molecule-ai/molecule-core
35
0
Fork 2
Code Issues 16 Pull Requests 2 Actions 49 Packages Projects Releases Wiki Activity

chore(sync): back-merge main into staging — manual bridge while Class D auto-sync plumbs (#165) #27

Closed
claude-ceo-assistant wants to merge 11 commits from chore/backsync-main-into-staging-task-166 into staging
pull from: chore/backsync-main-into-staging-task-166
merge into: molecule-ai:staging
Conversation 0 Commits 11 Files Changed 15 +586 -29

11 Commits

Author SHA1 Message Date
devops-engineer
dc49d8aa0f chore: retrigger CI post F1 (network=host) runner config change
Some checks failed
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 6s
Details
Check merge_group trigger on required workflows / Required workflows have merge_group trigger (pull_request) Successful in 6s
Details
pr-guards / disable-auto-merge-on-push (pull_request) Failing after 3s
Details
CI / Detect changes (pull_request) Successful in 8s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 8s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 9s
Details
Lint curl status-code capture / Scan workflows for curl status-capture pollution (pull_request) Successful in 8s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 10s
Details
Harness Replays / detect-changes (pull_request) Successful in 10s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 11s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 12s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 11s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 15s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 7s
Details
Harness Replays / Harness Replays (pull_request) Failing after 49s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Failing after 1m35s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Failing after 1m37s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Failing after 1m47s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 3m38s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 3m58s
Details
CI / Canvas (Next.js) (pull_request) Successful in 5m6s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
CI / Platform (Go) (pull_request) Failing after 6m19s
Details
CI / Python Lint & Test (pull_request) Successful in 7m20s
Details
2026-05-07 07:17:51 -07:00
devops-engineer
5835746e68 chore(sync): back-merge main into staging — manual bridge while Class D auto-sync plumbs (Task #165)
Some checks failed
Check merge_group trigger on required workflows / Required workflows have merge_group trigger (pull_request) Successful in 5s
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 5s
Details
CI / Detect changes (pull_request) Successful in 7s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 8s
Details
Lint curl status-code capture / Scan workflows for curl status-capture pollution (pull_request) Successful in 8s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 9s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 8s
Details
Harness Replays / detect-changes (pull_request) Successful in 9s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 8s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 9s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 7s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 5s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 11s
Details
Harness Replays / Harness Replays (pull_request) Failing after 32s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Failing after 1m9s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Failing after 1m26s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Failing after 1m40s
Details
CI / Canvas (Next.js) (pull_request) Successful in 2m52s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
CI / Platform (Go) (pull_request) Failing after 3m25s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Failing after 6m15s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Failing after 10m7s
Details
CI / Python Lint & Test (pull_request) Failing after 23m53s
Details 
main has 9 commits not on staging (including S-8 dev-mode fail-open
fix and SSOT-route container check). staging has 27 commits not on
main (in-flight features). 3-way merge.

Per saved memory feedback_use_merge_commits_not_squash: merge,
not squash.

Manual back-sync today, auto-sync workflow takes over once
controlplane#29 + core#26 ship the AUTO_SYNC_TOKEN plumbing
(Task #165).

