mirror of
https://github.com/diegosouzapw/OmniRoute.git
synced 2026-07-18 05:34:00 +00:00
Some checks are pending
Publish Fork Image to GHCR / Build and Push Fork Image (push) Waiting to run
CI / Change Classification (push) Waiting to run
CI / Lint (push) Waiting to run
CI / Quality Ratchet (push) Blocked by required conditions
CI / E2E Tests (3/9) (push) Blocked by required conditions
CI / Quality Gates (Extended) (push) Waiting to run
CI / Docs Sync (Strict) (push) Waiting to run
CI / Docs Lint (prose — advisory) (push) Waiting to run
CI / i18n UI Coverage (push) Waiting to run
CI / Build language matrix (push) Waiting to run
CI / E2E Tests (4/9) (push) Blocked by required conditions
CI / i18n Validation (push) Blocked by required conditions
CI / PR Test Policy (push) Waiting to run
CI / Build (push) Blocked by required conditions
CI / Package Artifact (push) Blocked by required conditions
CI / Electron Package Smoke (push) Blocked by required conditions
CI / Unit Tests (1/8) (push) Blocked by required conditions
CI / Unit Tests (2/8) (push) Blocked by required conditions
CI / Unit Tests (3/8) (push) Blocked by required conditions
CI / Unit Tests (4/8) (push) Blocked by required conditions
CI / E2E Tests (5/9) (push) Blocked by required conditions
CI / Unit Tests (5/8) (push) Blocked by required conditions
CI / Unit Tests (6/8) (push) Blocked by required conditions
CI / Unit Tests (7/8) (push) Blocked by required conditions
CI / Unit Tests (8/8) (push) Blocked by required conditions
CI / Vitest (MCP / autoCombo / UI components) (push) Blocked by required conditions
CI / Node 24 Compatibility Tests (1/4) (push) Blocked by required conditions
CI / Node 24 Compatibility Tests (2/4) (push) Blocked by required conditions
CI / Node 24 Compatibility Tests (3/4) (push) Blocked by required conditions
CI / Node 24 Compatibility Tests (4/4) (push) Blocked by required conditions
CI / Node 26 Compatibility Build (push) Blocked by required conditions
CI / Node 26 Compatibility Tests (1/4) (push) Blocked by required conditions
CI / Node 26 Compatibility Tests (2/4) (push) Blocked by required conditions
CI / Node 26 Compatibility Tests (3/4) (push) Blocked by required conditions
CI / Node 26 Compatibility Tests (4/4) (push) Blocked by required conditions
CI / Coverage Shard (1/8) (push) Blocked by required conditions
CI / Coverage Shard (2/8) (push) Blocked by required conditions
CI / Coverage Shard (3/8) (push) Blocked by required conditions
CI / Coverage Shard (4/8) (push) Blocked by required conditions
CI / Coverage Shard (5/8) (push) Blocked by required conditions
CI / Coverage Shard (6/8) (push) Blocked by required conditions
CI / Coverage Shard (7/8) (push) Blocked by required conditions
CI / Coverage Shard (8/8) (push) Blocked by required conditions
CI / Coverage (push) Blocked by required conditions
CI / SonarQube (push) Blocked by required conditions
CI / PR Coverage Comment (push) Blocked by required conditions
CI / E2E Tests (1/9) (push) Blocked by required conditions
CI / E2E Tests (2/9) (push) Blocked by required conditions
CI / E2E Tests (6/9) (push) Blocked by required conditions
CI / E2E Tests (7/9) (push) Blocked by required conditions
CI / E2E Tests (8/9) (push) Blocked by required conditions
CI / E2E Tests (9/9) (push) Blocked by required conditions
CI / Integration Tests (1/2) (push) Blocked by required conditions
CI / Integration Tests (2/2) (push) Blocked by required conditions
CI / Security Tests (push) Blocked by required conditions
CI / CI Dashboard (push) Blocked by required conditions
Publish to Docker Hub / Resolve Docker release metadata (push) Waiting to run
Publish to Docker Hub / Build Docker (linux/amd64) (push) Blocked by required conditions
