molecule-ai/molecule-core:fix/class-e-secret-name-reconciliation molecule-ai/molecule-core:fix/sop-tier-check-apt-get-first molecule-ai/molecule-core:fix/307-async-test-pollution molecule-ai/molecule-core:fix/sop-tier-check-jq-install-order molecule-ai/molecule-core:fix/canvas-test-failures-2026-05-10 molecule-ai/molecule-core:runtime/fix-a2a-tools-duplicate-error-block-v2 molecule-ai/molecule-core:infra/sop-tier-check-jq-install-fix molecule-ai/molecule-core:runtime/fix-a2a-push-delivery-mode molecule-ai/molecule-core:feat/main-never-red-watchdog-internal-420 molecule-ai/molecule-core:feat/internal-219-phase-2bc-port-to-molecule-core molecule-ai/molecule-core:fix/a11y-canvas-clean molecule-ai/molecule-core:sweep/internal-219-cat-C1-port-gates-lints molecule-ai/molecule-core:sweep/internal-219-cat-B-delete-github-only molecule-ai/molecule-core:sweep/internal-219-cat-A-delete-mirrored molecule-ai/molecule-core:fix/offsec-003-json-endpoint-sanitize molecule-ai/molecule-core:sweep/internal-219-cat-C3-port-deploy-janitors molecule-ai/molecule-core:sweep/internal-219-cat-C2-port-e2e molecule-ai/molecule-core:fix/publish-runtime-cascade-sha-capture molecule-ai/molecule-core:feat/internal-219-phase-3-port-ci-yml molecule-ai/molecule-core:fix/413-a2a-delegation-offsec-003 molecule-ai/molecule-core:runtime/381-idle-loop-pending-messages molecule-ai/molecule-core:fix/delegations-rows-err-check molecule-ai/molecule-core:fix/a11y-canvas-buttons-staging molecule-ai/molecule-core:runtime/fix-399-a2a-delegation-missing-import-v2 molecule-ai/molecule-core:fix/380-cwe59-symlink-traversal molecule-ai/molecule-core:fix/388-github-token-501-staging molecule-ai/molecule-core:fix/confirm-dialog-wcag-backdrop molecule-ai/molecule-core:infra/sop-tier-check-jq-script-fallback molecule-ai/molecule-core:fix/revert-391-broken-jq-install molecule-ai/molecule-core:fix/a2a-tools-duplicate-dead-code molecule-ai/molecule-core:fix/confirm-dialog-backdrop molecule-ai/molecule-core:fix/canvas-confirm-dialog-backdrop-a11y molecule-ai/molecule-core:infra/jq-install-main molecule-ai/molecule-core:fix/sop-tier-check-jq-main molecule-ai/molecule-core:fix/canvas-dialog-backdrop-a11y molecule-ai/molecule-core:fix/388-github-token-501 molecule-ai/molecule-core:runtime/offsec-003-polling-path-v2 molecule-ai/molecule-core:fix/361-sanitize-delegation-results molecule-ai/molecule-core:runtime/offsec-003-executor-sanitize molecule-ai/molecule-core:fix/cwe22-loadWorkspaceEnv-main molecule-ai/molecule-core:fix/qa-audit-307-308-clean molecule-ai/molecule-core:ci/fix-293-sqlalchemy-pip-install molecule-ai/molecule-core:fix/354-delegation-auto-resume molecule-ai/molecule-core:runtime/platform-url-host-docker-internal molecule-ai/molecule-core:fix/canvas-repair-tests-344 molecule-ai/molecule-core:fix/canvas-statusdot-ts-errors molecule-ai/molecule-core:test/molecule-audit-hooks-coverage molecule-ai/molecule-core:test/a2a-tools-and-send-message-coverage molecule-ai/molecule-core:fix/sop-tier-check-jq-install molecule-ai/molecule-core:test/shared-runtime-helpers-coverage molecule-ai/molecule-core:fix/canvas-topology-sort-orphan molecule-ai/molecule-core:fix/executor-helpers-offsec-003-sanitize molecule-ai/molecule-core:runtime/offsec-003-polling-path molecule-ai/molecule-core:fix/354-a2a-delegation-auto-resume molecule-ai/molecule-core:runtime/fix-a2a-push-delivery-mode-v2 molecule-ai/molecule-core:fix/publish-runtime-add-_sanitize_a2a-to-allowlist molecule-ai/molecule-core:fix/publish-runtime-missing-working-directory molecule-ai/molecule-core:ci/add-sqlalchemy-to-pip-install molecule-ai/molecule-core:ci-resolve-github-gitea-triplicate molecule-ai/molecule-core:sre/offsec-003-boundary-escape molecule-ai/molecule-core:fix/sec-321-path-traversal-clean molecule-ai/molecule-core:fix/a2a-proxy-response-header-timeout-v2 molecule-ai/molecule-core:fix/publish-runtime-workflow-dispatch-inputs molecule-ai/molecule-core:fix/a2a-push-mode-queue-envelope molecule-ai/molecule-core:fix/351-split-publish-runtime-triggers molecule-ai/molecule-core:feat/348-publish-runtime-restore-path-trigger molecule-ai/molecule-core:fix/issue-workspace-dup-name-409-autosuffix molecule-ai/molecule-core:fix/security-OFFSEC003-boundary-escape-334 molecule-ai/molecule-core:fix/security-CWE22-loadWorkspaceEnv-330 molecule-ai/molecule-core:fix/canvas-test-fixes-20260510 molecule-ai/molecule-core:fix/canvas-extractMessageText molecule-ai/molecule-core:fix/qa-307-async-pollution-direct molecule-ai/molecule-core:test/a2a-client-enrich-peer-metadata molecule-ai/molecule-core:fix/docs-309-remote-faq-staging-env molecule-ai/molecule-core:fix/qa-308-push-mode-queue-tests molecule-ai/molecule-core:fix/qa-307-async-pollution molecule-ai/molecule-core:runtime/fix-plugin-registry-import-path molecule-ai/molecule-core:fix/a2a-proxy-response-header-timeout-clean molecule-ai/molecule-core:fix/publish-workspace-server-ci-clone-manifest-retry-main molecule-ai/molecule-core:infra/remove-pr303-tracking molecule-ai/molecule-core:fix/issue-296-plugin-registry-sysmodules molecule-ai/molecule-core:infra/pin-compose-image-digests molecule-ai/molecule-core:chore/sync-main-to-staging molecule-ai/molecule-core:fix/sec-321-path-traversal molecule-ai/molecule-core:fix/a2a-proxy-response-header-timeout molecule-ai/molecule-core:docs/a11y-billing-wcag-patterns molecule-ai/molecule-core:fix/qa-307-test-a2a-inbox-wrappers-asyncio-refactor molecule-ai/molecule-core:runtime/fix-test-config-model-isolation molecule-ai/molecule-core:ci/docker-daemon-health-guard molecule-ai/molecule-core:docs/fix-remote-workspaces-faq molecule-ai/molecule-core:fix/publish-workspace-server-ci-clone-manifest-retry molecule-ai/molecule-core:fix/test-config-env-isolation molecule-ai/molecule-core:ci/staging-sha-pinning molecule-ai/molecule-core:fix/external-connection-user-facing-urls molecule-ai/molecule-core:fix/workspace-server-registry-config-helper molecule-ai/molecule-core:fix/issue-272-sqlalchemy-ci-install molecule-ai/molecule-core:fix/canvas-yaml-utils-nested-arrays-clean molecule-ai/molecule-core:fix/self-delegation-guard molecule-ai/molecule-core:promote/staging-to-main-100546 molecule-ai/molecule-core:fix/a2a-tools-v2 molecule-ai/molecule-core:fix/a2a-tools-and-workflow-cleanup molecule-ai/molecule-core:fix/canvas-test-isolation-fixes-v2 molecule-ai/molecule-core:fix/molecule-model-env-go molecule-ai/molecule-core:runtime/fix-delegate-empty-parts-regression molecule-ai/molecule-core:infra/runtime-doc-playwright-limitation molecule-ai/molecule-core:fix/offsec-001-error-message-scrubbing molecule-ai/molecule-core:fix/offsec-001 molecule-ai/molecule-core:fix/a2a-tools-string-error-handling-clean molecule-ai/molecule-core:fix/core-248-pluginresolver-and-plgh molecule-ai/molecule-core:infra/fix-source-resolver-dup molecule-ai/molecule-core:fix/model-provider-misnomer molecule-ai/molecule-core:fix/a2a-tools-string-error-handling-v2 molecule-ai/molecule-core:fix/canvas-yaml-utils-test-failure molecule-ai/molecule-core:fix/a2a-tools-string-error-handling molecule-ai/molecule-core:fix/internal-214-gosum-vanity-import molecule-ai/molecule-core:fix/canvas-test-isolation-fixes molecule-ai/molecule-core:chore/canvas-statusbadge-test-fix-cherry-pick molecule-ai/molecule-core:fix/canvas-statusbadge-test-role-ambiguity molecule-ai/molecule-core:runtime/fix-mcp-client-localhost-default molecule-ai/molecule-core:fix/core-257-delegation-test-stray-brace molecule-ai/molecule-core:revert/core-d0126662-restart-signals-undefined-h molecule-ai/molecule-core:revert/core-123-plugin-drift-detector molecule-ai/molecule-core:ci/pin-action-and-base-images molecule-ai/molecule-core:fix/org-232-per-workspace-required-env-preflight molecule-ai/molecule-core:fix/ssrf-guard-before-begintx molecule-ai/molecule-core:test/issue-232-per-workspace-required-env-preflight molecule-ai/molecule-core:fix/issue232-org-import-required-env-aggregation molecule-ai/molecule-core:fix/canvas-ts-test-errors molecule-ai/molecule-core:fix/delegations-list-ledger-fallback molecule-ai/molecule-core:wip-snapshot-2026-05-10/mac/molecule-core-tmp53-git-token-helper-wip molecule-ai/molecule-core:wip-snapshot-2026-05-10/mac/molecules-org-molecule-core-registry-prefix molecule-ai/molecule-core:fix/pluginresolver-conflict molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-pluginresolver-conflict molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-qa/stash-package-lock-diff molecule-ai/molecule-core:feat/keyboard-shortcuts-dialog molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-uiux/feat-keyboard-shortcuts-dialog molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-fe/test-canvas-design-tokens-config molecule-ai/molecule-core:test/canvas-cssvar-tests molecule-ai/molecule-core:fix/internal-229-sop-tier-check-tier-low-relaxation molecule-ai/molecule-core:test/canvas-utility-pure-tests molecule-ai/molecule-core:test/canvas-preflight-utils-tests molecule-ai/molecule-core:test/canvas-runtimeprofiles-tests molecule-ai/molecule-core:test/canvas-yaml-utils-tests molecule-ai/molecule-core:test/canvas-pure-function-tests molecule-ai/molecule-core:fix/ci-port-publish-workspace-server-image-228 molecule-ai/molecule-core:fix/ssrf-validate-agent-url-212 molecule-ai/molecule-core:ci/sop-tier-check-approver-teams-fix molecule-ai/molecule-core:fix/sop-tier-check-legacy-flip-229 molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-ki001-telegram-disable-channel molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/feat-a2a-pre-restart-drain-125 molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/feat-plugin-drift-queue-123 molecule-ai/molecule-core:fix/sweeper-race-error-counter molecule-ai/molecule-core:infra/fix-issue-75-gh-cli-gitea-sweep molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-gh-api-gitea-sweep-75 molecule-ai/molecule-core:feat/keyboard-shortcuts-dialog-test molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-sweeper-test-isolation-86 molecule-ai/molecule-core:ci/fix-issue-87-root-skip molecule-ai/molecule-core:fix/test-local-resolver-root-skip molecule-ai/molecule-core:fix/workspace-tests-clear-auth-cache molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-a2a-delegation-success-rendered-as-error molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-files-restart-volume-sync molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/tech-debt-rename-net molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/fix-168-mine molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/fix-167-uiux molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-fe/stash-canvas-agent-comms-show-task-text molecule-ai/molecule-core:fix/canvas-agent-comms-show-task-text molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/fix-vitest-pool molecule-ai/molecule-core:fix/info-disclosure-errors molecule-ai/molecule-core:infra/add-temporal-to-main-compose molecule-ai/molecule-core:design/verify-canvas-design-system molecule-ai/molecule-core:fix/workspace-persona-git-identity molecule-ai/molecule-core:fix/175-env-matched-pair-guard molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/fix-149 molecule-ai/molecule-core:refactor/sop-tier-check-extract-script molecule-ai/molecule-core:fix/sop-tier-check-pr-target-security molecule-ai/molecule-core:ci/sop-tier-check-deploy molecule-ai/molecule-core:fix/issue53-admin-token-pair-guard molecule-ai/molecule-core:fix/org-import-started-event-name molecule-ai/molecule-core:refactor/delete-uses-cascade-helper molecule-ai/molecule-core:fix/org-import-reconcile-and-audit molecule-ai/molecule-core:fix/preserve-model-secret-on-restart molecule-ai/molecule-core:feat/persona-bind-mount-local-dev molecule-ai/molecule-core:feat/canary-tier-filter molecule-ai/molecule-core:feat/plugin-version-subscription molecule-ai/molecule-core:feat/plugin-hot-reload-classifier molecule-ai/molecule-core:feat/plugin-atomic-install molecule-ai/molecule-core:feat/air-hot-reload-dev molecule-ai/molecule-core:feat/persona-env-injection molecule-ai/molecule-core:fix/external-resolver-hardening molecule-ai/molecule-core:fix/issue75-class-D-gh-api-to-gitea-rest molecule-ai/molecule-core:fix/cherry-3-files-vitest-postgres-e2eapi molecule-ai/molecule-core:fix/promote-vitest-postgres-fixes molecule-ai/molecule-core:fix/saas-plugin-install-eic molecule-ai/molecule-core:fix/issue-94-e2e-api-parallel-safe-class-b molecule-ai/molecule-core:migrate/issue-71-vanity-imports molecule-ai/molecule-core:fix/handlers-postgres-port-collision-class-b molecule-ai/molecule-core:fix/issue-96-canvas-vitest-cold-start-timeout molecule-ai/molecule-core:fix/hermes-agent-doc-gitea-migration molecule-ai/molecule-core:fix/196-retarget-main-to-staging-gitea-rest molecule-ai/molecule-core:fix/gitea-ci-flakes-issue-88 molecule-ai/molecule-core:fix/pin-upload-artifact-v3-gitea molecule-ai/molecule-core:fix/issue-72-auto-sync-token-canary-v2 molecule-ai/molecule-core:fix/issue75-class-F-gh-run-list-to-statuses molecule-ai/molecule-core:fix/issue75-class-A-gh-pr-to-gitea-rest molecule-ai/molecule-core:feat/issue-63-local-build-from-gitea-v2 molecule-ai/molecule-core:fix/195-auto-promote-staging-gitea-rest molecule-ai/molecule-core:fix/144-branch-protection-check-name-parity-audit molecule-ai/molecule-core:fix/harness-replays-pre-clone-manifest molecule-ai/molecule-core:chore/trigger-auto-sync-verification molecule-ai/molecule-core:fix/codeql-stub-on-gitea-156 molecule-ai/molecule-core:chore/issue173-retrigger-after-ecr-repo-create molecule-ai/molecule-core:fix/issue173-inline-aws-ecr-login molecule-ai/molecule-core:fix/issue173-shell-docker-push molecule-ai/molecule-core:chore/retrigger-harness-replays-post-class-g molecule-ai/molecule-core:fix/issue173-buildx-driver-and-cache molecule-ai/molecule-core:fix/post-suspension-clone-manifest molecule-ai/molecule-core:fix/issue173-followup-platform-dockerfile molecule-ai/molecule-core:fix/post-suspension-github-urls molecule-ai/molecule-core:fix/170-goroutine-bleed-test-isolation molecule-ai/molecule-core:fix/issue173-publish-workspace-server-image molecule-ai/molecule-core:fix/issue36-a2a-proxy-preflight molecule-ai/molecule-core:fix/codeql-continue-on-error-156 molecule-ai/molecule-core:feat/demo-mock-3-bigorg-mock-runtime molecule-ai/molecule-core:feat/demo-mock-1-purchase-success-modal molecule-ai/molecule-core:fix/publish-path-filter-add-scripts molecule-ai/molecule-core:fix/clone-manifest-gitea molecule-ai/molecule-core:chore/touch-publish-workflow-to-trigger molecule-ai/molecule-core:chore/retrigger-publish-post-aws-secrets molecule-ai/molecule-core:chore/cherry-pick-pr23-into-main molecule-ai/molecule-core:chore/backsync-main-into-staging-task-166 molecule-ai/molecule-core:fix/auto-sync-use-devops-token molecule-ai/molecule-core:chore/retrigger-staging-on-fixed-runner-image molecule-ai/molecule-core:chore/drop-github-app-auth-and-ecr-swap molecule-ai/molecule-core:docs/readme-comprehensive-refresh-2026-05-06 molecule-ai/molecule-core:feat/rfc-2945-pr-c-2-canvas-chat-history molecule-ai/molecule-core:fix/issue10-runtime-aware-plugin-install molecule-ai/molecule-core:fix/s8-bind-loopback-dev molecule-ai/molecule-core:fix/14-cascade-gitea-dispatch molecule-ai/molecule-core:docs/molecule-core-bulk-sed molecule-ai/molecule-core:chore/pin-artifact-actions-v3 molecule-ai/molecule-core:fix/lowercase-org-slug molecule-ai/molecule-core:fix/script-ghcr-and-lint-paths molecule-ai/molecule-core:docs/workspace-runtime-readme-source-edit molecule-ai/molecule-core:feat/eic-tunnel-pool-core-11 molecule-ai/molecule-core:chore/rfc-2945-pr-c-3-delete-historyhydration molecule-ai/molecule-core:fix/2872-sqlmock-regex-tightening molecule-ai/molecule-core:fix/cp-orphan-sweeper-2989 molecule-ai/molecule-core:feat/registry-prefix-env-driven-issue-6 molecule-ai/molecule-core:docs/readme-refresh-2026-05-06
molecule-ai/molecule-core:runtime-v0.1.1013 molecule-ai/molecule-core:runtime-v0.1.1011 molecule-ai/molecule-core:runtime-v0.1.1010 molecule-ai/molecule-core:runtime-v0.1.1009 molecule-ai/molecule-core:runtime-v0.1.1008 molecule-ai/molecule-core:runtime-v0.1.1007 molecule-ai/molecule-core:runtime-v0.1.1006 molecule-ai/molecule-core:runtime-v0.1.1005 molecule-ai/molecule-core:runtime-v0.1.1004 molecule-ai/molecule-core:runtime-v0.1.1001 molecule-ai/molecule-core:runtime-v0.1.1003 molecule-ai/molecule-core:runtime-v0.1.1000 molecule-ai/molecule-core:runtime-v0.1.131 molecule-ai/molecule-core:runtime-v0.1.130 molecule-ai/molecule-core:runtime-v1.0.0 molecule-ai/molecule-core:runtime-v0.0.35 molecule-ai/molecule-core:runtime-v0.0.34 molecule-ai/molecule-core:runtime-v0.0.33 molecule-ai/molecule-core:runtime-v0.0.32 molecule-ai/molecule-core:runtime-v0.0.31 molecule-ai/molecule-core:runtime-v0.0.30 molecule-ai/molecule-core:runtime-v0.0.29 molecule-ai/molecule-core:runtime-v0.0.28 molecule-ai/molecule-core:runtime-v0.0.27 molecule-ai/molecule-core:runtime-v0.0.26 molecule-ai/molecule-core:runtime-v0.0.25 molecule-ai/molecule-core:runtime-v0.0.24 molecule-ai/molecule-core:runtime-v0.0.23 molecule-ai/molecule-core:runtime-v0.0.22 molecule-ai/molecule-core:runtime-v0.0.21 molecule-ai/molecule-core:runtime-v0.0.20 molecule-ai/molecule-core:runtime-v0.0.19 molecule-ai/molecule-core:runtime-v0.0.18 molecule-ai/molecule-core:runtime-v0.0.17 molecule-ai/molecule-core:runtime-v0.0.16 molecule-ai/molecule-core:runtime-v0.0.15 molecule-ai/molecule-core:runtime-v0.0.14 molecule-ai/molecule-core:runtime-v0.0.13 molecule-ai/molecule-core:runtime-v0.0.12 molecule-ai/molecule-core:runtime-v0.0.11 molecule-ai/molecule-core:runtime-v0.0.10 molecule-ai/molecule-core:runtime-v0.0.9 molecule-ai/molecule-core:runtime-v0.0.8 molecule-ai/molecule-core:runtime-v0.0.7 molecule-ai/molecule-core:runtime-v0.0.6 molecule-ai/molecule-core:runtime-v0.0.5 molecule-ai/molecule-core:runtime-v0.0.4 molecule-ai/molecule-core:runtime-v0.0.3 molecule-ai/molecule-core:runtime-v0.0.2 molecule-ai/molecule-core:runtime-v0.0.1 molecule-ai/molecule-core:ci-trigger-1776771586 molecule-ai/molecule-core:ci-retry-1776771601 molecule-ai/molecule-core:ci-retrigger-1776771591
...