# Conflicts:
#	.github/workflows/codeql.yml
#	.github/workflows/harness-replays.yml
#	.github/workflows/publish-runtime.yml
#	.github/workflows/publish-workspace-server-image.yml
 2026-05-07 07:04:03 -07:00
claude-ceo-assistant
6fac24e3de Merge pull request 'fix(workspace-server): SSOT-route container check + 422 on external runtimes (closes #10)' (#12) from fix/issue10-runtime-aware-plugin-install into main
Some checks failed
Auto-sync main → staging / sync-staging (push) Failing after 13s
Details
Block internal-flavored paths / Block forbidden paths (push) Successful in 9s
Details
CI / Detect changes (push) Successful in 11s
Details
E2E API Smoke Test / detect-changes (push) Successful in 10s
Details
E2E Staging Canvas (Playwright) / detect-changes (push) Successful in 11s
Details
Handlers Postgres Integration / detect-changes (push) Successful in 11s
Details
Harness Replays / detect-changes (push) Successful in 13s
Details
Runtime PR-Built Compatibility / detect-changes (push) Successful in 14s
Details
Secret scan / Scan diff for credential-shaped strings (push) Successful in 11s
Details
CI / Shellcheck (E2E scripts) (push) Successful in 5s
Details
CI / Python Lint & Test (push) Successful in 7s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (push) Failing after 1m3s
Details
publish-workspace-server-image / build-and-push (push) Failing after 54s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (push) Successful in 6s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (push) Successful in 41s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (push) Failing after 1m34s
Details
CI / Canvas (Next.js) (push) Successful in 58s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (push) Failing after 1m39s
Details
CI / Canvas Deploy Reminder (push) Has been skipped
Details
Harness Replays / Harness Replays (push) Failing after 46s
Details
Handlers Postgres Integration / Handlers Postgres Integration (push) Failing after 1m14s
Details
CI / Platform (Go) (push) Successful in 4m46s
Details
E2E API Smoke Test / E2E API Smoke Test (push) Failing after 6m14s
Details
Railway pin audit (drift detection) / Audit Railway env vars for drift-prone pins (push) Failing after 11s
Details
Runtime Pin Compatibility / PyPI-latest install + import smoke (push) Successful in 9m58s
Details
branch-protection drift check / Branch protection drift (push) Failing after 6s
Details
Canary — staging SaaS smoke (every 30 min) / Canary smoke (push) Failing after 6s
Details
2026-05-07 11:27:52 +00:00
claude-ceo-assistant
f51722411b Merge branch 'main' into fix/issue10-runtime-aware-plugin-install
Some checks failed
CI / Detect changes (pull_request) Successful in 13s
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 14s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 9s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 13s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 10s
Details
pr-guards / disable-auto-merge-on-push (pull_request) Failing after 6s
Details
Harness Replays / detect-changes (pull_request) Successful in 11s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 12s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 12s
Details
CI / Canvas (Next.js) (pull_request) Successful in 6s
Details
CI / Python Lint & Test (pull_request) Successful in 8s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 7s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 4s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 9s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Failing after 1m6s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Failing after 1m41s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Failing after 1m44s
Details
Harness Replays / Harness Replays (pull_request) Failing after 55s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Failing after 1m13s
Details
CI / Platform (Go) (pull_request) Successful in 5m42s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Failing after 5m44s
Details
2026-05-07 11:26:14 +00:00
claude-ceo-assistant
f0015bff81 Merge pull request 'fix(workspace-server): default-bind to 127.0.0.1 in dev-mode fail-open (closes #7)' (#8) from fix/s8-bind-loopback-dev into main
Some checks failed
CI / Canvas Deploy Reminder (push) Blocked by required conditions
Details
Block internal-flavored paths / Block forbidden paths (push) Successful in 4s
Details
Auto-sync main → staging / sync-staging (push) Failing after 8s
Details
CI / Detect changes (push) Successful in 7s
Details
E2E API Smoke Test / detect-changes (push) Successful in 11s
Details
E2E Staging Canvas (Playwright) / detect-changes (push) Successful in 12s
Details
Handlers Postgres Integration / detect-changes (push) Successful in 10s
Details
Harness Replays / detect-changes (push) Successful in 10s
Details
Runtime PR-Built Compatibility / detect-changes (push) Successful in 11s
Details
Secret scan / Scan diff for credential-shaped strings (push) Successful in 8s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (push) Failing after 1m7s
Details
publish-workspace-server-image / build-and-push (push) Failing after 50s
Details
CI / Shellcheck (E2E scripts) (push) Successful in 6s
Details
CI / Python Lint & Test (push) Successful in 8s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (push) Successful in 8s
Details
Handlers Postgres Integration / Handlers Postgres Integration (push) Successful in 9s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (push) Successful in 6s
Details
CI / Platform (Go) (push) Has been cancelled
Details
CI / Canvas (Next.js) (push) Has been cancelled
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (push) Has been cancelled
Details
E2E API Smoke Test / E2E API Smoke Test (push) Has been cancelled
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (push) Has been cancelled
Details
Harness Replays / Harness Replays (push) Has been cancelled
Details
2026-05-07 11:25:48 +00:00
claude-ceo-assistant
b72d1d3f26 Merge branch 'main' into fix/issue10-runtime-aware-plugin-install
Some checks failed
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 10s
Details
pr-guards / disable-auto-merge-on-push (pull_request) Failing after 6s
Details
CI / Detect changes (pull_request) Successful in 13s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 13s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 11s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 13s
Details
Harness Replays / detect-changes (pull_request) Successful in 13s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 13s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 13s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 6s
Details