Publish to Docker Hub / Build Docker (linux/arm64) (push) Blocked by required conditions
Publish to Docker Hub / Publish multi-arch manifests (push) Blocked by required conditions
OpenSSF Scorecard / Scorecard analysis (push) Waiting to run
semgrep / semgrep (push) Waiting to run
Wiki Sync / Sync wiki with docs (push) Waiting to run
* chore(release): open v3.8.38 development cycle
* fix(executors): strip client_metadata for cerebras and mistral (#4727)
Integrated into release/v3.8.38 (leva 5)
* fix(codebuddy): only send reasoning params when client requests reasoning (#5019)
Integrated into release/v3.8.38 (leva 5)
* fix(sse): keep streaming for forceStream providers when client requests JSON (#5021)
Integrated into release/v3.8.38 (leva 5)
* fix(sse): guard non-JSON SSE lines and duplicate [DONE] (#4937)
Integrated into release/v3.8.38 (leva 5)
* feat(blackbox): refresh provider model catalog (#4935)
Integrated into release/v3.8.38 (leva 5)
* fix(sse): dedupe case-variant Anthropic version/beta headers (#4846)
Integrated into release/v3.8.38 (leva 5)
* feat(sse): Kiro inline <thinking> stream splitter (#4911)
Integrated into release/v3.8.38 (leva 5)
* feat(cursor): parse Composer DeepSeek-style inline tool calls (#4912)
Integrated into release/v3.8.38 (leva 5)
* feat(proxy): auth-less host:port batch import (#4938)
Integrated into release/v3.8.38 (leva 5)
* fix(oauth): support Kiro IDC (organization) token import (#4944)
Integrated into release/v3.8.38 (leva 5)
* fix(translator): preserve cache_control for DashScope OpenAI-compat providers (port from 9router#2069) (#5013)
Integrated into release/v3.8.38 (leva 5)
* fix(tts): resolve Gemini TTS models from catalog (#4934)
Integrated into release/v3.8.38 (leva 5)
* fix(sse): don't cool down the connection on a self-inflicted upstream timeout (504) (#5064)
Integrated into release/v3.8.38 (leva 5)
* fix(sse): robust Anthropic /v1/messages streaming — real ping keepalive + client-disconnect guard (#5063)
Integrated into release/v3.8.38 (leva 5)
* feat(video): add Alibaba DashScope (wan2.7-t2v) provider (#5051)
Integrated into release/v3.8.38 (leva 5)
* fix: preserve model hidden flags (isHidden) across model sync (#5086)
Integrated into release/v3.8.38 (leva 5)
* fix(models): derive model discovery config from registry modelsUrl (#5087)
Integrated into release/v3.8.38 (leva 5)
* fix(compression): replace fileURLToPath(import.meta.url) with runtime anchors for standalone bundle (#5089)
Integrated into release/v3.8.38 (leva 5)
* feat(cc): add summarized thinking display toggle (#5055)
Integrated into release/v3.8.38 (leva 5)
* Harden selected API error responses (#5032)
Integrated into release/v3.8.38 (leva 5)
* chore(quality): rebaseline file-size for leva 5 PR batch drift
6 frozen files grew from merged leva-5 PRs (cursor #4912, kiro #4911,
videoGeneration #5051, default #4727, base #4846, chat #5064); all covered
by per-PR tests. See _rebaseline_2026_06_26_leva5 in the baseline.
* feat(compression): compression playground (Play + Compare tabs) in the studio (#5080)
Integrated into release/v3.8.38
* fix(combo): fail over on empty-content 502 instead of exhausting the provider (#5085) (#5104)
* fix(dashboard): surface detailed credential-validation error in add-connection modal (#5088) (#5106)
* feat(providers): allow local/private provider URLs by default with scoped metadata-safe guard (#5066) (#5107)
* fix(diagnostics): treat non-streaming Claude messages shape as valid output (#5108) (#5116)
* fix(db): translate pt-BR SQLite driver-fallback log lines to English (#5103) (#5115)
* fix(sse): repair release base-reds — malformed-response false positives + header casing + stale tests (#5117)
Repairs the release/v3.8.38 base-reds; unblocks #5078.