pull from: molecule-ai/molecule-core:cr2/sec-c-2130-transcript-ssrf
Branches Tags
molecule-ai/molecule-core:fix/2450-local-provision-dynamic-port molecule-ai/molecule-core:refile/2155-migration-replay-from-scratch molecule-ai/molecule-core:main molecule-ai/molecule-core:fix/2448-ops-scripts-fail-closed-zero-tests molecule-ai/molecule-core:fix/handlers-pg-required-tables-widen molecule-ai/molecule-core:fix/sop-checklist-author-self-ack molecule-ai/molecule-core:fix/ci-fail-on-zero-tests-collected molecule-ai/molecule-core:fix/2421-heartbeat-backfill-agent-card molecule-ai/molecule-core:fix/scheduler-enqueue-cron-on-busy molecule-ai/molecule-core:fix/sev1-812-approval-validator molecule-ai/molecule-core:test/2391-hydrate-inflight-turn-status molecule-ai/molecule-core:fix/2442-chat-desktop-enter-map-view molecule-ai/molecule-core:feat/a2a-message-flight-envelope molecule-ai/molecule-core:fix/e2e-chat-desktop-concierge-reskin-selector molecule-ai/molecule-core:fix/concierge-role-truncate molecule-ai/molecule-core:fix/2429-case-fold-trailing-dot-tunnel-hostname molecule-ai/molecule-core:fix/provider-on-isrunning-status molecule-ai/molecule-core:feat/canvas-concierge-ui molecule-ai/molecule-core:feat/ws-switch-provider-endpoint molecule-ai/molecule-core:fix/platform-tunnel-hostname-normalize molecule-ai/molecule-core:fix/validate-agent-url-pending-tunnel molecule-ai/molecule-core:fix/2248-canvas-platform-managed-credential-gating molecule-ai/molecule-core:fix/memories-commit-error-server-log molecule-ai/molecule-core:fix/gate-context-target-suffix molecule-ai/molecule-core:feat/ws-compute-provider-validation molecule-ai/molecule-core:fix/2396-sop-auto-tier-and-trigger molecule-ai/molecule-core:fix/1306-gitea-label-singular molecule-ai/molecule-core:remove/data-residency-banner molecule-ai/molecule-core:fix/2392-stop-by-instance-id-on-persist-fail molecule-ai/molecule-core:harden/merge-control-required-checks-json molecule-ai/molecule-core:fix/2396-sop-auto-tier-qa-security-auto-trigger molecule-ai/molecule-core:fix/2398-enrich-commit-memory-log molecule-ai/molecule-core:fix/ec2-orphan-instance-id-persist-failure molecule-ai/molecule-core:fix/merge-control-script-hardening molecule-ai/molecule-core:fix/provider-derivation-fail-closed molecule-ai/molecule-core:fix/restart-sync-update-status-guard molecule-ai/molecule-core:fix/restart-guard-removed-workspace molecule-ai/molecule-core:fix/fail-open-status-persist-trio molecule-ai/molecule-core:fix/2248-suppress-platform-managed-credentials molecule-ai/molecule-core:fix/2386-send-provider-on-deprovision molecule-ai/molecule-core:fix/delegate-task-async-sender-pushback-2244 molecule-ai/molecule-core:fix/2331-sop-ceremony-required-checks molecule-ai/molecule-core:feat/platform-agent-gate-wiring molecule-ai/molecule-core:fix/umbrella-reaper-1780 molecule-ai/molecule-core:fix/block-internal-paths-hard-gate molecule-ai/molecule-core:fix/backends-md-drift-risk-6-stale molecule-ai/molecule-core:cp455-minimal-cell-boot-e2e-stage1 molecule-ai/molecule-core:fix/chat-seed-admin-auth molecule-ai/molecule-core:fix/goroutine-panic-recovery molecule-ai/molecule-core:fix/1080-org-helpers-typo-main molecule-ai/molecule-core:fix/canvas-e2e-transient-failed-2632 molecule-ai/molecule-core:fix/admin-images-codex-and-std-encoding molecule-ai/molecule-core:fix/render-status-body-state molecule-ai/molecule-core:fix/memory-section-marker molecule-ai/molecule-core:test-1675-canvas-user-activity-log-regression molecule-ai/molecule-core:design/secrets-accessibility-fix molecule-ai/molecule-core:test/canvas/Toolbar-a11y molecule-ai/molecule-core:fix/channels-matchesChatID-tests molecule-ai/molecule-core:fix/workspace-server-healthcheck molecule-ai/molecule-core:fix/ci-org-helpers-demorgan molecule-ai/molecule-core:test/delegate-record-db-errors molecule-ai/molecule-core:infra-sre/fix-platform-go-test molecule-ai/molecule-core:fix/ci-drift-pagination molecule-ai/molecule-core:fix/merge-queue-direct-merge-no-update-churn molecule-ai/molecule-core:fix/stdio-clean molecule-ai/molecule-core:feat/platform-agent-install molecule-ai/molecule-core:fix/audit-force-merge-curl-fail-closed molecule-ai/molecule-core:fix/fail-closed-hardening-trio molecule-ai/molecule-core:feat/platform-agent-kind molecule-ai/molecule-core:docs/mark-drift-risk-6-resolved molecule-ai/molecule-core:feat/byok-create-gate-and-liveness molecule-ai/molecule-core:feat/workspace-provider-field molecule-ai/molecule-core:fix/main-red-2308-lint-trackers-fast molecule-ai/molecule-core:fix/status-reaper-observability molecule-ai/molecule-core:fix/internal-805-sweep-cf-cloudflare-fallback-clean molecule-ai/molecule-core:feat/platform-agent-approval-gate molecule-ai/molecule-core:fix/lint-pre-flip-fail-closed-clean molecule-ai/molecule-core:fix/main-red-2305-lint-and-e2e-platform-managed molecule-ai/molecule-core:fix/sop-checklist-hold molecule-ai/molecule-core:fix/main-red-e2e-chat-auth-token molecule-ai/molecule-core:fix/internal-802-bp-directive-comments molecule-ai/molecule-core:fix/reconciler-debounce-coupling-2284 molecule-ai/molecule-core:fix/main-red-canvas-e2e-tablist-strict-mode molecule-ai/molecule-core:fix/canvas-pause-resume-cascade-param-2122-followup molecule-ai/molecule-core:fix/2251-delegate-task-message-role-contract-test molecule-ai/molecule-core:fix/internal-797-postgres-integration-runner-label molecule-ai/molecule-core:fix/817-canvas-deploy-reminder-per-step-gate molecule-ai/molecule-core:fix/2139-sop-tier-check-real-qa-security-teams molecule-ai/molecule-core:fix/sop-checklist-hold-volume-skip molecule-ai/molecule-core:fix/lint-pre-flip-fail-closed molecule-ai/molecule-core:feat/2185-manifest-entry-existence-check molecule-ai/molecule-core:feat/2151-chunk2-integration-tests molecule-ai/molecule-core:cr2/sec-c-2130-transcript-ssrf molecule-ai/molecule-core:fix/status-reaper-pagination-observability molecule-ai/molecule-core:fix/http-client-timeout-panic-recovery-main molecule-ai/molecule-core:fix/pause-resume-cascade-opt-in-1991 molecule-ai/molecule-core:fix/plugin-uninstall-exec-errors molecule-ai/molecule-core:fix/gitea-merge-queue-pagination molecule-ai/molecule-core:fix/review-check-remove-generic-comment-bypass molecule-ai/molecule-core:fix/sop-tier-remove-fail-open-dead-code molecule-ai/molecule-core:fix/review-check-tests-jq-fail-closed molecule-ai/molecule-core:fix/sop-tier-check-remove-fail-open-core molecule-ai/molecule-core:feat/merge-queue-auto-discovery molecule-ai/molecule-core:rfc/platform-agent molecule-ai/molecule-core:test/flip-probe-governance-gates-2331 molecule-ai/molecule-core:fix/block-internal-paths-fail-open molecule-ai/molecule-core:test/governance-gate-flip-probe-2331 molecule-ai/molecule-core:fix/merge-queue-hold-on-409-conflict-update molecule-ai/molecule-core:fix/e2e-smoke-diagnose-detail-767 molecule-ai/molecule-core:fix/sop-checklist-emdash-slug-parse molecule-ai/molecule-core:fix/2352-merge-queue-409-hold molecule-ai/molecule-core:fix/merge-queue-autonomous-genuine-approvals molecule-ai/molecule-core:researcher-gate-probe-1780730963 molecule-ai/molecule-core:fix/578-google-adk-image-refresh-allowlist molecule-ai/molecule-core:e2e/data-persistence-recreate-2332 molecule-ai/molecule-core:fix/channels-unmarshal-fallback-invalid-json molecule-ai/molecule-core:feat/workspace-provider-routing molecule-ai/molecule-core:fix/google-adk-model-registration-coremirror molecule-ai/molecule-core:fix/renew-lint-coe-tracker-837-clean molecule-ai/molecule-core:fix/renew-lint-coe-tracker-837 molecule-ai/molecule-core:test/channels-dataprune-e2e-p110 molecule-ai/molecule-core:core2332-p110-workspace-lifecycle-staginge2e molecule-ai/molecule-core:chore/providers-gen-docker-target molecule-ai/molecule-core:feat/core-2332-display-reconnect-renewal-e2e molecule-ai/molecule-core:cr2/google-adk-e2e-coverage molecule-ai/molecule-core:fix/vertex-ssot-registry-drift molecule-ai/molecule-core:fix/audit-force-merge-stale-contexts molecule-ai/molecule-core:fix/port-cp544-fail-closed molecule-ai/molecule-core:fix/sop-tier-authz-no-org-fallback molecule-ai/molecule-core:fix/core-ci-fail-closed molecule-ai/molecule-core:docs/sop-fail-closed-ci molecule-ai/molecule-core:fix/restore-seo-adk-templates-manifest-auth molecule-ai/molecule-core:rfc/byok-fail-closed-billing molecule-ai/molecule-core:fix/forensic145-preserve-workspace-scm-token molecule-ai/molecule-core:fix/ci-coe-trackers-e2e-chat-staging-external molecule-ai/molecule-core:fix/e2e-reconciler-platform-model-and-boot-error molecule-ai/molecule-core:fix/e2e-saas-step9-hma-surface molecule-ai/molecule-core:fix/e2e-staging-byok-opt-in-before-vendor-key molecule-ai/molecule-core:fix/e2e-saas-model-slug-bare molecule-ai/molecule-core:fix/e2e-claude-code-minimax-bare-slug molecule-ai/molecule-core:fix/e2e-tenant-call-surface-body molecule-ai/molecule-core:fix/main-red-peer-visibility-platform-managed-secrets molecule-ai/molecule-core:fix/main-red-minimax-model-slug molecule-ai/molecule-core:fix/sop-tier-check-and-token-parse molecule-ai/molecule-core:harden/staging-saas-all-runtimes molecule-ai/molecule-core:harden/no-fail-open-auth molecule-ai/molecule-core:fix/main-red-lint-continue-on-error-2294 molecule-ai/molecule-core:harden/keyless-feature-e2e-coverage molecule-ai/molecule-core:harden/derive-provider-matrix-e2e molecule-ai/molecule-core:harden/enforce-ci-gates-core-v2 molecule-ai/molecule-core:fix/cascade-true-callers-ahead-of-2122 molecule-ai/molecule-core:fix/2151-chunk1-activity-delegation-a2a-integration-tests molecule-ai/molecule-core:harden/sop-tier-check-remove-expired-coe molecule-ai/molecule-core:fix/2255-e2e-smoke-poll-parser-kind-discriminator molecule-ai/molecule-core:fix/a2a-2251-go-role-default molecule-ai/molecule-core:fix/2140-sop-tier-refire-real-exit-code molecule-ai/molecule-core:harden/regression-coverage-v2 molecule-ai/molecule-core:fix/521-claude-code-colon-form-overclaim molecule-ai/molecule-core:fix/core2261-reconciler-toctou-degraded-hardening molecule-ai/molecule-core:fix/core2261-providers-byte-sync-cp521 molecule-ai/molecule-core:fix/core2261-e2e-instanceid-tag-fallback molecule-ai/molecule-core:fix/core2261-reconciler-e2e-create molecule-ai/molecule-core:fix/cascade-canvas-callers molecule-ai/molecule-core:harden/e2e-staging-saas-failclosed molecule-ai/molecule-core:harden/e2e-staging-external-chat-failclosed molecule-ai/molecule-core:harden/e2e-staging-canvas-deflake molecule-ai/molecule-core:feat/umbrella-reaper molecule-ai/molecule-core:feat/2261-gap1-takecontrol-e2e molecule-ai/molecule-core:fix/1997-canary-minimax-m2.7 molecule-ai/molecule-core:fix/2263-staging-canary-namespaced-model molecule-ai/molecule-core:fix/security-review-owners-na-eligibility molecule-ai/molecule-core:feat/core2261-reconciler-live-e2e molecule-ai/molecule-core:feat/core2261-takecontrol-wsproxy-test molecule-ai/molecule-core:feat/security-review-owners-na-eligibility molecule-ai/molecule-core:feat/core2261-instance-state-reconciler molecule-ai/molecule-core:fix/cp529-enforcer-test-unbreak-main molecule-ai/molecule-core:feat/cp529-byok-vendor-providers molecule-ai/molecule-core:fix/activity-feed-stable-ordering molecule-ai/molecule-core:fix/2245-platform-managed-provider-credential-gate molecule-ai/molecule-core:fix/2245-platform-managed-no-cred molecule-ai/molecule-core:harden/contract-tests-core molecule-ai/molecule-core:feat/cp529-byok-routability-enforcer molecule-ai/molecule-core:feat/core2235-canvas-buildinfo molecule-ai/molecule-core:fix/2235-canvas-buildinfo-docker-sha molecule-ai/molecule-core:review/pr3029-pr3033-local molecule-ai/molecule-core:feat/traces-v1-workspace-secrets-2976 molecule-ai/molecule-core:fix/816-sop-tier-check-stale-reviews molecule-ai/molecule-core:fix/818-sop-checklist-na-declarations-terminal-success molecule-ai/molecule-core:fix/core2226-canvas-ordered-deploy molecule-ai/molecule-core:fix/2222-a2a-delegate-task-attachments molecule-ai/molecule-core:chore/cp514-byte-sync-drop-vertex-arm molecule-ai/molecule-core:fix/1093-adapter-py-test-margin molecule-ai/molecule-core:fix/2205-e2e-api-health-wait-migration-gate molecule-ai/molecule-core:fix/core2225-staging-canvas-e2e-fixture molecule-ai/molecule-core:fix/2225-e2e-canvas-stale-hermes-model molecule-ai/molecule-core:fix/2185-bp-directive-window molecule-ai/molecule-core:fix/2192-manifest-repo-existence-check-v2 molecule-ai/molecule-core:fix/desktop-takecontrol-reconnect-renewal molecule-ai/molecule-core:fix/2172-provider-validation-setmodel molecule-ai/molecule-core:fix/2192-manifest-repo-existence-check molecule-ai/molecule-core:fix/prod-deploy-verify-tenant-lag-2213 molecule-ai/molecule-core:fix/2204-liveness-probe-max-tokens molecule-ai/molecule-core:fix/internal-805-cf-auth-drift molecule-ai/molecule-core:fix/internal-804-parser-json-variant molecule-ai/molecule-core:fix/peer-visibility-test-model-required-2212 molecule-ai/molecule-core:fix/77-bp-directive-4-emitters molecule-ai/molecule-core:fix/e2e-api-health-wait-migration-chain molecule-ai/molecule-core:devops/saas-a2a-empty-completion-diagnostic molecule-ai/molecule-core:fix/e2e-staging-canvas-tabs-red molecule-ai/molecule-core:fix/e2e-chat-readiness-curl-tempfile-2198 molecule-ai/molecule-core:test/provider-matrix-boot-regression-moonshot molecule-ai/molecule-core:sre/fix-auto-deploy-writable-home-2193 molecule-ai/molecule-core:fix/e2e-chat-mobile-history-reload-flake molecule-ai/molecule-core:fix/deploy-production-superseded-false-stale molecule-ai/molecule-core:fix/manifest-rm-deleted-org-templates molecule-ai/molecule-core:fix/2158-auto-sync-token-hard-fail molecule-ai/molecule-core:fix/create-dialog-registry-provider-catalog molecule-ai/molecule-core:fix/ensure-default-config-stamp-derived-provider molecule-ai/molecule-core:fix/2183-remove-missing-free-beats-all molecule-ai/molecule-core:feat/google-adk-platform-provider-mirror-ssot molecule-ai/molecule-core:fix/core-2176-a2a-full-body-guard molecule-ai/molecule-core:fix/publish-latest-tag-platform-tenant molecule-ai/molecule-core:feat/2172-config-save-provider-validation molecule-ai/molecule-core:feat/handler-admin-test-token molecule-ai/molecule-core:feat/plugins-listing-and-sources-coverage molecule-ai/molecule-core:feat-handler-admin-test-token molecule-ai/molecule-core:test/2175-a2a-full-body-delivery-guard molecule-ai/molecule-core:regression/2149-scheduler-real-pg molecule-ai/molecule-core:fix/internal-760-review-event-trigger molecule-ai/molecule-core:fix/2166-blocker2-integration-fail-open molecule-ai/molecule-core:dev-b/sec-c-2132-reorder molecule-ai/molecule-core:fix/2163-cr2-live-fire-freshness molecule-ai/molecule-core:fix/test-async-cleanup-order molecule-ai/molecule-core:fix/shellcheck-arm64-pilot-main-red-2146 molecule-ai/molecule-core:docs/2159-pr-head-workflow-selection molecule-ai/molecule-core:fix/2152-unmask-real-infra-gates molecule-ai/molecule-core:cherry-pick-2167-suspenders-to-main molecule-ai/molecule-core:fix/2159-qa-security-auto-trigger-review-state-guard molecule-ai/molecule-core:fix/remove-dead-code-QueueDepth molecule-ai/molecule-core:staging molecule-ai/molecule-core:cp/469-tenant-proxy-env-delivery molecule-ai/molecule-core:fix/2162-platform-managed-fail-closed-missing-proxy molecule-ai/molecule-core:docs-test/gate-auto-fire-livefire-2159 molecule-ai/molecule-core:fix/gate-followup-refire-token-direct-trigger-regression molecule-ai/molecule-core:test/2148-registry-auth-real-postgres molecule-ai/molecule-core:regression/2150-migration-replay-from-scratch-real-pg molecule-ai/molecule-core:ci/unmask-required-real-infra-gates-mc1982 molecule-ai/molecule-core:fix/internal-760-qa-security-pr-review-trigger molecule-ai/molecule-core:fix/internal-760-ceremony-ai-sop-ack molecule-ai/molecule-core:runtime/lazy-workspace-id molecule-ai/molecule-core:fix/2134-chat-files-forward-ssrf-2316 molecule-ai/molecule-core:feat/rfc742-rescue-read molecule-ai/molecule-core:fix/2131-patch-abilities-atomic molecule-ai/molecule-core:cr2/sec-d-2316-chat-files-ssrf molecule-ai/molecule-core:cr2/sec-a-2029-traces-ssrf molecule-ai/molecule-core:fix/continue-on-error-triage-2113 molecule-ai/molecule-core:feat/rescue-rebase-2019-v2 molecule-ai/molecule-core:feat/rfc742-rescue-capture molecule-ai/molecule-core:test/handlers-misc-coverage molecule-ai/molecule-core:fix/errcheck-unchecked-errors-main molecule-ai/molecule-core:fix/broadcast-org-root-test-cleanup molecule-ai/molecule-core:fix/broadcast-itest-cleanup-hygiene-2108 molecule-ai/molecule-core:fix/log-execasroot-errors-plugin-cleanup-main molecule-ai/molecule-core:fix/http-client-timeouts-panic-recovery-error-checks-main molecule-ai/molecule-core:fix/panic-recovery-goroutines-channels-handlers-scheduler-main molecule-ai/molecule-core:fix/canvas-e2e-transient-failed-2632-main molecule-ai/molecule-core:fix/backends-md-drift-risk-6-stale-main molecule-ai/molecule-core:fix/ci-required-drift-1739 molecule-ai/molecule-core:fix/audit-force-merge-branch-aware molecule-ai/molecule-core:test/org-scope-abilities-coverage-clean molecule-ai/molecule-core:fix/renew-coe-tracker-mc774-clean-20260601 molecule-ai/molecule-core:fix/registry-root-sibling-leak-1955 molecule-ai/molecule-core:fix/registry-cancommunicate-cross-tenant-roots-1955 molecule-ai/molecule-core:fix/broadcast-itest-status-enum-online molecule-ai/molecule-core:fix/rows-affected-core molecule-ai/molecule-core:fix/broadcast-org-root-cte molecule-ai/molecule-core:fix/broadcast-org-root-cte-1959 molecule-ai/molecule-core:sync/providers-serving-urls molecule-ai/molecule-core:fix/staging-test-hermetic-env molecule-ai/molecule-core:fix/restart-context-defer-rows-close molecule-ai/molecule-core:fix/channels-rows-err-check molecule-ai/molecule-core:fix/ci-lint-suppression-1062 molecule-ai/molecule-core:fix/defer-rows-close-audit molecule-ai/molecule-core:fix/delegation-rows-err-check molecule-ai/molecule-core:fix/errcheck-unchecked-errors-1062 molecule-ai/molecule-core:fix/execcontext-err-check-high-impact molecule-ai/molecule-core:fix/execcontext-err-check-sweep2 