CI / Python Lint & Test (pull_request) Successful in 7s
Details
CI / Canvas (Next.js) (pull_request) Successful in 23s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 4s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 20s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Failing after 1m1s
Details
Harness Replays / Harness Replays (pull_request) Failing after 42s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Failing after 1m44s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Failing after 1m45s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Failing after 1m35s
Details
CI / Platform (Go) (pull_request) Successful in 6m34s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Failing after 7m21s
Details
2026-05-07 11:25:24 +00:00
claude-ceo-assistant
a674a6547e Merge branch 'main' into fix/s8-bind-loopback-dev
Some checks failed
pr-guards / disable-auto-merge-on-push (pull_request) Failing after 2s
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 5s
Details
CI / Detect changes (pull_request) Successful in 8s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 8s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 9s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 9s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 10s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 11s
Details
Harness Replays / detect-changes (pull_request) Successful in 15s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 8s
Details
CI / Canvas (Next.js) (pull_request) Successful in 8s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 7s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 9s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 12s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
CI / Python Lint & Test (pull_request) Successful in 35s
Details
Harness Replays / Harness Replays (pull_request) Failing after 47s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Failing after 1m44s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Failing after 1m46s
Details
CI / Platform (Go) (pull_request) Failing after 6m9s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Failing after 7m29s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Failing after 15m32s
Details
2026-05-07 11:25:20 +00:00
claude-ceo-assistant
f2f5338183 Merge pull request 'fix(ci): lowercase 'molecule-ai/' in cross-repo workflow refs' (#17) from fix/lowercase-org-slug into main
Some checks failed
E2E API Smoke Test / detect-changes (push) Successful in 7s
Details
E2E Staging Canvas (Playwright) / detect-changes (push) Successful in 7s
Details
Runtime PR-Built Compatibility / detect-changes (push) Successful in 8s
Details
Secret scan / Scan diff for credential-shaped strings (push) Successful in 10s
Details
SECRET_PATTERNS drift lint / Detect SECRET_PATTERNS drift (push) Successful in 35s
Details
auto-tag-runtime / tag (push) Successful in 13s
Details
Block internal-flavored paths / Block forbidden paths (push) Successful in 9s
Details
Auto-sync main → staging / sync-staging (push) Failing after 13s
Details
CI / Detect changes (push) Successful in 11s
Details
Lint curl status-code capture / Scan workflows for curl status-capture pollution (push) Successful in 7s
Details
Harness Replays / detect-changes (push) Successful in 10s
Details
Handlers Postgres Integration / detect-changes (push) Successful in 15s
Details
Check merge_group trigger on required workflows / Required workflows have merge_group trigger (push) Successful in 11s
Details
publish-workspace-server-image / build-and-push (push) Failing after 3m9s
Details
CI / Shellcheck (E2E scripts) (push) Successful in 14s
Details
E2E API Smoke Test / E2E API Smoke Test (push) Successful in 8s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (push) Successful in 1m6s
Details
Harness Replays / Harness Replays (push) Failing after 53s
Details
Handlers Postgres Integration / Handlers Postgres Integration (push) Successful in 8s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (push) Successful in 43s
Details
CI / Canvas (Next.js) (push) Failing after 6m45s
Details
CI / Canvas Deploy Reminder (push) Has been skipped
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (push) Failing after 18m48s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (push) Failing after 18m50s
Details
CI / Platform (Go) (push) Successful in 9m33s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (push) Failing after 18m58s
Details
CI / Python Lint & Test (push) Successful in 15m53s
Details
Canary — staging SaaS smoke (every 30 min) / Canary smoke (push) Failing after 10s
Details
2026-05-07 10:38:12 +00:00
security-auditor
e01077be38 fix(ci): lowercase 'molecule-ai/' in cross-repo workflow refs
Some checks failed
Retarget main PRs to staging / Retarget to staging (pull_request) Has been skipped
Details
cascade-list-drift-gate / check (pull_request) Successful in 3s
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 3s
Details
Check merge_group trigger on required workflows / Required workflows have merge_group trigger (pull_request) Successful in 5s
Details
CI / Detect changes (pull_request) Successful in 4s
Details
pr-guards / disable-auto-merge-on-push (pull_request) Failing after 0s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 5s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 4s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 5s
Details
Harness Replays / detect-changes (pull_request) Successful in 4s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Failing after 50s
Details
Lint curl status-code capture / Scan workflows for curl status-capture pollution (pull_request) Successful in 3s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 4s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 5s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Failing after 1m16s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Failing after 1m16s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 7s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 3s
Details
CI / Python Lint & Test (pull_request) Failing after 16s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 4s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 6s
Details
Harness Replays / Harness Replays (pull_request) Failing after 40s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 3s
Details
CI / Canvas (Next.js) (pull_request) Failing after 4m47s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
CI / Platform (Go) (pull_request) Successful in 5m25s
Details 
Gitea is case-sensitive on owner slugs; canonical is lowercase
`molecule-ai/...`. Mixed-case `Molecule-AI/...` refs fail-at-0s
when the runner tries to resolve the cross-repo workflow / checkout.