* chore(quality): rebaseline file-size for responseSanitizer (#5117) + AddApiKeyModal drift
* fix(translator): forward image tool_result blocks as image_url (#5100)
Base-reds fixed (#5117); image tool_result→image_url. Integrated into release/v3.8.38.
* fix(responses): default text.format for openai-compatible responses providers (#5101)
Base-reds fixed (#5117); default text.format + file-size rebaseline. Integrated into release/v3.8.38.
* feat(dashboard): expose Fusion judgeModel + fusionTuning in the combo editor (#5074)
Base-reds fixed (#5117); Fusion editor + file-size rebaseline. Integrated into release/v3.8.38.
* feat(quota): add opt-in Codex/Claude auto-ping keepalive (#5102)
Base-reds fixed (#5117); auto-ping keepalive + file-size rebaseline. Integrated into release/v3.8.38.
* test(release): relocate 2 orphan test files into the collected flat tests/unit dir (#5120)
Unblocks Lint (test-discovery) on #5078. Integrated into release/v3.8.38.
* fix(translator): preserve reasoning-replay reasoning_content + repair 3 release-green test reds (#5122)
Repairs 3 release-green test reds + test-masking; unblocks #5078.
* test(golden): redact live Node version from provider translate-path snapshot (#5125)
Final golden unblock for #5078.
* test(golden): redact OmniRoute app version from translate-path snapshot (#5126)
Coverage shard golden unblock for #5078.
* Ignore disconnect races during in-band stream error handling (#5007)
Integrated into release/v3.8.38
* Track final connection IDs in failover logs (#5016)
Integrated into release/v3.8.38
* fix(sse): convert Gemini body to OpenAI format in antigravity MITM handler (#4845)
Integrated into release/v3.8.38 (rebased on tip, CHANGELOG re-injected)
* feat(providers): add ZenMux Free session-cookie provider (#5105)
Integrated into release/v3.8.38 (rebased on tip, CHANGELOG re-injected)
* feat(dashboard): click-to-edit model alias in provider page (#5119)
Integrated into release/v3.8.38 (rebased on tip, i18n scope verified, CHANGELOG re-injected)
* feat(mcp): web-session robustness — cookie dedup (PR6) + browser-pool observability (PR7) (#3368) (#5121)
Integrated into release/v3.8.38 (rebased on tip; cookie-dedup branch extracted to findExistingCookieConnection helper → complexity-neutral; CHANGELOG added)
* fix(usage): dedupe request-usage logging and debounce stats (#4940)
Integrated into release/v3.8.38 (rebased on tip; DB-handle hang was stale-base artifact — resetDbInstance already closes the handle, test green 5/5; file-size drift consolidated at release; CHANGELOG re-injected)
* fix(dashboard): key model visibility toggle on canonical providerId (#5091)
Integrated into release/v3.8.38 (retargeted main→release; .tsx visibility-key test green 2/2)
* chore(deps): bump actions/cache from 5.0.5 to 6.0.0 (#5112)
Integrated into release/v3.8.38 (retargeted main→release; workflow-only actions/cache bump — unit failures were stale main base-reds)
* fix(streaming): harden long OpenAI-compatible SSE streams (#5124)
Integrated into release/v3.8.38 (rebased on tip; streamHandler conflict with #5007 disconnect-guard resolved — both coexist, stream-handler 22/22 green)
* feat: Add Grok Build (xAI) provider with OAuth import-token flow (#5020)
Integrated into release/v3.8.38 (rebased on tip; Hard Rule #11 fix — Grok public client_id now via resolvePublicCred(grok_id), 3 literals removed; grok-oauth 7/7 + check:public-creds green)
* feat(providers): add Factory (factory.ai) as a subscription gateway provider (#5065)
Integrated into release/v3.8.38 (rebased on tip; added factory registry test for PR Test Policy + fixed check:env-doc-sync phantom FACTORY_API_KEY; factory loads in PROVIDERS, no Zod issue — that flag was a false positive)
* chore(test): reconcile golden snapshot + apikey count for new providers
#5020 (grok-cli), #5065 (factory), #5105 (zenmux-free) added providers but did
not regenerate tests/snapshots/provider/translate-path.json (now +3 entries) nor
bump the APIKEY_PROVIDERS count (159->160 for the factory gateway). Test-only
reconciliation; no production change.