molecule-ai/molecule-core:fix/execcontext-error-audit molecule-ai/molecule-core:fix/http-defaultclient-auth-paths molecule-ai/molecule-core:fix/registry-rows-err-check molecule-ai/molecule-core:fix/secrets-scan-error-restart molecule-ai/molecule-core:fix/workspace-restart-rows-err molecule-ai/molecule-core:pr-3033 molecule-ai/molecule-core:fix/restart-context-rows-err molecule-ai/molecule-core:fix/discovery-rows-err-check molecule-ai/molecule-core:fix/broadcast-org-root-cte-1959-staging molecule-ai/molecule-core:fix/rowserr-checks-events-channels-manager molecule-ai/molecule-core:fix/rowserr-memory-schedules-audit molecule-ai/molecule-core:fix/channels-duplicate-encrypt molecule-ai/molecule-core:fix/audit-rows-err-check molecule-ai/molecule-core:feat/minimax-m3-sync molecule-ai/molecule-core:fix/missing-rows-err-llm-billing-mode molecule-ai/molecule-core:fix/ci-scheduler-fanout molecule-ai/molecule-core:feat/openapi-management-spec molecule-ai/molecule-core:pr2056 molecule-ai/molecule-core:fix/channels-memory-rows-err-check molecule-ai/molecule-core:fix/traces-error-handling molecule-ai/molecule-core:fix/codeql-sarif-export molecule-ai/molecule-core:fix/instructions-rows-err-check molecule-ai/molecule-core:fix/providers-ssot-sync-codex-subscription molecule-ai/molecule-core:fix/github-token-fallback-timeout-1101 molecule-ai/molecule-core:fix/codex-central-refresher molecule-ai/molecule-core:feat/google-adk-runtime-ssot molecule-ai/molecule-core:worktree-agent-aa572c7374a57f03a molecule-ai/molecule-core:fix/sync-providers-yaml-openai-split-20260531 molecule-ai/molecule-core:feat/workspace-data-persistence molecule-ai/molecule-core:e2e/google-adk-ci-wiring molecule-ai/molecule-core:feat/register-google-adk-runtime molecule-ai/molecule-core:feat/mc-multiperiod-workspace-budget molecule-ai/molecule-core:feat/schedule-orphan-monitor-cleaner molecule-ai/molecule-core:fix/schedule-migration-on-recreate molecule-ai/molecule-core:fix/google-adk-runtime-doc-accuracy molecule-ai/molecule-core:fix/setglobal-drop-retired-org-billing-guard molecule-ai/molecule-core:fix/internal-728-provider-matched-cred-injection molecule-ai/molecule-core:fix/internal-724-prod-auto-deploy-straggler-surfacing molecule-ai/molecule-core:fix/1994-provision-billing-model-passthrough molecule-ai/molecule-core:fix/renew-coe-tracker-1982 molecule-ai/molecule-core:test/a2a-queue-status-depth-coverage molecule-ai/molecule-core:fix/broadcast-cte-non-root-sender-1959 molecule-ai/molecule-core:feat/internal-718-p3b-canvas-consume-registry molecule-ai/molecule-core:test/patch-abilities-coverage-1312 molecule-ai/molecule-core:feat/internal-718-p4-followup-llm-provider-removal molecule-ai/molecule-core:fix/cancel-in-progress-flip-1357 molecule-ai/molecule-core:feat/internal-718-p4-pr2-hard-reject-unregistered molecule-ai/molecule-core:feat/internal-718-p4-pr1-reconcile-colon-vocab-sync molecule-ai/molecule-core:fix/mcp-tools-slim-residue molecule-ai/molecule-core:feat/internal-718-p3a-templates-from-registry molecule-ai/molecule-core:feat/internal-718-p2a-registry-codegen-distribution molecule-ai/molecule-core:feat/internal-718-p2b-billing-derives-from-provider molecule-ai/molecule-core:refactor/drop-org-tier-llm-billing-mode molecule-ai/molecule-core:fix/suppression-rationales-1769 molecule-ai/molecule-core:pr1930 molecule-ai/molecule-core:eng-b/rebase-1952 molecule-ai/molecule-core:fix/ssot-provider-selection-billing-mode-711-713 molecule-ai/molecule-core:fix/1769-suppression-rationales molecule-ai/molecule-core:fix/byok-global-llm-cred-leak-internal-711 molecule-ai/molecule-core:fix/workspace-broadcast-cte-1959 molecule-ai/molecule-core:fix/1953-scope-peer-discovery-a2a-to-org molecule-ai/molecule-core:fix/cancel-in-progress-low-risk-9 molecule-ai/molecule-core:fix/cross-tenant-isolation-1953 molecule-ai/molecule-core:fix/python-open-encoding molecule-ai/molecule-core:fix-1644-workspace-create-returns-auth-token molecule-ai/molecule-core:fix/1837-docs-stale-monorepo-ref molecule-ai/molecule-core:fix/review-check-all-403-diagnostic molecule-ai/molecule-core:fix/audit-force-merge-staging-drift-1739 molecule-ai/molecule-core:fix/nil-safe-scans-validation-hardening molecule-ai/molecule-core:fix/delegate-async-return-after-marshal-fail molecule-ai/molecule-core:fix/canvas-user-verified-session-1673 molecule-ai/molecule-core:fix/canvas-chat-poll-mode-1673 molecule-ai/molecule-core:fix/mcp-tools-marshal-error-return molecule-ai/molecule-core:fix/ci-remove-race-from-blocking-gate-1184 molecule-ai/molecule-core:fix/watchdog-close-stale-contexts-on-red molecule-ai/molecule-core:fix/time-after-single-retry-delegation molecule-ai/molecule-core:fix/time-after-goroutine-leaks molecule-ai/molecule-core:fix/json-marshal-log-continue-2nd-pass molecule-ai/molecule-core:fix/cp329-retire-config-files-userdata-cap molecule-ai/molecule-core:fix/703-provider-billing-mode-ui molecule-ai/molecule-core:fix/internal-703-byok-billing-mode-env molecule-ai/molecule-core:eng-b-test-1779917746 molecule-ai/molecule-core:fix/workspace-ec2-leak-delete-retry molecule-ai/molecule-core:fix/ci-arm64-tracker molecule-ai/molecule-core:fix/1669-syntax-error molecule-ai/molecule-core:fix/docs-monorepo-refs molecule-ai/molecule-core:refactor/drop-org-tier-llm-billing-mode-canvas molecule-ai/molecule-core:fix/publish-buildx-writable-config molecule-ai/molecule-core:fix/publish-docker-config-api-20260520 molecule-ai/molecule-core:feat/seed-schedules-from-ws-template molecule-ai/molecule-core:feat/canvas-llm-billing-mode-section molecule-ai/molecule-core:feat/per-workspace-llm-billing-mode molecule-ai/molecule-core:fix/memory-v2-upsert-namespace-20260526 molecule-ai/molecule-core:fix/platform-managed-provider-key-leak molecule-ai/molecule-core:fix/mcp-tools-test-db-import-20260526 molecule-ai/molecule-core:pr-3029 molecule-ai/molecule-core:fix-tiny-readme molecule-ai/molecule-core:fix-shellcheck-arm64-pilot-runner-label molecule-ai/molecule-core:feat/canvas-lib-tests molecule-ai/molecule-core:docs/fix-stale-channel-install-refs-230 molecule-ai/molecule-core:design/modal-a11y-followup molecule-ai/molecule-core:fix-1769-suppression-justifications molecule-ai/molecule-core:fix-365-scope-divergence-gate-check molecule-ai/molecule-core:fix-1763-org-include-test molecule-ai/molecule-core:docs/readme-quickstart-context molecule-ai/molecule-core:style/fix-ruff-e501-etc molecule-ai/molecule-core:fix/main-ci-display-deploy-blockers molecule-ai/molecule-core:fix/display-keyboard-clipboard molecule-ai/molecule-core:fix/runtime-template-repo-cache molecule-ai/molecule-core:fix/create-dialog-platform-defaults molecule-ai/molecule-core:fix/pending-upload-preview-after-ack molecule-ai/molecule-core:fix/create-dialog-runtime-provider-flow molecule-ai/molecule-core:fix/platform-us-default-provider molecule-ai/molecule-core:fix/seo-template-provider-env-prompt molecule-ai/molecule-core:chore/advisory-legacy-e2e molecule-ai/molecule-core:fix/seo-template-visible molecule-ai/molecule-core:fix/panel-contained-attachment-preview molecule-ai/molecule-core:fix/pdf-preview-csp molecule-ai/molecule-core:fix/pdf-preview-visible molecule-ai/molecule-core:fix/prod-auto-deploy-scoped-rollout molecule-ai/molecule-core:fix-1763-test-minimal molecule-ai/molecule-core:feat/llm-native-auth-flow molecule-ai/molecule-core:fix/issue-1823-delete-confirm-name molecule-ai/molecule-core:fix/display-control-browser-session molecule-ai/molecule-core:fix/agent-message-attachment-broadcast molecule-ai/molecule-core:chore/maintained-runtime-registry molecule-ai/molecule-core:fix/issue-1686-cost-efficient-workspace-defaults molecule-ai/molecule-core:fix/hermes-user-attachments-core molecule-ai/molecule-core:fix/gate-check-v3-ruff-f401-e741 molecule-ai/molecule-core:docs/issue-1793-workspace-placement-rfc molecule-ai/molecule-core:fix/ruff-batch-2026-05-24 molecule-ai/molecule-core:chore/issue-1760-rename-go-module molecule-ai/molecule-core:fix/platform-managed-llm-default molecule-ai/molecule-core:chore/issue-1812-remove-backfill-from-image molecule-ai/molecule-core:fix/ruff-f401-f541-f841-e741-batch molecule-ai/molecule-core:fix/ruff-e501-merge-queue molecule-ai/molecule-core:fix-1763-webhook-token-redaction-skip molecule-ai/molecule-core:fix/ruff-final-batch-f401-e741-f841 molecule-ai/molecule-core:fix/ruff-e501-batch-4 molecule-ai/molecule-core:fix/ruff-lint-batch-3 molecule-ai/molecule-core:fix/ruff-lint-more-scripts molecule-ai/molecule-core:fix/user-message-fanout-1440 molecule-ai/molecule-core:fix/workspace-compute-settings-control molecule-ai/molecule-core:fix/1763-finding-3-token-test-integration-tag molecule-ai/molecule-core:fix-1775-deploy-wait-alignment molecule-ai/molecule-core:fix/memory-plugin-nil-jsonb-marshal molecule-ai/molecule-core:fix/pv-staging-tenant-auth molecule-ai/molecule-core:fix/real-user-upload-staging-e2e molecule-ai/molecule-core:feat/issue-1791-bundle-memory-backfill molecule-ai/molecule-core:feat/issue-1754-mcp-memory-activity-broadcast molecule-ai/molecule-core:feat/issue-1791-memories-commit-v2-plugin molecule-ai/molecule-core:fix-1763-discord-token-test molecule-ai/molecule-core:chore/remove-stale-runtime-comment molecule-ai/molecule-core:fix/revert-1781-templates-runtime-relax molecule-ai/molecule-core:chore/remove-unmaintained-runtimes molecule-ai/molecule-core:fix/e2e-orphan-guard molecule-ai/molecule-core:docs/issue-1780-compensating-status-runbook molecule-ai/molecule-core:fix/issue-1778-templates-test-fixtures molecule-ai/molecule-core:fix/templates-supported-runtime-tests molecule-ai/molecule-core:fix/prod-auto-deploy-aggregate-context molecule-ai/molecule-core:chore/issue-1753-awareness-docs-sweep molecule-ai/molecule-core:chore/issue-1755-seed-initial-memories-v2 molecule-ai/molecule-core:fix/ci-all-required-bookkeeping molecule-ai/molecule-core:fix/supported-runtime-catalog molecule-ai/molecule-core:chore/issue-1733-memory-plugin-schema-isolation molecule-ai/molecule-core:chore/issue-1735-remove-awareness-backend molecule-ai/molecule-core:fix/memory-list-rows-err molecule-ai/molecule-core:feat/1686-display-session-proxy molecule-ai/molecule-core:chore/issue-1733-a1-kill-v1-fallback molecule-ai/molecule-core:fix/issue-1734-memory-tab-v2 molecule-ai/molecule-core:fix/codex-scheduled-a2a-timeout molecule-ai/molecule-core:fix/prod-auto-deploy-nonblocking molecule-ai/molecule-core:fix/arm64-pilot-label-macfix molecule-ai/molecule-core:fix/review-check-empty-pr-guard molecule-ai/molecule-core:fix/canvas-publish-docker-config molecule-ai/molecule-core:fix/channels-manager-rows-err molecule-ai/molecule-core:fix/rows-err-restart-discovery molecule-ai/molecule-core:fix/slack-webhook-response-body-close molecule-ai/molecule-core:fix/sweeper-rows-err molecule-ai/molecule-core:feat/1686-display-workspace-flow molecule-ai/molecule-core:fix-1700-A-github-token-http-timeout molecule-ai/molecule-core:fix/workspace-crud-descrows-err molecule-ai/molecule-core:task342/local-e2e-harness molecule-ai/molecule-core:fix/messagestore-extractfiles-unmarshal molecule-ai/molecule-core:fix/pgplugin-writejson-encode-error molecule-ai/molecule-core:feat/1686-display-control-ui molecule-ai/molecule-core:fix/discord-read-body-error molecule-ai/molecule-core:fix/capturebroadcaster-data-race molecule-ai/molecule-core:fix-scheduler-detect-result-kind-message-allow molecule-ai/molecule-core:fix/lark-read-body-error molecule-ai/molecule-core:fix/memory-decode-error-read-body molecule-ai/molecule-core:fix/slack-read-body-errors molecule-ai/molecule-core:fix/traces-read-body-error molecule-ai/molecule-core:fix/schedules-events-rows-err molecule-ai/molecule-core:fix/channels-json-unmarshal-errors molecule-ai/molecule-core:rfc-1706-openapi-phase1-schedules molecule-ai/molecule-core:fix/mcp-tools-scanpeers-err molecule-ai/molecule-core:fix/handlers-rows-err-batch molecule-ai/molecule-core:fix/slack-webhook-response-body-close-clean molecule-ai/molecule-core:fix/github-token-http-timeout molecule-ai/molecule-core:minimax-autonomous-test molecule-ai/molecule-core:fix/scheduler-1696-sdk-error-detection molecule-ai/molecule-core:fix/1696-scheduler-adapter-error-status molecule-ai/molecule-core:feat/1686-phase1-compute-schema molecule-ai/molecule-core:fix/1692-mount-schedule-routes molecule-ai/molecule-core:fix/1684-native-session-enqueue-on-busy molecule-ai/molecule-core:fix/1646-staging-saas-timeout molecule-ai/molecule-core:fix/ci-path-scope-main-push molecule-ai/molecule-core:fix/e2e-wait-after-config-put molecule-ai/molecule-core:fix/e2e-delegation-a2a-retry molecule-ai/molecule-core:fix/e2e-minimax-m2-default molecule-ai/molecule-core:platform-kill-defaultmodel-require-model-at-create molecule-ai/molecule-core:fix/e2e-a2a-busy-retry molecule-ai/molecule-core:fix/e2e-a2a-readiness-body molecule-ai/molecule-core:fix/t4-pid-probe-agent-safe molecule-ai/molecule-core:fix/t4-gitea-egress-ssot molecule-ai/molecule-core:docs-fix-claude-code-channel-template molecule-ai/molecule-core:fix/activity-flat-upload-attachments molecule-ai/molecule-core:fix/aws-secrets-janitor-literal-region molecule-ai/molecule-core:fix/activity-feed-peer-info-enrichment molecule-ai/molecule-core:fix/aws-secrets-janitor-fail-loud molecule-ai/molecule-core:fix/aws-secrets-janitor-staging molecule-ai/molecule-core:fix/staging-token-diagnostic molecule-ai/molecule-core:chore/publish-staging-ecr-with-ssot-publisher molecule-ai/molecule-core:fix/e2e-bash32-empty-array molecule-ai/molecule-core:chore/mirror-tenant-image-staging-ecr molecule-ai/molecule-core:fix/mcp-delegate-platform-path molecule-ai/molecule-core:chore/retrigger-peer-visibility-after-publish molecule-ai/molecule-core:fix/publish-buildx-docker-config molecule-ai/molecule-core:docs/multi-external-workspace-registration molecule-ai/molecule-core:fix/e2e-token-fallback-diagnostics molecule-ai/molecule-core:ci/clean-superseded-push-noise molecule-ai/molecule-core:ci/path-scope-go-handler-pr molecule-ai/molecule-core:fix/main-red-watchdog-action-run-status-filter molecule-ai/molecule-core:fix/admin-workspace-token-mint molecule-ai/molecule-core:test/e2e-chat-a2a-dns-regression molecule-ai/molecule-core:fix/staging-peer-visibility-token molecule-ai/molecule-core:chore/delete-core-workspace-runtime molecule-ai/molecule-core:fix/split-heavy-e2e-required-path molecule-ai/molecule-core:fix/ci-cron-bots-prebake-1357 molecule-ai/molecule-core:fix/self-delegation-peer-list-hardening molecule-ai/molecule-core:fix/523-allow-user-set-workspace-secrets molecule-ai/molecule-core:feat/canvas-org-info-tab molecule-ai/molecule-core:fix/624-file-write-restart-debounce molecule-ai/molecule-core:fix/377-canvas-polite-cancel-before-restart molecule-ai/molecule-core:task227/external-mcp-progress-ux molecule-ai/molecule-core:fix/canvas-chat-a2a-hint-activity-tab-closeout-212 molecule-ai/molecule-core:fix/t4-probe-docker-socket-and-pid-host molecule-ai/molecule-core:chore/ssot4-delete-dead-github-workflows molecule-ai/molecule-core:task335/drop-runtime-image-pins-mig-fresh molecule-ai/molecule-core:chore/ssot10-ecr-registry-var molecule-ai/molecule-core:fix/sop-checklist-stream-pagination-oom molecule-ai/molecule-core:task335/drop-dead-runtime-image-pins-mig-047 molecule-ai/molecule-core:fix/a2a-error-hint-timeout-class molecule-ai/molecule-core:fix/a2a-error-detail-field-rename molecule-ai/molecule-core:feat/uploads-limits-ssot-task-320 molecule-ai/molecule-core:core-devops/cascade-structural-hardening molecule-ai/molecule-core:chore/retrigger-publish-after-eacces molecule-ai/molecule-core:fix/poll-mode-pending-uploads-100mb-mc1588 molecule-ai/molecule-core:fix/redeploy-fleet-confirm-callers molecule-ai/molecule-core:fix/lint-workflow-yaml-slash-in-name molecule-ai/molecule-core:retrigger/publish-workspace-server-after-pr110-deploy molecule-ai/molecule-core:infra-runtime-be/upload-100mb-and-correct-reason-errors molecule-ai/molecule-core:infra-sre/rfc596-publish-runtime-dual-push-gitea-pypi molecule-ai/molecule-core:fix/workflow-name-no-token-slash molecule-ai/molecule-core:infra-sre/audit-log-phase1-emit-secrets molecule-ai/molecule-core:fix/main-red-watchdog-skip-cancel-cascade-mc1564 molecule-ai/molecule-core:feat/rfc563-ws-server-binary-strip molecule-ai/molecule-core:ci/146-lint-no-tenant-gitea-token molecule-ai/molecule-core:feat/agent-card-identity-seed-prod-team-internal-492-followup molecule-ai/molecule-core:fix/rfc524-layer1-bare-go-conversion molecule-ai/molecule-core:fix/ci-docker-host-guardrail-red molecule-ai/molecule-core:test/e2e-todays-pr-coverage molecule-ai/molecule-core:feat/146-forbidden-env-guard molecule-ai/molecule-core:fix/sop-checklist-widen-ack-internal-442 molecule-ai/molecule-core:ci/mac-arm64-pilot-shellcheck molecule-ai/molecule-core:e2e/peer-visibility-local-backend-task166 molecule-ai/molecule-core:fix/canvas-surface-error-detail molecule-ai/molecule-core:fix/wsserver-broadcast-error-detail molecule-ai/molecule-core:ci/oom-storm-concurrency-fix molecule-ai/molecule-core:fix/chat-upload-ssot-100mb-1520 molecule-ai/molecule-core:feat/provisioner-inject-gitea-credential-helper molecule-ai/molecule-core:sre/fix-remaining-scheduled-cancel-in-progress molecule-ai/molecule-core:fix/user-message-role-1514 molecule-ai/molecule-core:sre/fix-gate-check-cancel-in-progress molecule-ai/molecule-core:sre/fix-ci-drift-false-positive-and-queue-limit molecule-ai/molecule-core:ci-retry-noop molecule-ai/molecule-core:test/plugin-listing-coverage-1488 molecule-ai/molecule-core:infra/canvas-ci-retry-20260518145806 molecule-ai/molecule-core:fix/json5-comments-manifest-1496 molecule-ai/molecule-core:test/canvas-hook-coverage molecule-ai/molecule-core:feat/canvas-agent-abilities-toggle molecule-ai/molecule-core:fix/sop-tier-check-secrets-read-v2 molecule-ai/molecule-core:fix/canvas-configtab-wcag-alert-v2 molecule-ai/molecule-core:fix/canvas-configtab-wcag-alert molecule-ai/molecule-core:fix/sop-tier-check-secrets-read molecule-ai/molecule-core:fix/ci-sop-tier-check-secrets-read molecule-ai/molecule-core:fix/runtime-registry-manifest-v2 