Same fix as molecule-controlplane#12. Mechanical case-correction;
no behavior change beyond making CI resolve again.

Refs: internal#46

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-07 01:00:10 -07:00
security-auditor
c1de2287fd fix(workspace-server): SSOT-route container check + 422 on external runtimes
Some checks failed
E2E API Smoke Test / E2E API Smoke Test (pull_request) Failing after 4m46s
Details
CI / Detect changes (pull_request) Successful in 5s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 6s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 6s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 5s
Details
CI / Canvas (Next.js) (pull_request) Successful in 5s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 7s
Details
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 4s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 4s
Details
Harness Replays / detect-changes (pull_request) Successful in 5s
Details
Retarget main PRs to staging / Retarget to staging (pull_request) Has been skipped
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 6s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 2s
Details
CI / Python Lint & Test (pull_request) Successful in 4s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Failing after 53s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Failing after 44s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 4s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Failing after 1m21s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Failing after 1m28s
Details
Harness Replays / Harness Replays (pull_request) Failing after 43s
Details
CI / Platform (Go) (pull_request) Successful in 3m19s
Details 
Two coupled fixes for molecule-core#10 (plugin install 503 vs
status=online split-state):

1. SSOT for "is this workspace's container running" — `findRunningContainer`
   in plugins.go used to carry its own copy of `cli.ContainerInspect`, which
   collapsed transient daemon errors into the same `""` return as a
   genuinely-stopped container. Healthsweep's `Provisioner.IsRunning`
   handled the same input correctly (defensive). Promote the inspect logic
   to `provisioner.RunningContainerName`, route both consumers through it.
   Transient errors get a distinct log line on the plugins side so triage
   doesn't confuse a flaky daemon with a stopped container.