* fix(resilience): harden quota and model lockout edge cases (#5093)
Integrated into release/v3.8.38 (rebased on tip). TRUST-BUT-VERIFY: dropped the PR's 0dd7df641 'fix unit gates' commit which reverted #5122 reasoning-replay (preserveReasoningContent) + re-introduced #4849 O(n^2) growth, and restored 5 tests it had realigned. Kept only the 3 declared resilience fixes (quota cutoff guard, gemini MIME, model-lockout maxCooldownMs); 23/23 green.
* Hydrate quota cache and scope auto combo candidates (#5015)
Integrated into release/v3.8.38 (rebased on tip). Kept core quota-cache hydration + auto-combo candidate scoping + combos UI; dropped out-of-scope toolCloaking refactor (conflicted with #4813 stripEnumDescriptions — took tip) and the unrelated sse-auth test split. Added quota-cache-hydrate-5015 regression test (Rule #18); combo-account-allowlist 8/8 + hydration 2/2 green.
* chore(quality): reconcile complexity + file-size baselines for v3.8.38 owner-PR batch
complexity 1972->1978 (+6) and file-size providers.ts 1093->1107 / usageHistory.ts
934->983 — drift from the /review-prs merge batch (#4845/#5105/#5020/#4940/#5093/
#5015 + #5121 cookie-dedup helper extraction). check:complexity/check:file-size do
not run on the PR->release fast-path, so the branch accrued unmeasured; all legit
feature/fix growth, not regression. See per-key justifications in each baseline.
* fix(security): exact-host Anthropic baseUrl check (CodeQL js/incomplete-url-substring-sanitization #674) (#5130)
The anthropic-compatible Bearer-fallback gate decided whether a configured baseUrl
targeted the official api.anthropic.com host via a substring `.includes("api.anthropic.com")`.
A look-alike upstream such as `https://api.anthropic.com.evil.test` or
`https://evil.test/?x=api.anthropic.com` matched the substring and was wrongly treated as
official, suppressing the Bearer fallback meant for third-party gateways
(CodeQL #674, js/incomplete-url-substring-sanitization, high).
Replace the substring test with an exported `isOfficialAnthropicBaseUrl()` helper that
parses the URL and compares the hostname for exact equality. Empty baseUrl stays official;
scheme-less hosts are parsed with an assumed https://; an unparseable baseUrl falls back to
third-party (Bearer emitted) as the safer default. Behavior for legitimate official/third-party
baseUrls is unchanged.
Adds tests/unit/anthropic-official-baseurl-host.test.ts covering official, look-alike,
scheme-less, and unparseable inputs plus a static guard that the substring pattern is gone.
* fix(proxy): repair one-click Deno & Cloudflare relay deployments (#5128) (#5132)
* fix(services): embed WS proxy honours LIVE_WS_HOST; reject empty messages early (#5110) (#5133)
* fix(api): resolve /v1/models/{id} case-insensitively (#5082) (#5135)
* fix(providers): add MiniMax M3 & Nemotron 3 Ultra to Cline catalog (#3321) (#5136)
* fix(proxy): make SOCKS5 handshake timeout tunable via SOCKS_HANDSHAKE_TIMEOUT_MS (#5109) (#5137)
* feat(sidebar): add support for colored menu icons (#3812)
Integrated into release/v3.8.38 (recreated on tip — fork had unrelated history; added getSidebarIconAccent regression test, Rule #18). Clean 2-file UI feature.
* fix(providers): complete grok-cli OAuth wiring + zenmux-free web-session metadata
Base-red repair for #5020 (grok-cli) and #5105 (zenmux-free), surfaced by the
full CI on the release PR (#5078) — the PR->release fast-path does not run the
oauth-providers-config / web-session-credentials / provider-consistency gates.
- grok-cli: register in OAUTH_PROVIDERS (providers.ts canonical list, fixes
check:provider-consistency), add OAUTH_PROVIDER_IDS.GROK_CLI + GROK_CLI_CONFIG
in oauth constants (provider config now sourced there, not a local literal),
align oauth-providers-config.test.ts (EXPECTED_PROVIDER_KEYS + config map).