molecule-ai/molecule-core:test/runtime-provision-timeouts-coverage molecule-ai/molecule-core:fix/sev1-secrets-read-v2 molecule-ai/molecule-core:fix/sev1-missing-secrets-read-perms molecule-ai/molecule-core:test/canvas-secret-formats-coverage molecule-ai/molecule-core:test/canvas-hook-tests molecule-ai/molecule-core:test/canvas-theme-ts-coverage molecule-ai/molecule-core:feat/canvas-agent-abilities-toggles molecule-ai/molecule-core:test/canvas-theme-lib-coverage molecule-ai/molecule-core:fix/runtime-registry-json5-comment molecule-ai/molecule-core:fix/ws-server-188-failclosed-template-runtime molecule-ai/molecule-core:test/plugins-listing-coverage molecule-ai/molecule-core:fix/issue-1480-manifest-json5 molecule-ai/molecule-core:fix/review-check-wrong-event-string-diagnostic molecule-ai/molecule-core:test/workspace-abilities-name-coverage molecule-ai/molecule-core:ci-fix-main-runtime-secret-scan molecule-ai/molecule-core:fix/secret-scan-exclude-secrets-detector-test-fixtures molecule-ai/molecule-core:fix/secrets-read-qa-security-main molecule-ai/molecule-core:fix/secrets-read-qa-security-workflows molecule-ai/molecule-core:test/workspace-broadcast-coverage molecule-ai/molecule-core:fix/1473-bp-all-required-suffix molecule-ai/molecule-core:infra/secrets-read-qa-security-main-fix molecule-ai/molecule-core:fix/pr1450-staging-main-conflict molecule-ai/molecule-core:fix/issue-1420-actionable-errors molecule-ai/molecule-core:fix/issue-228-user-message-fanout molecule-ai/molecule-core:design/externalconnectmodal-a11y molecule-ai/molecule-core:fix/tabs-error-aria-alert molecule-ai/molecule-core:fix/settings-a11y-fixes molecule-ai/molecule-core:fix/canvas-errors-aria-alert molecule-ai/molecule-core:fix/canvas-loading-aria-live molecule-ai/molecule-core:sre/fix-scheduled-workflow-cancel-in-progress molecule-ai/molecule-core:feat/handler-test-abilities-and-sources molecule-ai/molecule-core:fix/handlers-plugin-listing-tests molecule-ai/molecule-core:fix/tabs-a11y-scattered molecule-ai/molecule-core:runtime/port-identity-tools-staging molecule-ai/molecule-core:runtime/fix-merge-queue-cancel-in-progress molecule-ai/molecule-core:fix/canvas-misc-wcag-fixes molecule-ai/molecule-core:infra/quirks-789-fills molecule-ai/molecule-core:infra/queue-runbook-updates molecule-ai/molecule-core:design/skills-accessibility-v2 molecule-ai/molecule-core:design/skills-a11y-followup molecule-ai/molecule-core:fix/a2a-delegation-detached-ctx-canceled-internal-497 molecule-ai/molecule-core:fix/secrets-honest-ui-491-490 molecule-ai/molecule-core:design/mobile-comms-a11y molecule-ai/molecule-core:design/mobile-chat-a11y molecule-ai/molecule-core:test/org-import-pure-funcs molecule-ai/molecule-core:fix/mcp-tools-sql-fix molecule-ai/molecule-core:fix/delegation-list-shows-both-directions molecule-ai/molecule-core:design/mobile-tabbar-a11y molecule-ai/molecule-core:feat/mobile-tabbar-a11y molecule-ai/molecule-core:fix/mobile-ios-focus-zoom molecule-ai/molecule-core:fix/mobile-canvas-render-parity molecule-ai/molecule-core:ci/arm64-advisory-mac-offload-pilot molecule-ai/molecule-core:fix/canvas-user-message-cross-session-fanout molecule-ai/molecule-core:test/a2a-proxy-pure-coverage molecule-ai/molecule-core:fix/mobile-focus-visible-rings molecule-ai/molecule-core:fix/external-workspace-progress-feedback molecule-ai/molecule-core:fix/canvas-mobile-ws-wake-resume molecule-ai/molecule-core:fix/mobile-chat-input-ios-focus-zoom molecule-ai/molecule-core:test/org-helpers-coverage molecule-ai/molecule-core:ci/timing-test-hygiene-host-load-internal molecule-ai/molecule-core:fix/setup-node-pin-corrupt-1432 molecule-ai/molecule-core:fix/ci-required-drift-polling-sentinel molecule-ai/molecule-core:fix/issue212-actionable-agent-error-reason molecule-ai/molecule-core:runtime/fix-api03-test-fixture molecule-ai/molecule-core:test/traces-list-http-coverage molecule-ai/molecule-core:runtime/fix-test-fixture-v3 molecule-ai/molecule-core:runtime/fix-test-fixture-on-1420 molecule-ai/molecule-core:fix/queue-status-sort molecule-ai/molecule-core:runtime/fix-test-fixture-secret-scan-false-positive molecule-ai/molecule-core:test/workspace-abilities-coverage-20260517 molecule-ai/molecule-core:fix/sop-engineers-main molecule-ai/molecule-core:fix/queue-merge-permanent-error molecule-ai/molecule-core:fix/delegations-list-deduplication molecule-ai/molecule-core:fix/canvas-npm-ci molecule-ai/molecule-core:fix/sop-staging-engineers-backport molecule-ai/molecule-core:offsec-015-staging-v2 molecule-ai/molecule-core:fix/queue-skip-permanent-merge-error molecule-ai/molecule-core:design/settings-button-focus-v2 molecule-ai/molecule-core:test/coverage-broadcast-listing-20260517 molecule-ai/molecule-core:fix/workspace-tokens-global-sentinel-500 molecule-ai/molecule-core:fix/sop-workflow-secrets-read molecule-ai/molecule-core:test/coverage-abilities-design-tokens-20260517 molecule-ai/molecule-core:design/agentcomms-focus-visible molecule-ai/molecule-core:design/skills-aria-accessibility molecule-ai/molecule-core:infra/action-sha-pin-e2e-chat molecule-ai/molecule-core:fix/sop-checklist-na-gate-probe-bug molecule-ai/molecule-core:test/coverage-2026-05-17 molecule-ai/molecule-core:fix/queue-merge-error-surfacing-v2 molecule-ai/molecule-core:test/all-coverage-v5 molecule-ai/molecule-core:fix/settings-panel-focus-visible molecule-ai/molecule-core:sre/ci-coldrunner-main-fix molecule-ai/molecule-core:fix/skills-tab-focus-visible molecule-ai/molecule-core:test/all-coverage-v4 molecule-ai/molecule-core:test/all-coverage-v3 molecule-ai/molecule-core:fix/aria-live-errors-v2 molecule-ai/molecule-core:fix/canvas-attachment-focus-visible molecule-ai/molecule-core:fix/queue-merge-error-surfacing molecule-ai/molecule-core:test/all-coverage-v2 molecule-ai/molecule-core:fix/app-page-focus-v2 molecule-ai/molecule-core:fix/app-page-focus-visible molecule-ai/molecule-core:fix/delete-dialog-focus molecule-ai/molecule-core:fix/sop-checklist-probe-na-gate molecule-ai/molecule-core:test/all-handler-lib-coverage molecule-ai/molecule-core:test/handlers-and-lib-coverage-v2 molecule-ai/molecule-core:test/delegation-sweeper-pure-funcs molecule-ai/molecule-core:fix/queue-update-then-wait-loop molecule-ai/molecule-core:fix/workspace-abilities-test-coverage molecule-ai/molecule-core:test/workspace-crud-validators molecule-ai/molecule-core:fix/canvas-user-message-persist-at-ingest molecule-ai/molecule-core:test/handlers-and-lib-coverage molecule-ai/molecule-core:fix/filetree-wcag-icons molecule-ai/molecule-core:fix/mobile-wcag-focus-visible molecule-ai/molecule-core:sre/pr1381-retrigger molecule-ai/molecule-core:infra/add-missing-workflow-concurrency molecule-ai/molecule-core:infra/scheduled-workflow-cancel-in-progress molecule-ai/molecule-core:fix/canvas-wcag-focus-visible-2 molecule-ai/molecule-core:ci/twine-verbose-403-reason-body molecule-ai/molecule-core:test/handlers-and-theme-coverage molecule-ai/molecule-core:fix/ci-required-drift-skip-f1 molecule-ai/molecule-core:fix/sop-checklist-na-declarations molecule-ai/molecule-core:test/workspace-abilities-and-theme molecule-ai/molecule-core:test/plugins-sources-and-theme molecule-ai/molecule-core:sre/comment-dispatch-consolidation-v2 molecule-ai/molecule-core:chore/remove-crewai-deepagents-gemini-cli molecule-ai/molecule-core:test/workspace-broadcast-handler molecule-ai/molecule-core:test/workspace-abilities-patch molecule-ai/molecule-core:fix/inbox-self-echo molecule-ai/molecule-core:feat/test-status-config-constants molecule-ai/molecule-core:feat/test-plugins-install-handlers molecule-ai/molecule-core:test/local-provisioner-token-ownership-parity molecule-ai/molecule-core:infra/internal-462-publish-deploy-lane molecule-ai/molecule-core:fix/staging-sync-persist-fix molecule-ai/molecule-core:feat/broadcast-coverage molecule-ai/molecule-core:__disk-test-137017 molecule-ai/molecule-core:fix/main-red-watchdog-close-on-pending molecule-ai/molecule-core:fix/review-refire-comments-token-scope molecule-ai/molecule-core:feat/canvas-abilities-banner-test molecule-ai/molecule-core:pr-1307 molecule-ai/molecule-core:staging-dev-lead-test-4107230 molecule-ai/molecule-core:feat/workspace-abilities-test-coverage molecule-ai/molecule-core:ci/scheduled-cancel-in-progress-1357 molecule-ai/molecule-core:feat/broadcast-test-coverage molecule-ai/molecule-core:fix/a2a-queue-status-coverage molecule-ai/molecule-core:pr-1351 molecule-ai/molecule-core:ci/e2e-peer-visibility-bp-pending-1296 molecule-ai/molecule-core:ci/e2e-peer-visibility-bp-required-1328 molecule-ai/molecule-core:fix/review-refire-conflict molecule-ai/molecule-core:sre/consolidated-main-to-staging molecule-ai/molecule-core:fix/org-helpers-duplicate-comment molecule-ai/molecule-core:fix/a2a-self-delegation-echo-inbox molecule-ai/molecule-core:perf/canvas-favicon-shrink molecule-ai/molecule-core:perf/canvas-toolbar-logo-shrink molecule-ai/molecule-core:perf/canvas-bundle-analyzer-optimize-imports molecule-ai/molecule-core:fix/offsec-015-staging molecule-ai/molecule-core:fix/workspace-token-injection-agent-owned molecule-ai/molecule-core:ci/sop-checklist-narrow-issue-comment-trigger molecule-ai/molecule-core:fix/broadcast-handler-coverage-1343 molecule-ai/molecule-core:fix/test-patchAbilities-toolbar-1313-1334 molecule-ai/molecule-core:docs/gitea-actions-quirks-runbook molecule-ai/molecule-core:fix/1256-enable-button-focus-ring molecule-ai/molecule-core:pr-1327 molecule-ai/molecule-core:feat/workspace-sizing-override molecule-ai/molecule-core:fix/sop-checklist-na-post molecule-ai/molecule-core:canvas/broadcast-chat-wcag molecule-ai/molecule-core:fix/test-matchesChatID-1304 molecule-ai/molecule-core:test/canvas/FileTree-render-a11y molecule-ai/molecule-core:test/canvas/ChatTab-subtab-a11y molecule-ai/molecule-core:test/canvas/SidePanel-a11y-and-state molecule-ai/molecule-core:enforce/peer-visibility-bp-directive-1296 molecule-ai/molecule-core:infra/main-ci-retrigger molecule-ai/molecule-core:sre/queue-api-fix molecule-ai/molecule-core:fix/handlers-untested-helpers-2026-05-16 molecule-ai/molecule-core:sre/sop-na-fix molecule-ai/molecule-core:promote/staging-to-main molecule-ai/molecule-core:infra/detect-changes-shallow-v2 molecule-ai/molecule-core:feat/publish-lane-runs-on-394 molecule-ai/molecule-core:test/canvas/FilesToolbar-a11y molecule-ai/molecule-core:fix/workspace-abilities-coverage-1312 molecule-ai/molecule-core:fix/sop-checklist-merged-blank-line molecule-ai/molecule-core:fix/e2e-chat-setup-node-mirror-sha molecule-ai/molecule-core:e2e/peer-visibility-local-backend molecule-ai/molecule-core:fix/secrets-coverage-compile-err-1274 molecule-ai/molecule-core:e2e/peer-visibility-mcp-gate molecule-ai/molecule-core:fix/e2e-chat-setup-node-mirror molecule-ai/molecule-core:fix/canvas-arrangeChildren-coverage molecule-ai/molecule-core:sre/fix-queue-null-created-at-sort molecule-ai/molecule-core:fix/sop-checklist-blank-line-detect molecule-ai/molecule-core:fix/a2a-proxy-test-async-drain molecule-ai/molecule-core:fix/handlers-admin-delegations-coverage molecule-ai/molecule-core:sre/platform-go-timeout-60m molecule-ai/molecule-core:infra/sop-tier-check-token-guard molecule-ai/molecule-core:fix/handlers-test-async-drain molecule-ai/molecule-core:fix/gate-check-login-aliases molecule-ai/molecule-core:fix/secrets-scan-test-fixture-exclusion molecule-ai/molecule-core:fix/secrets-coverage-tests-v2 molecule-ai/molecule-core:fix/ci-concurrency-cancel-superseded-storm molecule-ai/molecule-core:fix/secret-scan-exclude-secrets-tests molecule-ai/molecule-core:fix/secrets-patterns-100pct-coverage molecule-ai/molecule-core:fix/secrets-100-coverage molecule-ai/molecule-core:standalone/review-check-403-fix molecule-ai/molecule-core:feat/files-agent-home-stub molecule-ai/molecule-core:feat/agent-home-docker-exec-internal-425-phase-2b molecule-ai/molecule-core:sre/secret-scan-timeout molecule-ai/molecule-core:feat/canvas-files-agent-home-internal-425-phase-3 molecule-ai/molecule-core:fix/top-level-modules-add-a2a-tools-identity molecule-ai/molecule-core:feat/secrets-patterns-ssot-internal-425-phase-2a molecule-ai/molecule-core:stub/files-api-agent-home-root-2026-05-15 molecule-ai/molecule-core:fix/sop-n-a-v2 molecule-ai/molecule-core:fix/files-api-agent-home-stub molecule-ai/molecule-core:be/workspace-server-accumulated-fixes molecule-ai/molecule-core:fix/sop-n-a-clean molecule-ai/molecule-core:design/themetoggle-test-teardown-fix molecule-ai/molecule-core:feat/canvas-growParentsToFitChildren-coverage molecule-ai/molecule-core:fix/openclaw-skip-config-write-and-canvas-timeout-to-main molecule-ai/molecule-core:feat/agent-card-update-and-runtime-identity-tools-relocated molecule-ai/molecule-core:fix/openclaw-skip-config-write-and-canvas-timeout molecule-ai/molecule-core:fix/prod-auto-deploy-timeout molecule-ai/molecule-core:feat/chat-unify-clean molecule-ai/molecule-core:fix/autobump-skip-existing-tags molecule-ai/molecule-core:fix/issue-1187-broadcast-abilities-coverage molecule-ai/molecule-core:fix/runtime-autobump-next-free-tag molecule-ai/molecule-core:pr-1211 molecule-ai/molecule-core:feat/queue-status-abilities-handler-tests molecule-ai/molecule-core:fix/queue-channels-coverage molecule-ai/molecule-core:infra-sre/golangci-lint-connectivity-fix molecule-ai/molecule-core:infra/main-sop-na-fix molecule-ai/molecule-core:fix/staging-golangci-30m-v2 molecule-ai/molecule-core:fix/scheduler-coverage-gaps molecule-ai/molecule-core:fix/channels-rows-err-and-cwe312 molecule-ai/molecule-core:fix/container-name-no-uuid-truncation molecule-ai/molecule-core:fix/staging-golangci-noconfig molecule-ai/molecule-core:fix/provider-base-url-fallback molecule-ai/molecule-core:fix/provisioner-uuid-no-truncate molecule-ai/molecule-core:fix/queue-label-filter-all-ids molecule-ai/molecule-core:fix/review-check-403-skip molecule-ai/molecule-core:fix/ki-010-container-name-truncation molecule-ai/molecule-core:fix/provisioner-no-uuid-truncation molecule-ai/molecule-core:fix/issue-1176-db-db-race molecule-ai/molecule-core:fix/channels-rows-err molecule-ai/molecule-core:test/issue-1156-messaging-coverage molecule-ai/molecule-core:sre/fix-test-sop-parse-directives molecule-ai/molecule-core:infra/staging-sop-na-fix molecule-ai/molecule-core:test/workspace-adapter-base-coverage molecule-ai/molecule-core:sre/fix-sop-test-parse-directives molecule-ai/molecule-core:fix/pr-1070-push-tokens molecule-ai/molecule-core:test/push-package-coverage molecule-ai/molecule-core:hotfix/offsec-015-org-isolation molecule-ai/molecule-core:infra/sop-n-a-plus-drift-fix molecule-ai/molecule-core:fix/issue-1183-settingspanel-act-wrap molecule-ai/molecule-core:pr-1185-current molecule-ai/molecule-core:infra/main-golangci-no-config molecule-ai/molecule-core:test/qa-broadcast-abilities-coverage molecule-ai/molecule-core:fix/delegations-list-endpoint-wrong-column molecule-ai/molecule-core:core-be/fix/platform-go-timeout molecule-ai/molecule-core:fix/issue-1152-delegation-activity-db-err-tests molecule-ai/molecule-core:core-be/fix/tokens-rate-limit-scan-err-v2 molecule-ai/molecule-core:fix/handlers-rows-err-missing molecule-ai/molecule-core:infra/canvas-deploy-reminder-polling-list molecule-ai/molecule-core:fix/staging-ci-timeouts molecule-ai/molecule-core:fix/settingspanel-act-flush molecule-ai/molecule-core:fix/rows-err-instructions-resolve molecule-ai/molecule-core:fix/ci-cold-runner-timeout molecule-ai/molecule-core:fix/issue-1171-rows-err-memory-events-channels molecule-ai/molecule-core:fix/sentinel-remove-phas3-masked molecule-ai/molecule-core:infra/fix-all-required-combined-status-check molecule-ai/molecule-core:pr1165-rebase molecule-ai/molecule-core:fix/approvals-json-marshal-guard molecule-ai/molecule-core:feat/canvas-broadcast-handler molecule-ai/molecule-core:sre/fix-ci-drift-false-positive molecule-ai/molecule-core:sre/fix-queue-remove-label-bug molecule-ai/molecule-core:infra/workspace-server-healthcheck molecule-ai/molecule-core:fix/ci-drift-canvas-deploy-reminder molecule-ai/molecule-core:fix/offsec-015-broadcast-org-isolation molecule-ai/molecule-core:fix/delegation-list-callee-plus-golangci-lint molecule-ai/molecule-core:sre/fix-queue-gate-context molecule-ai/molecule-core:core-be/test/delegate-record-db-errors-v2 molecule-ai/molecule-core:fix/tokens-rate-limit-scan-err molecule-ai/molecule-core:pr-1117 molecule-ai/molecule-core:pr-1117-latest molecule-ai/molecule-core:infra/staging-golangci-no-config molecule-ai/molecule-core:fix/openclaw-molecule-mcp-version-pin molecule-ai/molecule-core:offsec015 molecule-ai/molecule-core:fix/openclaw-mcp-version-check molecule-ai/molecule-core:feat/provider-routing-base-v2 molecule-ai/molecule-core:feat/e2e-chat-stabilization molecule-ai/molecule-core:fix/sop-concurrency-throttle molecule-ai/molecule-core:p1102 molecule-ai/molecule-core:p1117 molecule-ai/molecule-core:fix/canvas-deploy-reminder-deadlock molecule-ai/molecule-core:infra/main-golangci-timeout-fix molecule-ai/molecule-core:feat/provider-routing-base molecule-ai/molecule-core:sre/sweep-cf-orphans-aws-timeout molecule-ai/molecule-core:sre/queue-merge-conflict-handling molecule-ai/molecule-core:fix/na-declarations-gate molecule-ai/molecule-core:fix/handlers-log-db-scan-errors molecule-ai/molecule-core:fix/channels-marshal-errors molecule-ai/molecule-core:fix/channels-silent-json-errors molecule-ai/molecule-core:sre/channels-unmarshal-errors molecule-ai/molecule-core:sre/queue-pre-receive-hook-fix molecule-ai/molecule-core:sre/ci-timeout-increase molecule-ai/molecule-core:fix/approvals-terminal-db-err-logging molecule-ai/molecule-core:infra/ci-platform-go-timeout-fix molecule-ai/molecule-core:fix/push-notifications molecule-ai/molecule-core:fix/channels-json-unmarshal-guard molecule-ai/molecule-core:fix/main-rows-err-instructions molecule-ai/molecule-core:fix/main-test-fix-from-0c152a24 molecule-ai/molecule-core:fix/staging-offsec010-cp-wiring molecule-ai/molecule-core:fix/handlers-instructions-test-bugs molecule-ai/molecule-core:fix/ci-allrequired-needs molecule-ai/molecule-core:fix/staging-goasync-configseed