2. Runtime-aware Install/Uninstall — `runtime='external'` workspaces have
   no local container; push-install via docker exec is meaningless. They
   pull plugins via the download endpoint instead (Phase 30.3). Without a
   guard they fell through to `findRunningContainer` and 503'd with a
   misleading "container not running." Add an early 422 with a hint
   pointing at the download endpoint.

The two fixes are independent: (1) preserves correctness when the SSOT
helper is later modified; (2) eliminates the persistent split-state on
the 5 external persona-agent workspaces in this DB (and on tenant
deployments hitting the same shape).

* `internal/provisioner/provisioner.go` — new `RunningContainerName(ctx,
  cli, id) (string, error)` with three documented outcomes (running /
  stopped / transient). `Provisioner.IsRunning` now wraps it; behavior
  preserved.
* `internal/handlers/plugins.go` — `findRunningContainer` shimmed onto
  `RunningContainerName`; new `isExternalRuntime(id)` predicate.
* `internal/handlers/plugins_install.go` — Install + Uninstall reject
  external runtimes with 422 + hint, before the source-fetch step.
* `internal/handlers/plugins_install_external_test.go` — 5 cases:
  external→422, uninstall-external→422, container-backed-falls-through,
  no-runtime-lookup-fails-open, lookup-error-fails-open.
* `internal/handlers/plugins_findrunning_ssot_test.go` — two AST gates
  pin the SSOT routing so future PRs can't silently re-introduce the
  parallel impl. Mutation-tested: reverting either consumer to a direct
  `ContainerInspect` makes the gate fail.

Refs: molecule-core#10

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-06 22:58:20 -07:00
security-auditor
f3187ea0c1 fix(workspace-server): default-bind to 127.0.0.1 in dev-mode fail-open
Some checks failed
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 4s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 5s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 6s
Details
Retarget main PRs to staging / Retarget to staging (pull_request) Has been skipped
Details
Harness Replays / detect-changes (pull_request) Successful in 5s
Details
CI / Detect changes (pull_request) Successful in 6s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 5s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 2s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 5s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 5s
Details
CI / Canvas (Next.js) (pull_request) Successful in 5s
Details
CI / Python Lint & Test (pull_request) Successful in 3s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 5s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 4s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 4s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
Harness Replays / Harness Replays (pull_request) Failing after 35s
Details
CodeQL / Analyze (${{ matrix.language }}) (go) (pull_request) Failing after 56s
Details
CodeQL / Analyze (${{ matrix.language }}) (javascript-typescript) (pull_request) Failing after 1m24s
Details
CodeQL / Analyze (${{ matrix.language }}) (python) (pull_request) Failing after 1m25s
Details
CI / Platform (Go) (pull_request) Successful in 1m48s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Failing after 4m47s
Details 
In dev mode (`MOLECULE_ENV=dev|development`, `ADMIN_TOKEN` unset) the
AdminAuth chain fails open by design so canvas at :3000 can call
workspace-server at :8080 without a bearer token. Combined with the
existing wildcard bind on `:8080`, that exposed unauthenticated
`POST /workspaces` to any same-LAN peer (S-8 in the audit RFC v1).

Couple the bind narrowness to the same signal that drives the auth
fail-open: when `middleware.IsDevModeFailOpen()` returns true, default
the listener to `127.0.0.1`. Production (`ADMIN_TOKEN` set) keeps
binding to all interfaces — its auth chain is doing the work. Operators
who need LAN exposure set `BIND_ADDR=<host>` explicitly.

* `cmd/server/main.go` — `resolveBindHost()` precedence: BIND_ADDR
  explicit > IsDevModeFailOpen() loopback > "" (all interfaces).
  Startup log line now includes the resolved bind + dev-mode-fail-open
  state for post-deploy auditing.
* `cmd/server/bind_test.go` — 8 t.Setenv table cases covering
  precedence, explicit overrides, dev/prod env words. Mutation-tested:
  removing the `IsDevModeFailOpen()` branch makes the dev-mode cases
  fail with "" vs "127.0.0.1".

Refs: molecule-core#7

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-06 22:29:24 -07:00