molecule-ai/molecule-core:fix/issue-1080-org-helpers-comment molecule-ai/molecule-core:fix/issue-1081-errors-import molecule-ai/molecule-core:fix/1080-org-helpers-comment-typo molecule-ai/molecule-core:infra-sre/fix-missing-test-imports molecule-ai/molecule-core:fix/offsec-010-wiring molecule-ai/molecule-core:fix/saas-t4-cp-config-seed molecule-ai/molecule-core:fix/offsec-010-clean molecule-ai/molecule-core:fix/offsec-003-boundary-wrapping molecule-ai/molecule-core:fix/offsec-003-escaped-markers-main molecule-ai/molecule-core:fix/mobile-chat-history molecule-ai/molecule-core:fix/staging-CWE-78-rows-err molecule-ai/molecule-core:fix/1062-mobilechat-history molecule-ai/molecule-core:hotfix/cwe-78-staging molecule-ai/molecule-core:fix/stdio-v2 molecule-ai/molecule-core:fix/offsec-010-symlink-walkdir molecule-ai/molecule-core:fix/test-stdio-function-name molecule-ai/molecule-core:fix/offsec-010-symlink-walkdir-isSaaS-fix molecule-ai/molecule-core:sre/fix-stale-platform-server-port molecule-ai/molecule-core:fix/offsec-010-from-pr1047 molecule-ai/molecule-core:staging-v6 molecule-ai/molecule-core:fix/e2e-api-port-collision molecule-ai/molecule-core:fix/main-async-db-race molecule-ai/molecule-core:infra/sync-staging-v6-to-main molecule-ai/molecule-core:pr/1030 molecule-ai/molecule-core:fix/handlers-instructions-test-compile molecule-ai/molecule-core:fix/instructions-test-compile molecule-ai/molecule-core:fix/openclaw-empty-required-keys molecule-ai/molecule-core:sre/main-rows-err-checks molecule-ai/molecule-core:fix/staging-v6-conflict-markers molecule-ai/molecule-core:fix/delegation-list-test-conflict-marker molecule-ai/molecule-core:fix/main-red-cdb0b040-ci-tests molecule-ai/molecule-core:fix/theme-toggle-selector-main-red molecule-ai/molecule-core:sre/ci-required-drift-canvas-reminder-skip molecule-ai/molecule-core:test/instructions-handler-coverage molecule-ai/molecule-core:sre/canvas-build-timeout molecule-ai/molecule-core:test/externalconnectmodal molecule-ai/molecule-core:fix/resolve-conflict-marker-delegation-list-test molecule-ai/molecule-core:fix/1008-themetoggle-css-selector molecule-ai/molecule-core:design/826-searchdialog-mount-v2 molecule-ai/molecule-core:test/orgcancelbutton molecule-ai/molecule-core:fix/2088-themetoggle-queryselectorall-errors molecule-ai/molecule-core:design/704-tree-test-fix molecule-ai/molecule-core:fix/ci-required-drift-github-ref-skip molecule-ai/molecule-core:ci/975-db-pollution-fix molecule-ai/molecule-core:fix/968-remove-duplicate-test-declarations molecule-ai/molecule-core:fix/980-schedules-handler-test-coverage molecule-ai/molecule-core:design/tier-legend-contrast-2026-05-14 molecule-ai/molecule-core:sre/platform-go-timeout-fix molecule-ai/molecule-core:fix/delegation-list-test-db-leak molecule-ai/molecule-core:fix/984-delegation-id-response-body molecule-ai/molecule-core:sre/queue-bot-fix-ctx-check molecule-ai/molecule-core:fix/983-remove-duplicate-test-declarations molecule-ai/molecule-core:fix/986-canvas-wcag-focus-rings molecule-ai/molecule-core:fix/993-agent-handler-test-coverage molecule-ai/molecule-core:design/wcag-focus-contrast-2026-05-14 molecule-ai/molecule-core:design/wcag-focus-rings-round5-2026-05-14 molecule-ai/molecule-core:fix/activity-logs-delegation-id-response-body molecule-ai/molecule-core:fix/982-expand-posix-identifier-guard molecule-ai/molecule-core:fix/test-offsec003-redundant-file molecule-ai/molecule-core:feat/976-schedules-handler-test-coverage molecule-ai/molecule-core:fix/org-helpers-test-panic molecule-ai/molecule-core:promote/main-to-staging-v5 molecule-ai/molecule-core:fix/965-test-panic-resolveInsideRoot molecule-ai/molecule-core:promote/main-to-staging-v4 molecule-ai/molecule-core:feat/delegation-list-tests molecule-ai/molecule-core:fix/test-a2a-sanitization-v3 molecule-ai/molecule-core:promote/main-to-staging-v3 molecule-ai/molecule-core:fix/duplicate-test-declarations molecule-ai/molecule-core:feat/org-helpers-security-tests molecule-ai/molecule-core:fix/main-push-operational-red molecule-ai/molecule-core:promote/main-to-staging-v2 molecule-ai/molecule-core:fix-sop-concurrency-v2 molecule-ai/molecule-core:fix/sop-checklist-gate-name molecule-ai/molecule-core:fix/docker-info-pipefail molecule-ai/molecule-core:fix/publish-healthcheck-pipefail molecule-ai/molecule-core:fix/sop-checklist-workflow-rename molecule-ai/molecule-core:promote/main-to-staging molecule-ai/molecule-core:sre/fix-sop-checklist-context-name-mc948 molecule-ai/molecule-core:design/wcag-contrast-round4-2026-05-14 molecule-ai/molecule-core:fix/org-helper-tests molecule-ai/molecule-core:fix/test-a2a-sanitization-main molecule-ai/molecule-core:fix/publish-image-on-every-main-push molecule-ai/molecule-core:fix/remove-canvas-reminder-from-all-required molecule-ai/molecule-core:fix/staging-integration-test-ctx molecule-ai/molecule-core:fix/staging-canvas-reminder-deadlock molecule-ai/molecule-core:design/wcag-a11y-round3-2026-05-14 molecule-ai/molecule-core:ci/remove-canvas-reminder-from-all-required molecule-ai/molecule-core:fix/test-a2a-sanitization-assertions molecule-ai/molecule-core:fix/staging-ci-drift-canvas-reminder molecule-ai/molecule-core:fix/handlers-pg-integ-event-before molecule-ai/molecule-core:ci/platform-build-flip-coe molecule-ai/molecule-core:fix/staging-python-test-and-tier-check-lint molecule-ai/molecule-core:fix/offsec-006-slug-injection molecule-ai/molecule-core:runtime/fix-pr916-integration-test-ctx molecule-ai/molecule-core:design/chat-tab-wcag-contrast-2026-05-14 molecule-ai/molecule-core:fix/offsec-006-slug-validation molecule-ai/molecule-core:design/wcag-contrast-fixes-2026-05-14 molecule-ai/molecule-core:fix/904-handler-test-blockers molecule-ai/molecule-core:fix/ci-drift-canvas-reminder molecule-ai/molecule-core:fix/comment-trigger-storm molecule-ai/molecule-core:infra/660-codify-promote-tenant-image molecule-ai/molecule-core:fix/917-canvas-test-failures molecule-ai/molecule-core:fix/917-runtime-prbuild-detect-changes-fix molecule-ai/molecule-core:fix/filesTab-test-stale-reference molecule-ai/molecule-core:fix/files-tab-test-missing-helper molecule-ai/molecule-core:fix/runtime-prbuild-compat-detect-changes molecule-ai/molecule-core:fix/staging-test-compilation-fixes molecule-ai/molecule-core:fix/qa-review-token-fallback-v2 molecule-ai/molecule-core:test/hydrate-canvas-coverage molecule-ai/molecule-core:fix/contextmenu-react-error-185 molecule-ai/molecule-core:test/external-runtimes-coverage molecule-ai/molecule-core:fix/main-sqlmock-import-ineffassign-20260513 molecule-ai/molecule-core:fix/redeploy-tenants-on-main-lint-cleanup molecule-ai/molecule-core:sre/docker-daemon-gate-fix molecule-ai/molecule-core:fix/897-listdelegations-use-ledger-table molecule-ai/molecule-core:fix/901-listdelegations-ledger-table molecule-ai/molecule-core:fix/core-main-handlers-hotfix molecule-ai/molecule-core:fix/e2e-api-platform-port molecule-ai/molecule-core:fix/main-green-monitor-status molecule-ai/molecule-core:fix/mobile-MobileChat-infinite-render molecule-ai/molecule-core:fix/delegations-ledger-fallback-rows-err molecule-ai/molecule-core:fix/874-extractmessagetext-clean molecule-ai/molecule-core:feat/881-untested-helpers molecule-ai/molecule-core:fix/874-extractmessagetext-bug molecule-ai/molecule-core:fix/status-reaper-api-timeout-retry-20260513130514 molecule-ai/molecule-core:fix/831-admin-token-placeholder-bootstrap molecule-ai/molecule-core:feat/canvas-test-coverage-738 molecule-ai/molecule-core:feat/files-tab-tree-coverage molecule-ai/molecule-core:feat/canvas-untested-components-coverage molecule-ai/molecule-core:feat/canvas-tab-test-coverage-2 molecule-ai/molecule-core:fix/main-bundle-test-sqlmock-import molecule-ai/molecule-core:fix/stdio-fallback-all-environments molecule-ai/molecule-core:staging-sync-v3 molecule-ai/molecule-core:ci/burn-in-remove-sop-tier-check-coe molecule-ai/molecule-core:fix/issue-860-delivery-mode-tests molecule-ai/molecule-core:design/approval-banner-emerald-fix molecule-ai/molecule-core:fix/issue-854-termsgate-a11y molecule-ai/molecule-core:fix/issue-859-wcag-contrast molecule-ai/molecule-core:fix/delegations-rows-err-bbc40cb8 molecule-ai/molecule-core:design/approvalbanner-a11y molecule-ai/molecule-core:design/pricingtable-a11y molecule-ai/molecule-core:design/toolbar-help-toggle-fix molecule-ai/molecule-core:staging-sync-v2 molecule-ai/molecule-core:fix/canvas-approvalbanner-a11y molecule-ai/molecule-core:feat/canvas-external-connect-modal-coverage molecule-ai/molecule-core:staging-sync-rm molecule-ai/molecule-core:fix/test-sanitize-agent-error-stderr molecule-ai/molecule-core:test/a2a-queue-extractExpiresInSeconds molecule-ai/molecule-core:fix/pr-829-test-issues molecule-ai/molecule-core:design/826-searchdialog-mount molecule-ai/molecule-core:fix/chat-createMessage-attachments-key molecule-ai/molecule-core:fix/762-recall-memory-canary molecule-ai/molecule-core:fix/367-a2a-tools-coverage-v2 molecule-ai/molecule-core:feat/search-dialog-mount molecule-ai/molecule-core:feat/org-layout-test-coverage molecule-ai/molecule-core:fix/offsec-003-builtin-a2a-sanitize molecule-ai/molecule-core:fix/canvas-playwright-install-timeout molecule-ai/molecule-core:fix/805-audit-force-merge-main-required-checks molecule-ai/molecule-core:fix/cf-sweep-api-error molecule-ai/molecule-core:fix/e2e-diagnose-detail molecule-ai/molecule-core:fix/a2a-mcp-server-http-transport molecule-ai/molecule-core:fix/core-main-red-golangci-install molecule-ai/molecule-core:fix/test-declarations molecule-ai/molecule-core:fix/sop-checklist-body-hard-gate molecule-ai/molecule-core:merge-792 molecule-ai/molecule-core:feat/mcp-tools-test-coverage molecule-ai/molecule-core:feat/workspace-crud-test-coverage molecule-ai/molecule-core:feat/socket-handler-test-coverage molecule-ai/molecule-core:fix/686-delegation-integration-tests molecule-ai/molecule-core:feat/a2a-proxy-helpers-test-coverage molecule-ai/molecule-core:fix/publish-canvas-disable-gha-cache-20260512 molecule-ai/molecule-core:fix/publish-canvas-docker-probe-20260512 molecule-ai/molecule-core:fix/canvas-image-ecr-20260512 molecule-ai/molecule-core:fix/687-send-ssh-public-key-detail molecule-ai/molecule-core:feat/tier-2g-required-context-exists-in-bp molecule-ai/molecule-core:feat/tier-2f-bp-emit-match molecule-ai/molecule-core:fix/mc-664-class-2-mcp-offsec-contract-test molecule-ai/molecule-core:fix/main-ci-green-20260512 molecule-ai/molecule-core:infra/dockerfile-add-docker-cli-for-local-build molecule-ai/molecule-core:test/workspace-crud-helpers-coverage molecule-ai/molecule-core:fix/681-recallmemory-offsec-contract molecule-ai/molecule-core:fix/org-layout-helpers-test-coverage molecule-ai/molecule-core:fix/735-extractResponseText-tests molecule-ai/molecule-core:test/713-workspace-crud-validators molecule-ai/molecule-core:test/713-org-helpers-pure-coverage molecule-ai/molecule-core:fix/713-eic-diagnose-detail molecule-ai/molecule-core:fix/730-filterpeers-nil-guard molecule-ai/molecule-core:infra/all-required-coe-false-v2 molecule-ai/molecule-core:fix/phase3-tracker-comments molecule-ai/molecule-core:fix/mc-664-class-1-delegation-tests-postgres-integration molecule-ai/molecule-core:fix/canvas-keyboard-shortcuts-dialog-guard molecule-ai/molecule-core:infra/664-lint-coe-trackers molecule-ai/molecule-core:ci/lint-tracker-regex-fix-v2 molecule-ai/molecule-core:fix/731-nil-guard-filter-peers-by-query molecule-ai/molecule-core:fix/lint-TRACKER_RE-mid-sentence molecule-ai/molecule-core:ci-retrigger-747 molecule-ai/molecule-core:feat/709-handler-pure-coverage molecule-ai/molecule-core:fix/697-canvas-geticon-topology molecule-ai/molecule-core:ci/lint-tracker-regex-fix molecule-ai/molecule-core:test/2071-canvas-drop-target-badge-coverage molecule-ai/molecule-core:feat/2071-canvas-orgdeploystate-coverage molecule-ai/molecule-core:feat/mobile-canvas-comms-spawn-coverage molecule-ai/molecule-core:ci/lint-coe-self-fix molecule-ai/molecule-core:fix/ssm-refresh-ecr-auth-json-escaping molecule-ai/molecule-core:design/729-fix molecule-ai/molecule-core:ci/gate-check-v3-permissions-fix molecule-ai/molecule-core:fix/730-discovery-filter-nil-role molecule-ai/molecule-core:infra/publish-docker-daemon-diagnostic molecule-ai/molecule-core:fix/714-all-required-coe-false molecule-ai/molecule-core:fix/717-mobile-agentMessages-selector molecule-ai/molecule-core:infra/fix-all-required-status-reporting molecule-ai/molecule-core:fix/687-e2e-surface-diagnose-detail molecule-ai/molecule-core:infra/docker-runner-label molecule-ai/molecule-core:test/701-canvas-hydrate-coverage molecule-ai/molecule-core:test/mobile-primitives-coverage molecule-ai/molecule-core:infra/664-interim-platform-build-exempt molecule-ai/molecule-core:fix/693-offsec-recallmemory-scrub-staging molecule-ai/molecule-core:sync/main-to-staging-514-v2 molecule-ai/molecule-core:fix/693-offsec-recallmemory-global-scrub molecule-ai/molecule-core:fix/693-offsec-recallmemory-scrub molecule-ai/molecule-core:fix/634-handler-test-fixes-to-main molecule-ai/molecule-core:test/699-socket-handler-coverage molecule-ai/molecule-core:sre/workflow-run-replacement molecule-ai/molecule-core:infra/676-ssm-auth-json-hardening molecule-ai/molecule-core:fix/offsec-001-method-scrub-hotfix molecule-ai/molecule-core:fix/offsec-001-method-scrub-main molecule-ai/molecule-core:feat/workspace-crud-validation-tests molecule-ai/molecule-core:test/canvas-hydrate-coverage molecule-ai/molecule-core:infra/lint-pre-flip-continue-on-error molecule-ai/molecule-core:fix/workflow_run-to-push-gitea-1.22.6 molecule-ai/molecule-core:feat/tier-2e-tracking-issue molecule-ai/molecule-core:fix/684-offsec-scrub-method-default molecule-ai/molecule-core:feat/sop-checklist-gate-mvp molecule-ai/molecule-core:feat/tier-2d-lint-mask-pr-atomicity molecule-ai/molecule-core:infra/lint-workflow-yaml-hostile-shapes molecule-ai/molecule-core:infra/lint-required-no-paths-filter molecule-ai/molecule-core:cleanup/pr-641-clean molecule-ai/molecule-core:feat/mobile-tabbar-wcag-a11y molecule-ai/molecule-core:fix/canvas-mobile-chat-loop molecule-ai/molecule-core:fix/651-canvas-chat-mobile-crash molecule-ai/molecule-core:fix/664-interim-remask-platform-build molecule-ai/molecule-core:fix/mobile-chat-max-update-depth molecule-ai/molecule-core:infra/622-force-merge-protection-fix molecule-ai/molecule-core:test/attachment-lightbox-clean-v2 molecule-ai/molecule-core:ci/652-gitea-1-22-status-key molecule-ai/molecule-core:test/memorytab-2 molecule-ai/molecule-core:infra/status-reaper-rev4-status-key-fix molecule-ai/molecule-core:infra/weekly-platform-go-vet-hard molecule-ai/molecule-core:fix/audit-force-merge-pipefail molecule-ai/molecule-core:infra/status-reaper-rev3-widen-window molecule-ai/molecule-core:test/canvas-externalconnectmodal-coverage molecule-ai/molecule-core:fix/sop-tier-check-token-graceful molecule-ai/molecule-core:infra/ci-required-drift-token-scope molecule-ai/molecule-core:test/console-modal-coverage molecule-ai/molecule-core:ci/review-check-tests-wire molecule-ai/molecule-core:test/canvas-workspacenode-coverage molecule-ai/molecule-core:test/memorytab molecule-ai/molecule-core:infra/interim-disable-reaper-watchdog-crons molecule-ai/molecule-core:test/attachment-lightbox-coverage molecule-ai/molecule-core:fix/issue-639-workspacenode-test-coverage molecule-ai/molecule-core:test/channels-tab molecule-ai/molecule-core:fix/canvas-searchdialog-test-fixtures molecule-ai/molecule-core:fix/598-attachmentLightbox-tests molecule-ai/molecule-core:fix/529-307-localbuild-async-test-fix molecule-ai/molecule-core:fix/582-attachmentviews-tests molecule-ai/molecule-core:fix/308-a2a-response-push-mode-tests molecule-ai/molecule-core:fix/529-preflight-localbuild molecule-ai/molecule-core:fix/sop-tier-check-token-graceful-staging molecule-ai/molecule-core:fix/545-approvalbanner-isolation molecule-ai/molecule-core:fix/519-memorytab-tests molecule-ai/molecule-core:infra/status-reaper-rev2-sweep-recent-commits molecule-ai/molecule-core:fix/handlers-test-fixtures molecule-ai/molecule-core:test/skill-helpers-coverage molecule-ai/molecule-core:test/ui-primitive-coverage molecule-ai/molecule-core:docs/gitea-quirks-10-11 molecule-ai/molecule-core:test/platform-bundle-exporter-coverage molecule-ai/molecule-core:infra/status-reaper-rev1-drop-concurrency molecule-ai/molecule-core:fix/608-filesTab-focusTest molecule-ai/molecule-core:test/budget-section-coverage molecule-ai/molecule-core:infra/revert-docker-runner-label molecule-ai/molecule-core:fix/weekly-platform-go-latent-error-surface molecule-ai/molecule-core:infra/revert-publish-runs-on-pin molecule-ai/molecule-core:sre/gate-check-timeout molecule-ai/molecule-core:test/a2a-error-hint-coverage molecule-ai/molecule-core:test/chat-attachment-views-coverage molecule-ai/molecule-core:test/attachment-video-coverage molecule-ai/molecule-core:infra/option-b-status-reaper molecule-ai/molecule-core:infra/gate-check-v3-timeout molecule-ai/molecule-core:infra/576-docker-runner-label molecule-ai/molecule-core:fix/593-filetab-tests molecule-ai/molecule-core:test/files-tab-notavailablepanel-coverage molecule-ai/molecule-core:fix/591-forminputs-tests molecule-ai/molecule-core:fix/471-cwe117-stderr-scrubbing molecule-ai/molecule-core:infra/diagnostic-publish-workspace-server-image molecule-ai/molecule-core:fix/582-bundle-import-tests molecule-ai/molecule-core:test/form-inputs-coverage molecule-ai/molecule-core:fix/publish-workspace-server-image-json5-comments molecule-ai/molecule-core:sre/fix-all-required-null-result molecule-ai/molecule-core:fix/publish-workspace-server-image-optional-token molecule-ai/molecule-core:pr-251 molecule-ai/molecule-core:test/ui-statusbadge-coverage molecule-ai/molecule-core:fix/all-required-null-result-assertion molecule-ai/molecule-core:fix/568-palette-context-tests molecule-ai/molecule-core:pr-527 molecule-ai/molecule-core:infra/merge-563-autobump-fix molecule-ai/molecule-core:test/mobile-palette-context-coverage molecule-ai/molecule-core:sre/fix-gate-check-v3-combined-state-loop molecule-ai/molecule-core:ci/540-review-check-bats-tests molecule-ai/molecule-core:fix/publish-runtime-autobump-push-condition molecule-ai/molecule-core:ci/558-verify-publish-runtime-marker molecule-ai/molecule-core:test/canvas-empty-state-coverage molecule-ai/molecule-core:infra/publish-runtime-verify-2026-05-11 molecule-ai/molecule-core:ci/554-oci-labels-publish-workflow molecule-ai/molecule-core:infra/drift-bot-token molecule-ai/molecule-core:infra/rfc-219-phase-4-all-required-sentinel molecule-ai/molecule-core:ci/551-gate-checkout-trusted-ref molecule-ai/molecule-core:fix/gate-check-v3-pr-HEAD-security molecule-ai/molecule-core:fix/541-token-argv-security molecule-ai/molecule-core:sre/fix-gate-check-v3-bugs molecule-ai/molecule-core:fix/537-cwe117-a2a-tools-sanitize molecule-ai/molecule-core:fix/gate-check-v3-http-error-crash molecule-ai/molecule-core:sre/fix-localbuild-preflight molecule-ai/molecule-core:infra/rfc-324-workflow-add molecule-ai/molecule-core:test/offsec-003-sanitization-backstop molecule-ai/molecule-core:fix/test-sanitize-agent-error-stderr-exc molecule-ai/molecule-core:fix/approval-banner-test-isolation molecule-ai/molecule-core:infra/scope-workflows-fix molecule-ai/molecule-core:sre/fix-pr530-deadlock molecule-ai/molecule-core:sre/reopen-516-gate-check-fix molecule-ai/molecule-core:fix/ci-scope-operational-workflows-504-419 molecule-ai/molecule-core:sre/scope-operational-workflows-to-schedule molecule-ai/molecule-core:ci/harness-replays-detect-changes-quoting-fix molecule-ai/molecule-core:fix/test-blocks-until-inflight-completes molecule-ai/molecule-core:fix/test-enrich-peer-metadata-nonblocking molecule-ai/molecule-core:sre/fix-enrich-nonblocking-cache-check molecule-ai/molecule-core:merge-pr490 molecule-ai/molecule-core:runtime/fix-offsec-003-tool-delegate-task molecule-ai/molecule-core:fix/508-update-boundary-assertions molecule-ai/molecule-core:sre/fix-test-delegation-sync-polling-assertions molecule-ai/molecule-core:fix/366-shared-runtime-coverage molecule-ai/molecule-core:fix/506-unused-imports molecule-ai/molecule-core:ci/lint-fixes molecule-ai/molecule-core:fix/367-a2a-tools-coverage molecule-ai/molecule-core:test/a2a-client-enrich-peer-rebase molecule-ai/molecule-core:fix/354-delegation-auto-resume-rebase molecule-ai/molecule-core:ci/fix-detect-changes-commits-array molecule-ai/molecule-core:fix/307-async-rebase molecule-ai/molecule-core:runtime/fix-harness-replays-push-event molecule-ai/molecule-core:sre/fix-test-polling-sanitization molecule-ai/molecule-core:fix/harness-replays-detect-changes-gitea-api molecule-ai/molecule-core:ci/fix-test-polling-sanitization molecule-ai/molecule-core:test/eventstab molecule-ai/molecule-core:runtime/335-rebase-platfrom-url molecule-ai/molecule-core:hotfix/491-offsec-003-staging-v2 molecule-ai/molecule-core:fix/pr477-test-fixes molecule-ai/molecule-core:runtime/335-rebase-platform-url molecule-ai/molecule-core:fix/354-auto-resume-delegations molecule-ai/molecule-core:fix/368-audit-hooks-coverage molecule-ai/molecule-core:runtime/temporal-platform-url-fix molecule-ai/molecule-core:infra/secret-reconciliation-v2 molecule-ai/molecule-core:fix/purchase-success-modal-test-isolation molecule-ai/molecule-core:pr-476 molecule-ai/molecule-core:sre/fix-gitea-runbook-network-quirks molecule-ai/molecule-core:tools/gate-check-v3 molecule-ai/molecule-core:fix/376-activity-delegation-polling molecule-ai/molecule-core:runtime/platform-url-fix-merge molecule-ai/molecule-core:fix/canvas-purchase-success-modal-test-timing molecule-ai/molecule-core:fix/secret-naming-reconciliation molecule-ai/molecule-core:docs/gitea-operational-quirks-runbook molecule-ai/molecule-core:test/canvas-toolbar-coverage molecule-ai/molecule-core:fix/canvas-tier-config-v2 molecule-ai/molecule-core:fix/455-offsec003-sanitize-alignment molecule-ai/molecule-core:fix/sweep-stale-e2e-orgs-secret-name molecule-ai/molecule-core:fix/approvalbanner-mockreset-452 molecule-ai/molecule-core:fix/canvas-approvalbanner-mockreset molecule-ai/molecule-core:fix/publish-runtime-autobump-fetch-depth molecule-ai/molecule-core:fix/321-cwe22-loadWorkspaceEnv-path-traversal molecule-ai/molecule-core:fix/canonicalize-staging-admin-token-rebase-462 molecule-ai/molecule-core:canvas-followup molecule-ai/molecule-core:fix/canonicalize-staging-admin-token-rest molecule-ai/molecule-core:refactor/drop-canary-prefix molecule-ai/molecule-core:fix/canvas-test-and-design-fixes molecule-ai/molecule-core:runtime/432-followup-helper-extraction molecule-ai/molecule-core:fix/harness-replays-detect-changes-fetch-depth molecule-ai/molecule-core:fix/stderr-include-a2a-error-response molecule-ai/molecule-core:feat/internal-292-sop-tier-refire molecule-ai/molecule-core:docs/update-remote-agent-tutorial-sdk-api molecule-ai/molecule-core:fix/canvas-confirm-dialog-backdrop-a11y-v3 molecule-ai/molecule-core:fix/canvas-confirm-dialog-backdrop-a11y-v2 molecule-ai/molecule-core:fix/388-github-token-501-gitea-staging molecule-ai/molecule-core:fix/dialog-backdrop-a11y molecule-ai/molecule-core:runtime/414-idle-loop-skip-pending-results-v3 molecule-ai/molecule-core:fix/test-extract-tool-trace molecule-ai/molecule-core:fix/test-plugins-atomic-tar-coverage molecule-ai/molecule-core:fix/harness-replays-fetch-depth molecule-ai/molecule-core:fix/test-instructions-handler-coverage molecule-ai/molecule-core:sre/fix-workflow-secret-naming molecule-ai/molecule-core:fix/canvas-tiers-config-string-keys molecule-ai/molecule-core:fix/offsec-003-promote-to-main molecule-ai/molecule-core:fix/class-e-secret-name-reconciliation molecule-ai/molecule-core:fix/sop-tier-check-apt-get-first molecule-ai/molecule-core:fix/307-async-test-pollution molecule-ai/molecule-core:fix/sop-tier-check-jq-install-order molecule-ai/molecule-core:fix/canvas-test-failures-2026-05-10 molecule-ai/molecule-core:runtime/fix-a2a-tools-duplicate-error-block-v2 molecule-ai/molecule-core:infra/sop-tier-check-jq-install-fix molecule-ai/molecule-core:runtime/fix-a2a-push-delivery-mode molecule-ai/molecule-core:feat/main-never-red-watchdog-internal-420 molecule-ai/molecule-core:feat/internal-219-phase-2bc-port-to-molecule-core molecule-ai/molecule-core:fix/a11y-canvas-clean molecule-ai/molecule-core:sweep/internal-219-cat-C1-port-gates-lints molecule-ai/molecule-core:sweep/internal-219-cat-B-delete-github-only molecule-ai/molecule-core:sweep/internal-219-cat-A-delete-mirrored molecule-ai/molecule-core:fix/offsec-003-json-endpoint-sanitize molecule-ai/molecule-core:sweep/internal-219-cat-C3-port-deploy-janitors molecule-ai/molecule-core:sweep/internal-219-cat-C2-port-e2e molecule-ai/molecule-core:fix/publish-runtime-cascade-sha-capture molecule-ai/molecule-core:feat/internal-219-phase-3-port-ci-yml molecule-ai/molecule-core:fix/413-a2a-delegation-offsec-003 molecule-ai/molecule-core:runtime/381-idle-loop-pending-messages molecule-ai/molecule-core:fix/delegations-rows-err-check molecule-ai/molecule-core:fix/a11y-canvas-buttons-staging molecule-ai/molecule-core:runtime/fix-399-a2a-delegation-missing-import-v2 molecule-ai/molecule-core:fix/380-cwe59-symlink-traversal molecule-ai/molecule-core:fix/388-github-token-501-staging molecule-ai/molecule-core:fix/confirm-dialog-wcag-backdrop molecule-ai/molecule-core:infra/sop-tier-check-jq-script-fallback molecule-ai/molecule-core:fix/revert-391-broken-jq-install molecule-ai/molecule-core:fix/a2a-tools-duplicate-dead-code molecule-ai/molecule-core:fix/confirm-dialog-backdrop molecule-ai/molecule-core:fix/canvas-confirm-dialog-backdrop-a11y molecule-ai/molecule-core:infra/jq-install-main molecule-ai/molecule-core:fix/sop-tier-check-jq-main molecule-ai/molecule-core:fix/canvas-dialog-backdrop-a11y molecule-ai/molecule-core:fix/388-github-token-501 molecule-ai/molecule-core:runtime/offsec-003-polling-path-v2 molecule-ai/molecule-core:fix/361-sanitize-delegation-results molecule-ai/molecule-core:runtime/offsec-003-executor-sanitize molecule-ai/molecule-core:fix/cwe22-loadWorkspaceEnv-main molecule-ai/molecule-core:fix/qa-audit-307-308-clean molecule-ai/molecule-core:ci/fix-293-sqlalchemy-pip-install molecule-ai/molecule-core:fix/354-delegation-auto-resume molecule-ai/molecule-core:runtime/platform-url-host-docker-internal molecule-ai/molecule-core:fix/canvas-repair-tests-344 molecule-ai/molecule-core:fix/canvas-statusdot-ts-errors molecule-ai/molecule-core:test/molecule-audit-hooks-coverage molecule-ai/molecule-core:test/a2a-tools-and-send-message-coverage molecule-ai/molecule-core:fix/sop-tier-check-jq-install molecule-ai/molecule-core:test/shared-runtime-helpers-coverage molecule-ai/molecule-core:fix/canvas-topology-sort-orphan molecule-ai/molecule-core:fix/executor-helpers-offsec-003-sanitize molecule-ai/molecule-core:runtime/offsec-003-polling-path molecule-ai/molecule-core:fix/354-a2a-delegation-auto-resume molecule-ai/molecule-core:runtime/fix-a2a-push-delivery-mode-v2 molecule-ai/molecule-core:fix/publish-runtime-add-_sanitize_a2a-to-allowlist molecule-ai/molecule-core:fix/publish-runtime-missing-working-directory molecule-ai/molecule-core:ci/add-sqlalchemy-to-pip-install molecule-ai/molecule-core:ci-resolve-github-gitea-triplicate molecule-ai/molecule-core:sre/offsec-003-boundary-escape molecule-ai/molecule-core:fix/sec-321-path-traversal-clean molecule-ai/molecule-core:fix/a2a-proxy-response-header-timeout-v2 molecule-ai/molecule-core:fix/publish-runtime-workflow-dispatch-inputs molecule-ai/molecule-core:fix/a2a-push-mode-queue-envelope molecule-ai/molecule-core:fix/351-split-publish-runtime-triggers molecule-ai/molecule-core:feat/348-publish-runtime-restore-path-trigger molecule-ai/molecule-core:fix/issue-workspace-dup-name-409-autosuffix molecule-ai/molecule-core:fix/security-OFFSEC003-boundary-escape-334 molecule-ai/molecule-core:fix/security-CWE22-loadWorkspaceEnv-330 molecule-ai/molecule-core:fix/canvas-test-fixes-20260510 molecule-ai/molecule-core:fix/canvas-extractMessageText molecule-ai/molecule-core:fix/qa-307-async-pollution-direct molecule-ai/molecule-core:test/a2a-client-enrich-peer-metadata molecule-ai/molecule-core:fix/docs-309-remote-faq-staging-env molecule-ai/molecule-core:fix/qa-308-push-mode-queue-tests molecule-ai/molecule-core:fix/qa-307-async-pollution molecule-ai/molecule-core:runtime/fix-plugin-registry-import-path molecule-ai/molecule-core:fix/a2a-proxy-response-header-timeout-clean molecule-ai/molecule-core:fix/publish-workspace-server-ci-clone-manifest-retry-main molecule-ai/molecule-core:infra/remove-pr303-tracking molecule-ai/molecule-core:fix/issue-296-plugin-registry-sysmodules molecule-ai/molecule-core:infra/pin-compose-image-digests molecule-ai/molecule-core:chore/sync-main-to-staging molecule-ai/molecule-core:fix/sec-321-path-traversal molecule-ai/molecule-core:fix/a2a-proxy-response-header-timeout molecule-ai/molecule-core:docs/a11y-billing-wcag-patterns molecule-ai/molecule-core:fix/qa-307-test-a2a-inbox-wrappers-asyncio-refactor molecule-ai/molecule-core:runtime/fix-test-config-model-isolation molecule-ai/molecule-core:ci/docker-daemon-health-guard molecule-ai/molecule-core:docs/fix-remote-workspaces-faq molecule-ai/molecule-core:fix/publish-workspace-server-ci-clone-manifest-retry molecule-ai/molecule-core:fix/test-config-env-isolation molecule-ai/molecule-core:ci/staging-sha-pinning molecule-ai/molecule-core:fix/external-connection-user-facing-urls molecule-ai/molecule-core:fix/workspace-server-registry-config-helper molecule-ai/molecule-core:fix/issue-272-sqlalchemy-ci-install molecule-ai/molecule-core:fix/canvas-yaml-utils-nested-arrays-clean molecule-ai/molecule-core:fix/self-delegation-guard molecule-ai/molecule-core:promote/staging-to-main-100546 molecule-ai/molecule-core:fix/a2a-tools-v2 molecule-ai/molecule-core:fix/a2a-tools-and-workflow-cleanup molecule-ai/molecule-core:fix/canvas-test-isolation-fixes-v2 molecule-ai/molecule-core:fix/molecule-model-env-go molecule-ai/molecule-core:runtime/fix-delegate-empty-parts-regression molecule-ai/molecule-core:infra/runtime-doc-playwright-limitation molecule-ai/molecule-core:fix/offsec-001-error-message-scrubbing molecule-ai/molecule-core:fix/offsec-001 molecule-ai/molecule-core:fix/a2a-tools-string-error-handling-clean molecule-ai/molecule-core:fix/core-248-pluginresolver-and-plgh molecule-ai/molecule-core:infra/fix-source-resolver-dup molecule-ai/molecule-core:fix/model-provider-misnomer molecule-ai/molecule-core:fix/a2a-tools-string-error-handling-v2 molecule-ai/molecule-core:fix/canvas-yaml-utils-test-failure molecule-ai/molecule-core:fix/a2a-tools-string-error-handling molecule-ai/molecule-core:fix/internal-214-gosum-vanity-import molecule-ai/molecule-core:fix/canvas-test-isolation-fixes molecule-ai/molecule-core:chore/canvas-statusbadge-test-fix-cherry-pick molecule-ai/molecule-core:fix/canvas-statusbadge-test-role-ambiguity molecule-ai/molecule-core:runtime/fix-mcp-client-localhost-default molecule-ai/molecule-core:fix/core-257-delegation-test-stray-brace molecule-ai/molecule-core:revert/core-d0126662-restart-signals-undefined-h molecule-ai/molecule-core:revert/core-123-plugin-drift-detector molecule-ai/molecule-core:ci/pin-action-and-base-images molecule-ai/molecule-core:fix/org-232-per-workspace-required-env-preflight molecule-ai/molecule-core:fix/ssrf-guard-before-begintx molecule-ai/molecule-core:test/issue-232-per-workspace-required-env-preflight molecule-ai/molecule-core:fix/issue232-org-import-required-env-aggregation molecule-ai/molecule-core:fix/canvas-ts-test-errors molecule-ai/molecule-core:fix/delegations-list-ledger-fallback molecule-ai/molecule-core:wip-snapshot-2026-05-10/mac/molecule-core-tmp53-git-token-helper-wip molecule-ai/molecule-core:wip-snapshot-2026-05-10/mac/molecules-org-molecule-core-registry-prefix molecule-ai/molecule-core:fix/pluginresolver-conflict molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-pluginresolver-conflict molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-qa/stash-package-lock-diff molecule-ai/molecule-core:feat/keyboard-shortcuts-dialog molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-uiux/feat-keyboard-shortcuts-dialog molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-fe/test-canvas-design-tokens-config molecule-ai/molecule-core:test/canvas-cssvar-tests molecule-ai/molecule-core:fix/internal-229-sop-tier-check-tier-low-relaxation molecule-ai/molecule-core:test/canvas-utility-pure-tests molecule-ai/molecule-core:test/canvas-preflight-utils-tests molecule-ai/molecule-core:test/canvas-runtimeprofiles-tests molecule-ai/molecule-core:test/canvas-yaml-utils-tests molecule-ai/molecule-core:test/canvas-pure-function-tests molecule-ai/molecule-core:fix/ci-port-publish-workspace-server-image-228 molecule-ai/molecule-core:fix/ssrf-validate-agent-url-212 molecule-ai/molecule-core:ci/sop-tier-check-approver-teams-fix molecule-ai/molecule-core:fix/sop-tier-check-legacy-flip-229 molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-ki001-telegram-disable-channel molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/feat-a2a-pre-restart-drain-125 molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/feat-plugin-drift-queue-123 molecule-ai/molecule-core:fix/sweeper-race-error-counter molecule-ai/molecule-core:infra/fix-issue-75-gh-cli-gitea-sweep molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-gh-api-gitea-sweep-75 molecule-ai/molecule-core:feat/keyboard-shortcuts-dialog-test molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-sweeper-test-isolation-86 molecule-ai/molecule-core:ci/fix-issue-87-root-skip molecule-ai/molecule-core:fix/test-local-resolver-root-skip molecule-ai/molecule-core:fix/workspace-tests-clear-auth-cache molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-a2a-delegation-success-rendered-as-error molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-be/fix-files-restart-volume-sync molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/tech-debt-rename-net molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/fix-168-mine molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/fix-167-uiux molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-fe/stash-canvas-agent-comms-show-task-text molecule-ai/molecule-core:fix/canvas-agent-comms-show-task-text molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/fix-vitest-pool molecule-ai/molecule-core:fix/info-disclosure-errors molecule-ai/molecule-core:infra/add-temporal-to-main-compose molecule-ai/molecule-core:design/verify-canvas-design-system molecule-ai/molecule-core:fix/workspace-persona-git-identity molecule-ai/molecule-core:fix/175-env-matched-pair-guard molecule-ai/molecule-core:wip-snapshot-2026-05-10/core-lead/fix-149 molecule-ai/molecule-core:refactor/sop-tier-check-extract-script molecule-ai/molecule-core:fix/sop-tier-check-pr-target-security molecule-ai/molecule-core:ci/sop-tier-check-deploy molecule-ai/molecule-core:fix/issue53-admin-token-pair-guard molecule-ai/molecule-core:fix/org-import-started-event-name molecule-ai/molecule-core:refactor/delete-uses-cascade-helper molecule-ai/molecule-core:fix/org-import-reconcile-and-audit molecule-ai/molecule-core:fix/preserve-model-secret-on-restart molecule-ai/molecule-core:feat/persona-bind-mount-local-dev molecule-ai/molecule-core:feat/canary-tier-filter molecule-ai/molecule-core:feat/plugin-version-subscription molecule-ai/molecule-core:feat/plugin-hot-reload-classifier molecule-ai/molecule-core:feat/plugin-atomic-install molecule-ai/molecule-core:feat/air-hot-reload-dev molecule-ai/molecule-core:feat/persona-env-injection molecule-ai/molecule-core:fix/external-resolver-hardening molecule-ai/molecule-core:fix/issue75-class-D-gh-api-to-gitea-rest molecule-ai/molecule-core:fix/cherry-3-files-vitest-postgres-e2eapi molecule-ai/molecule-core:fix/promote-vitest-postgres-fixes molecule-ai/molecule-core:fix/saas-plugin-install-eic molecule-ai/molecule-core:fix/issue-94-e2e-api-parallel-safe-class-b molecule-ai/molecule-core:migrate/issue-71-vanity-imports molecule-ai/molecule-core:fix/handlers-postgres-port-collision-class-b molecule-ai/molecule-core:fix/issue-96-canvas-vitest-cold-start-timeout molecule-ai/molecule-core:fix/hermes-agent-doc-gitea-migration molecule-ai/molecule-core:fix/196-retarget-main-to-staging-gitea-rest molecule-ai/molecule-core:fix/gitea-ci-flakes-issue-88 molecule-ai/molecule-core:fix/pin-upload-artifact-v3-gitea molecule-ai/molecule-core:fix/issue-72-auto-sync-token-canary-v2 molecule-ai/molecule-core:fix/issue75-class-F-gh-run-list-to-statuses molecule-ai/molecule-core:fix/issue75-class-A-gh-pr-to-gitea-rest molecule-ai/molecule-core:feat/issue-63-local-build-from-gitea-v2 molecule-ai/molecule-core:fix/195-auto-promote-staging-gitea-rest molecule-ai/molecule-core:fix/144-branch-protection-check-name-parity-audit molecule-ai/molecule-core:fix/harness-replays-pre-clone-manifest molecule-ai/molecule-core:chore/trigger-auto-sync-verification molecule-ai/molecule-core:fix/codeql-stub-on-gitea-156 molecule-ai/molecule-core:chore/issue173-retrigger-after-ecr-repo-create molecule-ai/molecule-core:fix/issue173-inline-aws-ecr-login molecule-ai/molecule-core:fix/issue173-shell-docker-push molecule-ai/molecule-core:chore/retrigger-harness-replays-post-class-g molecule-ai/molecule-core:fix/issue173-buildx-driver-and-cache molecule-ai/molecule-core:fix/post-suspension-clone-manifest molecule-ai/molecule-core:fix/issue173-followup-platform-dockerfile molecule-ai/molecule-core:fix/post-suspension-github-urls molecule-ai/molecule-core:fix/170-goroutine-bleed-test-isolation molecule-ai/molecule-core:fix/issue173-publish-workspace-server-image molecule-ai/molecule-core:fix/issue36-a2a-proxy-preflight molecule-ai/molecule-core:fix/codeql-continue-on-error-156 molecule-ai/molecule-core:feat/demo-mock-3-bigorg-mock-runtime molecule-ai/molecule-core:feat/demo-mock-1-purchase-success-modal molecule-ai/molecule-core:fix/publish-path-filter-add-scripts molecule-ai/molecule-core:fix/clone-manifest-gitea molecule-ai/molecule-core:chore/touch-publish-workflow-to-trigger molecule-ai/molecule-core:chore/retrigger-publish-post-aws-secrets molecule-ai/molecule-core:chore/cherry-pick-pr23-into-main molecule-ai/molecule-core:chore/backsync-main-into-staging-task-166 molecule-ai/molecule-core:fix/auto-sync-use-devops-token molecule-ai/molecule-core:chore/retrigger-staging-on-fixed-runner-image molecule-ai/molecule-core:chore/drop-github-app-auth-and-ecr-swap molecule-ai/molecule-core:docs/readme-comprehensive-refresh-2026-05-06 molecule-ai/molecule-core:feat/rfc-2945-pr-c-2-canvas-chat-history molecule-ai/molecule-core:fix/issue10-runtime-aware-plugin-install molecule-ai/molecule-core:fix/s8-bind-loopback-dev molecule-ai/molecule-core:fix/14-cascade-gitea-dispatch molecule-ai/molecule-core:docs/molecule-core-bulk-sed molecule-ai/molecule-core:chore/pin-artifact-actions-v3 molecule-ai/molecule-core:fix/lowercase-org-slug molecule-ai/molecule-core:fix/script-ghcr-and-lint-paths molecule-ai/molecule-core:docs/workspace-runtime-readme-source-edit molecule-ai/molecule-core:feat/eic-tunnel-pool-core-11 molecule-ai/molecule-core:chore/rfc-2945-pr-c-3-delete-historyhydration molecule-ai/molecule-core:fix/2872-sqlmock-regex-tightening molecule-ai/molecule-core:fix/cp-orphan-sweeper-2989 molecule-ai/molecule-core:feat/registry-prefix-env-driven-issue-6 molecule-ai/molecule-core:docs/readme-refresh-2026-05-06
molecule-ai/molecule-core:runtime-v0.1.1013 molecule-ai/molecule-core:runtime-v0.1.1011 molecule-ai/molecule-core:runtime-v0.1.1010 molecule-ai/molecule-core:runtime-v0.1.1009 molecule-ai/molecule-core:runtime-v0.1.1008 molecule-ai/molecule-core:runtime-v0.1.1007 molecule-ai/molecule-core:runtime-v0.1.1006 molecule-ai/molecule-core:runtime-v0.1.1005 molecule-ai/molecule-core:runtime-v0.1.1004 molecule-ai/molecule-core:runtime-v0.1.1001 molecule-ai/molecule-core:runtime-v0.1.1003 molecule-ai/molecule-core:runtime-v0.1.1000 molecule-ai/molecule-core:runtime-v0.1.131 molecule-ai/molecule-core:runtime-v0.1.130 molecule-ai/molecule-core:runtime-v1.0.0 molecule-ai/molecule-core:runtime-v0.0.35 molecule-ai/molecule-core:runtime-v0.0.34 molecule-ai/molecule-core:runtime-v0.0.33 molecule-ai/molecule-core:runtime-v0.0.32 molecule-ai/molecule-core:runtime-v0.0.31 molecule-ai/molecule-core:runtime-v0.0.30 molecule-ai/molecule-core:runtime-v0.0.29 molecule-ai/molecule-core:runtime-v0.0.28 molecule-ai/molecule-core:runtime-v0.0.27 molecule-ai/molecule-core:runtime-v0.0.26 molecule-ai/molecule-core:runtime-v0.0.25 molecule-ai/molecule-core:runtime-v0.0.24 molecule-ai/molecule-core:runtime-v0.0.23 molecule-ai/molecule-core:runtime-v0.0.22 molecule-ai/molecule-core:runtime-v0.0.21 molecule-ai/molecule-core:runtime-v0.0.20 molecule-ai/molecule-core:runtime-v0.0.19 molecule-ai/molecule-core:runtime-v0.0.18 molecule-ai/molecule-core:runtime-v0.0.17 molecule-ai/molecule-core:runtime-v0.0.16 molecule-ai/molecule-core:runtime-v0.0.15 molecule-ai/molecule-core:runtime-v0.0.14 molecule-ai/molecule-core:runtime-v0.0.13 molecule-ai/molecule-core:runtime-v0.0.12 molecule-ai/molecule-core:runtime-v0.0.11 molecule-ai/molecule-core:runtime-v0.0.10 molecule-ai/molecule-core:runtime-v0.0.9 molecule-ai/molecule-core:runtime-v0.0.8 molecule-ai/molecule-core:runtime-v0.0.7 molecule-ai/molecule-core:runtime-v0.0.6 molecule-ai/molecule-core:runtime-v0.0.5 molecule-ai/molecule-core:runtime-v0.0.4 molecule-ai/molecule-core:runtime-v0.0.3 molecule-ai/molecule-core:runtime-v0.0.2 molecule-ai/molecule-core:runtime-v0.0.1 molecule-ai/molecule-core:ci-trigger-1776771586 molecule-ai/molecule-core:ci-retry-1776771601 molecule-ai/molecule-core:ci-retrigger-1776771591

6 Commits
fix/plugin-uninstall-exec-errors ... cr2/sec-c-2130-transcript-ssrf

Author SHA1 Message Date
devops-engineer fd8113d593 Merge branch 'main' into cr2/sec-c-2130-transcript-ssrf
ci-arm64-advisory / fast-checks (pull_request) Waiting to run
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 5s
Details
CI / Python Lint & Test (pull_request) Successful in 4s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 9s
Details
E2E Chat / detect-changes (pull_request) Successful in 9s
Details
Lint forbidden tenant-env keys / Scan for repo-host token write into tenant workspace surface (pull_request) Successful in 4s
Details
Lint forbidden tenant-env keys / Scan workspace_secrets writers for forbidden env keys (pull_request) Successful in 5s
Details
Harness Replays / detect-changes (pull_request) Successful in 7s
Details
E2E Chat / E2E Chat (pull_request) Successful in 3s
Details
CI / Detect changes (pull_request) Successful in 25s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 6s
Details
gate-check-v3 / gate-check (pull_request_target) Successful in 9s
Details
qa-review / approved (pull_request_target) Failing after 7s
Details
Lint shellcheck (arm64 pilot) / shellcheck-arm64 (pilot) (pull_request) Successful in 14s
Details
sop-checklist / review-refire (pull_request_target) Has been skipped
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 23s
Details
sop-checklist / all-items-acked (pull_request) acked: 0/7 — missing: comprehensive-testing, local-postgres-e2e, staging-smoke, +4 — body-unfilled: comprehensive-testing, local-postgres-e2
Details
sop-checklist / na-declarations (pull_request) N/A: (none)
Details
Harness Replays / Harness Replays (pull_request) Successful in 9s
Details
sop-checklist / all-items-acked (pull_request_target) Successful in 5s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 2s
Details
sop-tier-check / tier-check (pull_request_target) Failing after 6s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 35s
Details
security-review / approved (pull_request_target) Failing after 14s
Details
CI / Canvas (Next.js) (pull_request) Successful in 8s
Details
CI / Canvas Deploy Status (pull_request) Has been skipped
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 5s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 58s
Details
lint-required-no-paths / lint-required-no-paths (pull_request) Successful in 58s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 1m4s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (local) (pull_request) Successful in 1m46s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (pull_request) Successful in 5s
Details
E2E Staging SaaS (full lifecycle) / pr-validate (pull_request) Successful in 24s
Details
CI / Platform (Go) (pull_request) Failing after 5m33s
Details
CI / all-required (pull_request) Has been skipped
Details
E2E Staging SaaS (full lifecycle) / E2E Staging Platform Boot (pull_request) Failing after 4m35s
Details
E2E Staging SaaS (full lifecycle) / E2E Staging SaaS (pull_request) Failing after 8m40s
Details
E2E Staging External Runtime / E2E Staging External Runtime (pull_request) Has been cancelled
Details
2026-06-06 16:30:42 +00:00
devops-engineer bce7e4a98c Merge branch 'main' into cr2/sec-c-2130-transcript-ssrf
ci-arm64-advisory / fast-checks (pull_request) Waiting to run
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 11s
Details
CI / Python Lint & Test (pull_request) Successful in 11s
Details
CI / Detect changes (pull_request) Successful in 16s
Details
CI / Canvas (Next.js) (pull_request) Successful in 4s
Details
E2E Chat / detect-changes (pull_request) Successful in 18s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 2s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 23s
Details
CI / Canvas Deploy Status (pull_request) Has been skipped
Details
E2E Chat / E2E Chat (pull_request) Successful in 3s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 4s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 20s
Details
Lint forbidden tenant-env keys / Scan for repo-host token write into tenant workspace surface (pull_request) Successful in 5s
Details
Harness Replays / detect-changes (pull_request) Successful in 12s
Details
Lint forbidden tenant-env keys / Scan workspace_secrets writers for forbidden env keys (pull_request) Successful in 11s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 9s
Details
Lint shellcheck (arm64 pilot) / shellcheck-arm64 (pilot) (pull_request) Successful in 17s
Details
gate-check-v3 / gate-check (pull_request_target) Successful in 18s
Details
security-review / approved (pull_request_target) Failing after 11s
Details
sop-checklist / review-refire (pull_request_target) Has been skipped
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 22s
Details
sop-checklist / all-items-acked (pull_request) acked: 0/7 — missing: comprehensive-testing, local-postgres-e2e, staging-smoke, +4 — body-unfilled: comprehensive-testing, local-postgres-e2
Details
Harness Replays / Harness Replays (pull_request) Successful in 3s
Details
sop-checklist / na-declarations (pull_request) N/A: (none)
Details
sop-checklist / all-items-acked (pull_request_target) Successful in 9s
Details
sop-tier-check / tier-check (pull_request_target) Failing after 7s
Details
qa-review / approved (pull_request_target) Failing after 26s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (local) (pull_request) Successful in 1m32s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (pull_request) Successful in 15s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 1m13s
Details
lint-required-no-paths / lint-required-no-paths (pull_request) Successful in 1m22s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 1m52s
Details
CI / Platform (Go) (pull_request) Failing after 3m17s
Details
CI / all-required (pull_request) Has been skipped
Details
E2E Staging SaaS (full lifecycle) / pr-validate (pull_request) Successful in 27s
Details
E2E Staging SaaS (full lifecycle) / E2E Staging Platform Boot (pull_request) Failing after 5m10s
Details
E2E Staging SaaS (full lifecycle) / E2E Staging SaaS (pull_request) Failing after 11m8s
Details
E2E Staging External Runtime / E2E Staging External Runtime (pull_request) Has been cancelled
Details
2026-06-06 13:46:12 +00:00
devops-engineer 3d50ec2b7f Merge branch 'main' into cr2/sec-c-2130-transcript-ssrf
ci-arm64-advisory / fast-checks (pull_request) Waiting to run
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 4s
Details
CI / Python Lint & Test (pull_request) Successful in 3s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 5s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 7s
Details
CI / Detect changes (pull_request) Successful in 15s
Details
Harness Replays / detect-changes (pull_request) Successful in 4s
Details
Lint forbidden tenant-env keys / Scan workspace_secrets writers for forbidden env keys (pull_request) Successful in 3s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 17s
Details
E2E Chat / detect-changes (pull_request) Successful in 16s
Details
Lint shellcheck (arm64 pilot) / shellcheck-arm64 (pilot) (pull_request) Successful in 15s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 6s
Details
Lint forbidden tenant-env keys / Scan for repo-host token write into tenant workspace surface (pull_request) Successful in 11s
Details
sop-checklist / review-refire (pull_request_target) Has been skipped
Details
sop-checklist / all-items-acked (pull_request) acked: 0/7 — missing: comprehensive-testing, local-postgres-e2e, staging-smoke, +4 — body-unfilled: comprehensive-testing, local-postgres-e2
Details
sop-checklist / na-declarations (pull_request) N/A: (none)
Details
sop-checklist / all-items-acked (pull_request_target) Successful in 7s
Details
security-review / approved (pull_request_target) Failing after 17s
Details
gate-check-v3 / gate-check (pull_request_target) Successful in 18s
Details
qa-review / approved (pull_request_target) Failing after 18s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (local) (pull_request) Successful in 33s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (pull_request) Successful in 15s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 2s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 5s
Details
sop-tier-check / tier-check (pull_request_target) Failing after 13s
Details
Harness Replays / Harness Replays (pull_request) Successful in 2s
Details
CI / Canvas (Next.js) (pull_request) Successful in 5s
Details
E2E Chat / E2E Chat (pull_request) Successful in 8s
Details
lint-required-no-paths / lint-required-no-paths (pull_request) Successful in 56s
Details
CI / Canvas Deploy Status (pull_request) Has been skipped
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 57s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 1m7s
Details
CI / Platform (Go) (pull_request) Failing after 5m40s
Details
CI / all-required (pull_request) Has been skipped
Details
E2E Staging SaaS (full lifecycle) / pr-validate (pull_request) Successful in 41s
Details
E2E Staging SaaS (full lifecycle) / E2E Staging Platform Boot (pull_request) Failing after 6m24s
Details
E2E Staging SaaS (full lifecycle) / E2E Staging SaaS (pull_request) Failing after 7m55s
Details
E2E Staging External Runtime / E2E Staging External Runtime (pull_request) Has been cancelled
Details
2026-06-06 11:05:18 +00:00
Molecule AI Dev Engineer A (Kimi) 2f585ab183 fix(tests): stop setupTestDB from unconditionally disabling SSRF guard
ci-arm64-advisory / fast-checks (pull_request) Waiting to run
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 5s
Details
CI / Detect changes (pull_request) Successful in 6s
Details
Lint shellcheck (arm64 pilot) / shellcheck-arm64 (pilot) (pull_request) Failing after 2s
Details
CI / Python Lint & Test (pull_request) Successful in 6s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 10s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 7s
Details
E2E Chat / detect-changes (pull_request) Successful in 12s
Details
Lint forbidden tenant-env keys / Scan for repo-host token write into tenant workspace surface (pull_request) Successful in 3s
Details
Harness Replays / detect-changes (pull_request) Successful in 6s
Details
Lint forbidden tenant-env keys / Scan workspace_secrets writers for forbidden env keys (pull_request) Successful in 9s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 14s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 7s
Details
sop-checklist / all-items-acked (pull_request) acked: 0/7 — missing: comprehensive-testing, local-postgres-e2e, staging-smoke, +4 — body-unfilled: comprehensive-testing, local-postgres-e2
Details
sop-checklist / na-declarations (pull_request) N/A: (none)
Details
sop-checklist / all-items-acked (pull_request_target) Successful in 4s
Details
sop-checklist / review-refire (pull_request_target) Has been skipped
Details
gate-check-v3 / gate-check (pull_request_target) Successful in 14s
Details
sop-tier-check / tier-check (pull_request_target) Failing after 5s
Details
CI / Canvas (Next.js) (pull_request) Successful in 1s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (local) (pull_request) Successful in 32s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 2s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (pull_request) Has been skipped
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 2s
Details
E2E Chat / E2E Chat (pull_request) Successful in 2s
Details
Harness Replays / Harness Replays (pull_request) Successful in 1s
Details
security-review / approved (pull_request_target) Failing after 25s
Details
qa-review / approved (pull_request_target) Failing after 25s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
E2E Staging SaaS (full lifecycle) / pr-validate (pull_request) Successful in 46s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 51s
Details
lint-required-no-paths / lint-required-no-paths (pull_request) Successful in 1m14s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 1m2s
Details
E2E Staging SaaS (full lifecycle) / E2E Staging SaaS (pull_request) Failing after 2m19s
Details
E2E Staging External Runtime / E2E Staging External Runtime (pull_request) Successful in 5m14s
Details
CI / Platform (Go) (pull_request) Failing after 4m51s
Details
CI / all-required (pull_request) Has been skipped
Details 
Issue #807: setupTestDB called setSSRFCheckForTest(false) for every test,
which silently overrode the SSRF guard in regression tests that explicitly
enable it (transcript_test.go and registry_test.go). The later call to
setSSRFCheckForTest(true) in those tests was being masked.

Change setupTestDB to preserve (not mutate) the existing SSRF state across
the test boundary. Tests that genuinely need SSRF disabled can call
setSSRFCheckForTest(false) inline.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
 2026-06-05 19:03:52 +00:00
Molecule AI Dev Engineer A (Kimi) 352c47d028 fix(test): reorder SSRF enable after setupTestDB so tests run with guard ON (internal#807)
ci-arm64-advisory / fast-checks (pull_request) Waiting to run
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 5s
Details
Lint shellcheck (arm64 pilot) / shellcheck-arm64 (pilot) (pull_request) Failing after 2s
Details
CI / Python Lint & Test (pull_request) Successful in 7s
Details
Harness Replays / detect-changes (pull_request) Successful in 6s
Details
E2E Chat / detect-changes (pull_request) Successful in 13s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 10s
Details
Lint forbidden tenant-env keys / Scan for repo-host token write into tenant workspace surface (pull_request) Successful in 3s
Details
gate-check-v3 / gate-check (pull_request_target) Successful in 4s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 7s
Details
qa-review / approved (pull_request_target) Failing after 3s
Details
security-review / approved (pull_request_target) Failing after 4s
Details
sop-checklist / review-refire (pull_request_target) Has been skipped
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 28s
Details
Lint forbidden tenant-env keys / Scan workspace_secrets writers for forbidden env keys (pull_request) Successful in 20s
Details
CI / Detect changes (pull_request) Successful in 29s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 27s
Details
sop-checklist / all-items-acked (pull_request) acked: 0/7 — missing: comprehensive-testing, local-postgres-e2e, staging-smoke, +4 — body-unfilled: comprehensive-testing, local-postgres-e2
Details
sop-checklist / na-declarations (pull_request) N/A: (none)
Details
sop-checklist / all-items-acked (pull_request_target) Successful in 4s
Details
sop-tier-check / tier-check (pull_request_target) Failing after 5s
Details
Harness Replays / Harness Replays (pull_request) Successful in 5s
Details
CI / Canvas (Next.js) (pull_request) Successful in 3s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (local) (pull_request) Successful in 35s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 1s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (pull_request) Successful in 5s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 3s
Details
E2E Chat / E2E Chat (pull_request) Successful in 23s
Details
E2E Staging SaaS (full lifecycle) / pr-validate (pull_request) Successful in 53s
Details
lint-required-no-paths / lint-required-no-paths (pull_request) Successful in 56s
Details
E2E Staging SaaS (full lifecycle) / E2E Staging SaaS (pull_request) Failing after 2m38s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 2m18s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 2m17s
Details
CI / Platform (Go) (pull_request) Successful in 4m0s
Details
CI / all-required (pull_request) Successful in 2s
Details
E2E Staging External Runtime / E2E Staging External Runtime (pull_request) Successful in 5m16s
Details
sop-tier-check / tier-check (pull_request_review) Successful in 5s
Details 
setupTestDB unconditionally calls setSSRFCheckForTest(false) and
registers t.Cleanup(restore). When the new SSRF regression tests
called setSSRFCheckForTest(true) *before* setupTestDB, the DB setup
overwrote the flag back to false, so the tests ran with SSRF
disabled and got 404/502 instead of the expected 400 BadRequest.

Fix: move setSSRFCheckForTest(true) to AFTER setupTestDB and switch
from defer restore() to t.Cleanup(restore) so the two restore
functions compose correctly in LIFO order.

Affected tests:\n- TestTranscript_RejectsCloudMetadataIP\n- TestTranscript_RejectsNonHTTPScheme\n- TestTranscript_RejectsMetadataHostname\n- TestTranscript_RejectsLinkLocalIPv6\n- TestTranscript_RejectsLoopbackURL\n- TestUpdateCard_RejectsMetadataURL\n- TestUpdateCard_RejectsNonHTTPScheme\n
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
 2026-06-05 11:37:35 +00:00
Molecule AI Code Reviewer (2) e3ec2a259f fix(security): harden transcript URL validation
ci-arm64-advisory / fast-checks (pull_request) Waiting to run
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 3s
Details
CI / Python Lint & Test (pull_request) Successful in 3s
Details
Lint shellcheck (arm64 pilot) / shellcheck-arm64 (pilot) (pull_request) Failing after 2s
Details
Lint forbidden tenant-env keys / Scan workspace_secrets writers for forbidden env keys (pull_request) Successful in 3s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 9s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 9s
Details
Lint forbidden tenant-env keys / Scan for repo-host token write into tenant workspace surface (pull_request) Successful in 3s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 3s
Details
gate-check-v3 / gate-check (pull_request_target) Successful in 3s
Details
CI / Detect changes (pull_request) Successful in 18s
Details
Harness Replays / detect-changes (pull_request) Successful in 14s
Details
sop-checklist / review-refire (pull_request_target) Has been skipped
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 14s
Details
E2E Chat / detect-changes (pull_request) Successful in 16s
Details
qa-review / approved (pull_request_target) Failing after 3s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 2s
Details
security-review / approved (pull_request_target) Failing after 3s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 1s
Details
CI / Canvas (Next.js) (pull_request) Successful in 1s
Details
sop-checklist / all-items-acked (pull_request) acked: 0/7 — missing: comprehensive-testing, local-postgres-e2e, staging-smoke, +4 — body-unfilled: comprehensive-testing, local-postgres-e2
Details
sop-checklist / na-declarations (pull_request) N/A: (none)
Details
E2E Chat / E2E Chat (pull_request) Successful in 2s
Details
Harness Replays / Harness Replays (pull_request) Successful in 1s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
sop-tier-check / tier-check (pull_request_target) Has been cancelled
Details
sop-checklist / all-items-acked (pull_request_target) Successful in 29s
Details
sop-tier-check / tier-check (pull_request_review) Successful in 4s
Details
lint-required-no-paths / lint-required-no-paths (pull_request) Successful in 56s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 1m1s
Details
E2E Staging SaaS (full lifecycle) / pr-validate (pull_request) Successful in 1m20s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (local) (pull_request) Successful in 2m26s
Details
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (pull_request) Successful in 4s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 3m4s
Details
CI / Platform (Go) (pull_request) Failing after 5m18s
Details
CI / all-required (pull_request) Has been skipped
Details
E2E Staging External Runtime / E2E Staging External Runtime (pull_request) Successful in 6m52s
Details
E2E Staging SaaS (full lifecycle) / E2E Staging SaaS (pull_request) Failing after 7m15s
Details
2026-06-02 20:33:24 +00:00
5 changed files with 103 additions and 104 deletions
Expand all files Collapse all files
workspace-server/internal/handlers/handlers_test.go
+6 -5
View File
@@ -94,11 +94,12 @@ func setupTestDB(t *testing.T) sqlmock.Sqlmock {
mockDB.Close()
})
// Disable SSRF checks for the duration of this test only. Restore
// the previous state via t.Cleanup so that TestIsSafeURL_* tests
// (which run with SSRF enabled) are not affected by state leak.
restore := setSSRFCheckForTest(false)
t.Cleanup(restore)
// Preserve SSRF state across this test. Individual tests that need
// SSRF disabled can call setSSRFCheckForTest(false) themselves.
// This prevents setupTestDB from silently overriding SSRF guards in
// regression tests that assert the guard is active (issue #807).
prevSSRF := ssrfCheckEnabled
t.Cleanup(func() { ssrfCheckEnabled = prevSSRF })
// The wsauth.platform_inbound_secret cache (#189) is package-level
// state in another package — without a reset between tests, a
workspace-server/internal/handlers/registry.go
+12
View File
@@ -3,6 +3,7 @@ package handlers
import (
"context"
"database/sql"
"encoding/json"
"errors"
"fmt"
"log"
@@ -873,6 +874,17 @@ func (h *RegistryHandler) UpdateCard(c *gin.Context) {
return // response already written
}
var card struct {
URL string `json:"url"`
}
if err := json.Unmarshal(payload.AgentCard, &card); err == nil && card.URL != "" {
if err := isSafeURL(card.URL); err != nil {
log.Printf("UpdateCard: workspace %s agent_card url rejected: %v", payload.WorkspaceID, err)
c.JSON(http.StatusBadRequest, gin.H{"error": "workspace URL not allowed"})
return
}
}
agentCardStr := string(payload.AgentCard)
_, err := db.DB.ExecContext(c.Request.Context(), `
UPDATE workspaces SET agent_card = $2::jsonb, updated_at = now() WHERE id = $1
workspace-server/internal/handlers/registry_test.go
+51
View File
@@ -627,6 +627,57 @@ func TestUpdateCard_DBError(t *testing.T) {
}
}
func TestUpdateCard_RejectsMetadataURL(t *testing.T) {
t.Setenv("MOLECULE_ENV", "production")
mock := setupTestDB(t)
restore := setSSRFCheckForTest(true)
t.Cleanup(restore)
setupTestRedis(t)
broadcaster := newTestBroadcaster()
handler := NewRegistryHandler(broadcaster)
w := httptest.NewRecorder()
c, _ := gin.CreateTestContext(w)
body := `{"workspace_id":"ws-card","agent_card":{"name":"bad","url":"http://169.254.169.254/latest/meta-data/"}}`
c.Request = httptest.NewRequest("POST", "/registry/update-card", bytes.NewBufferString(body))
c.Request.Header.Set("Content-Type", "application/json")
handler.UpdateCard(c)
if w.Code != http.StatusBadRequest {
t.Errorf("expected status 400, got %d: %s", w.Code, w.Body.String())
}
if err := mock.ExpectationsWereMet(); err != nil {
t.Errorf("unmet sqlmock expectations: %v", err)
}
}
func TestUpdateCard_RejectsNonHTTPScheme(t *testing.T) {
mock := setupTestDB(t)
restore := setSSRFCheckForTest(true)
t.Cleanup(restore)
setupTestRedis(t)
broadcaster := newTestBroadcaster()
handler := NewRegistryHandler(broadcaster)
w := httptest.NewRecorder()
c, _ := gin.CreateTestContext(w)
body := `{"workspace_id":"ws-card","agent_card":{"name":"bad","url":"file:///etc/passwd"}}`
c.Request = httptest.NewRequest("POST", "/registry/update-card", bytes.NewBufferString(body))
c.Request.Header.Set("Content-Type", "application/json")
handler.UpdateCard(c)
if w.Code != http.StatusBadRequest {
t.Errorf("expected status 400, got %d: %s", w.Code, w.Body.String())
}
if err := mock.ExpectationsWereMet(); err != nil {
t.Errorf("unmet sqlmock expectations: %v", err)
}
}
// TestRegister_GuardAgainstResurrectingRemovedRow verifies the #73 fix:
// the ON CONFLICT UPSERT must carry a `WHERE status IS DISTINCT FROM 'removed'`
// clause so that a late heartbeat from a workspace that was just deleted
workspace-server/internal/handlers/transcript.go
+1 -59
View File
@@ -12,13 +12,10 @@ package handlers
import (
"context"
"fmt"
"io"
"log"
"net"
"net/http"
"net/url"
"strings"
"time"
"git.moleculesai.app/molecule-ai/molecule-core/workspace-server/internal/db"
@@ -66,7 +63,7 @@ func (h *TranscriptHandler) Get(c *gin.Context) {
c.JSON(http.StatusBadRequest, gin.H{"error": "invalid workspace URL"})
return
}
if err := validateWorkspaceURL(target); err != nil {
if err := isSafeURL(target.String()); err != nil {
log.Printf("transcript: workspace %s URL rejected: %v", workspaceID, err)
c.JSON(http.StatusBadRequest, gin.H{"error": "workspace URL not allowed"})
return
@@ -121,58 +118,3 @@ func (h *TranscriptHandler) Get(c *gin.Context) {
}
c.Data(resp.StatusCode, resp.Header.Get("Content-Type"), body)
}
// validateWorkspaceURL enforces that the agent_card URL is safe to
// proxy to. agent_card is attacker-writable via /registry/register so
// any workspace-token holder could otherwise point the URL at cloud
// metadata (169.254.169.254), the Docker host, or other internal
// services reachable from the platform container.
//
// Policy:
// - scheme must be http or https (no file://, gopher://, ftp://, etc.)
// - host must be present
// - block cloud metadata endpoints (IMDS, GCP, Azure)
// - block link-local IPs (169.254/16 IPv4, fe80::/10 IPv6)
// - loopback is allowed — local dev runs workspaces on 127.0.0.1
// - Docker internal hostnames (host.docker.internal, *.molecule-core-net)
// are allowed; the whole threat model assumes the platform already
// trusts peers on that network
func validateWorkspaceURL(u *url.URL) error {
if u.Scheme != "http" && u.Scheme != "https" {
return fmt.Errorf("unsupported scheme %q", u.Scheme)
}
host := u.Hostname()
if host == "" {
return fmt.Errorf("empty host")
}
// Hostname blocklist (pre-IP-parse — these are usually resolved by
// the HTTP stack, not by us).
lower := strings.ToLower(host)
for _, banned := range []string{
"metadata.google.internal",
"metadata.azure.com",
"metadata",
} {
if lower == banned {
return fmt.Errorf("metadata hostname blocked: %s", host)
}
}
// IP-literal checks.
if ip := net.ParseIP(host); ip != nil {
// IMDS / cloud metadata.
if ip.String() == "169.254.169.254" {
return fmt.Errorf("cloud metadata endpoint blocked")
}
// Link-local: IPv4 169.254.0.0/16, IPv6 fe80::/10.
if ip.IsLinkLocalUnicast() || ip.IsLinkLocalMulticast() {
return fmt.Errorf("link-local address blocked: %s", host)
}
// IPv6 unique local fd00::/8 — used by some IMDS implementations.
if ip.To4() == nil && len(ip) == net.IPv6len && ip[0] == 0xfd {
return fmt.Errorf("IPv6 unique-local address blocked: %s", host)
}
}
return nil
}
workspace-server/internal/handlers/transcript_test.go
+33 -40
View File
@@ -5,16 +5,12 @@ import (
"encoding/json"
"net/http"
"net/http/httptest"
"net/url"
"testing"
"github.com/DATA-DOG/go-sqlmock"
"github.com/gin-gonic/gin"
)
// urlParse is a tiny wrapper so table-driven tests can keep their lines short.
func urlParse(s string) (*url.URL, error) { return url.Parse(s) }
// expectWorkspaceURLLookup programs the sqlmock to answer the SELECT that
// TranscriptHandler.Get issues for `agent_card->>'url'`. Tests call this
// instead of inserting real rows (we use sqlmock — there's no DB).
@@ -50,6 +46,7 @@ func TestTranscript_WorkspaceNotFound(t *testing.T) {
}
func TestTranscript_ProxyForwardsAndReturnsBody(t *testing.T) {
allowLoopbackForTest(t)
mock := setupTestDB(t)
setupTestRedis(t)
h := NewTranscriptHandler()
@@ -90,6 +87,7 @@ func TestTranscript_ProxyForwardsAndReturnsBody(t *testing.T) {
}
func TestTranscript_ProxyPropagatesAllowlistedQueryParams(t *testing.T) {
allowLoopbackForTest(t)
mock := setupTestDB(t)
setupTestRedis(t)
h := NewTranscriptHandler()
@@ -115,12 +113,15 @@ func TestTranscript_ProxyPropagatesAllowlistedQueryParams(t *testing.T) {
}
// SSRF regression tests — see issue #272. agent_card->>'url' is attacker-
// writable via /registry/register so validateWorkspaceURL must reject
// writable via /registry/register so the production SSRF policy must reject
// link-local / cloud-metadata / non-http(s) targets before the outbound
// HTTP call fires.
func TestTranscript_RejectsCloudMetadataIP(t *testing.T) {
t.Setenv("MOLECULE_ENV", "production")
mock := setupTestDB(t)
restore := setSSRFCheckForTest(true)
t.Cleanup(restore)
setupTestRedis(t)
h := NewTranscriptHandler()
@@ -138,6 +139,8 @@ func TestTranscript_RejectsCloudMetadataIP(t *testing.T) {
func TestTranscript_RejectsNonHTTPScheme(t *testing.T) {
mock := setupTestDB(t)
restore := setSSRFCheckForTest(true)
t.Cleanup(restore)
setupTestRedis(t)
h := NewTranscriptHandler()
@@ -155,6 +158,8 @@ func TestTranscript_RejectsNonHTTPScheme(t *testing.T) {
func TestTranscript_RejectsMetadataHostname(t *testing.T) {
mock := setupTestDB(t)
restore := setSSRFCheckForTest(true)
t.Cleanup(restore)
setupTestRedis(t)
h := NewTranscriptHandler()
@@ -171,7 +176,10 @@ func TestTranscript_RejectsMetadataHostname(t *testing.T) {
}
func TestTranscript_RejectsLinkLocalIPv6(t *testing.T) {
t.Setenv("MOLECULE_ENV", "production")
mock := setupTestDB(t)
restore := setSSRFCheckForTest(true)
t.Cleanup(restore)
setupTestRedis(t)
h := NewTranscriptHandler()
@@ -187,45 +195,28 @@ func TestTranscript_RejectsLinkLocalIPv6(t *testing.T) {
}
}
// validateWorkspaceURL unit tests — pure function, no DB/Redis needed.
func TestValidateWorkspaceURL(t *testing.T) {
cases := []struct {
name string
raw string
wantErr bool
}{
{"http localhost allowed (dev)", "http://127.0.0.1:8000", false},
{"https public allowed", "https://agent.example.com", false},
{"docker internal allowed", "http://host.docker.internal:8000", false},
{"IMDS IP rejected", "http://169.254.169.254", true},
{"GCP metadata hostname rejected", "http://metadata.google.internal", true},
{"Azure metadata rejected", "http://metadata.azure.com", true},
{"file scheme rejected", "file:///etc/passwd", true},
{"gopher rejected", "gopher://internal:70/", true},
{"IPv6 link-local rejected", "http://[fe80::1]", true},
{"IPv4 link-local multicast rejected", "http://224.0.0.1", true},
}
for _, tc := range cases {
t.Run(tc.name, func(t *testing.T) {
u, parseErr := urlParse(tc.raw)
if parseErr != nil && !tc.wantErr {
t.Fatalf("parse error: %v", parseErr)
}
if parseErr != nil {
return // unparseable URLs are rejected upstream; not this function's job
}
err := validateWorkspaceURL(u)
if tc.wantErr && err == nil {
t.Errorf("expected error for %q, got nil", tc.raw)
}
if !tc.wantErr && err != nil {
t.Errorf("expected OK for %q, got %v", tc.raw, err)
}
})
func TestTranscript_RejectsLoopbackURL(t *testing.T) {
t.Setenv("MOLECULE_ENV", "production")
mock := setupTestDB(t)
restore := setSSRFCheckForTest(true)
t.Cleanup(restore)
setupTestRedis(t)
h := NewTranscriptHandler()
wsID := expectWorkspaceURLLookup(mock, "http://127.0.0.1:8000/")
w := httptest.NewRecorder()
c, _ := gin.CreateTestContext(w)
c.Params = gin.Params{{Key: "id", Value: wsID}}
c.Request = httptest.NewRequest("GET", "/workspaces/"+wsID+"/transcript", nil)
h.Get(c)
if w.Code != http.StatusBadRequest {
t.Errorf("expected 400 for loopback target, got %d: %s", w.Code, w.Body.String())
}
}
func TestTranscript_UnreachableWorkspaceReturns502(t *testing.T) {
allowLoopbackForTest(t)
mock := setupTestDB(t)
setupTestRedis(t)
h := NewTranscriptHandler()
@@ -255,6 +246,7 @@ func TestTranscript_UnreachableWorkspaceReturns502(t *testing.T) {
// req.Header.Set("Authorization", c.GetHeader("Authorization"))
// This test verifies the fix and acts as a regression guard.
func TestTranscript_ForwardsAuthHeader(t *testing.T) {
allowLoopbackForTest(t)
mock := setupTestDB(t)
setupTestRedis(t)
h := NewTranscriptHandler()
@@ -308,6 +300,7 @@ func TestTranscript_ForwardsAuthHeader(t *testing.T) {
// request. The workspace will return 401 in this case, which the proxy
// faithfully relays — no silent upgrade of privilege.
func TestTranscript_NoAuthHeader_PassesThrough(t *testing.T) {
allowLoopbackForTest(t)
mock := setupTestDB(t)
setupTestRedis(t)
h := NewTranscriptHandler()