- zenmux-free: declare its web-session credential requirement (full Cookie header)
in WEB_SESSION_CREDENTIAL_REQUIREMENTS.
Local: oauth-providers-config 27/27, web-session-credentials 4/4, grok-cli-oauth
7/7, check:provider-consistency OK, +115 OAUTH_PROVIDERS tests green.
* Fix resilience settings page response mapping (#5139)
Integrated into release/v3.8.38. Thanks @rdself for the fix and the regression test.
* fix(kiro): retire claude-sonnet-4.5 from catalog + pin 400 model-unavailable test (#5140)
Extracted the real change from #5140 (the bot PR regenerated the entire
freeModelCatalog.data.ts + touched package-lock.json; only the targeted
edits are kept here):
- remove claude-sonnet-4.5 from the Kiro registry entry
- remove the matching kiro free-model catalog row
- pin Kiro's verbatim 400 "Invalid model..." to isModelUnavailableError
Closes #4484
* fix(sidebar): drop orphan `settings` accent color (typecheck:core red) (#5142)
SIDEBAR_ICON_ACCENTS is typed Partial<Record<HideableSidebarItemId, string>>,
but `settings` is not a hideable item id (only `settings-general`,
`settings-appearance`, … and `context-settings` exist; there is no item with
`id: "settings"`), so the accent was unreachable. It broke `typecheck:core`
on the release tip ("'settings' does not exist in type …", introduced by
#3812 colored menu icons). Removing the orphan key restores a clean
typecheck:core (rc=0).
* feat: salvage batch 2 — diagnostics null-guard (#5096) + observed quota reset windows (#5025) (#5141)
* fix(diagnostics): null-guard content blocks in detectMalformedNonStream
A null (or non-object) entry in a Claude-native `content` array made the
non-stream classifier throw `TypeError: Cannot read properties of null
(reading 'type')`, crashing the malformed-response detection path. Guard
before type-asserting each block: a null/non-object block is simply skipped.
Two regression tests added (null block among valid blocks → null; only-null
blocks → empty_choices).
Salvaged from closed PR #5096 (base-stale; only the defensive guard — the
Claude-shape recognition it also carried already landed via #5108).
Co-authored-by: herjarsa <herjarsa@users.noreply.github.com>
* feat(quota): persist observed provider quota reset windows
Adds `provider_quota_reset_events` (migration 108) + `db/quotaResetEvents.ts`
to record real upstream weekly-quota window transitions whenever a quota
refresh shows the reset rolling to a new cycle (different day, later resetAt).
`apiKeyUsageLimits` now prefers the observed window start over the inferred
`resetAt − 7d`, falling back to snapshot inference when no event is recorded
yet. `quotaCache.setQuotaCache` records the transition opportunistically.
`recordProviderQuotaResetEventIfChanged` only fires for the primary weekly
window (not daily/sonnet), is idempotent (INSERT OR IGNORE on the unique
window key), and no-ops when the reset didn't actually roll. 4 unit tests
(tests/unit/lib/quota-reset-events.test.ts).
Salvaged from closed PR #5025 (which bundled this with two unrelated
features + a colliding migration 104). Renumbered to 108; module re-exported
from localDb (Rule #2).
Co-authored-by: Witroch4 <175152067+Witroch4@users.noreply.github.com>
---------
Co-authored-by: herjarsa <herjarsa@users.noreply.github.com>
Co-authored-by: Witroch4 <175152067+Witroch4@users.noreply.github.com>
* docs(i18n): sync 3.8.38 CHANGELOG section to 41 mirrors (unblock docs-accuracy) (#5144)
The root CHANGELOG [3.8.38] section grew with this cycle's merged PRs, but the
docs/i18n/<lang>/CHANGELOG.md mirrors were not re-synced — drifting >25% in body
size and failing check:docs-sync (the "Docs accuracy" fast-gate step) for every
open PR against the release.
Ran scripts/release/sync-changelog-i18n.mjs 3.8.38 3.8.37 to copy the root
[3.8.38] section into all 41 mirrors. check:docs-all now passes (exit 0).
Sections are copied verbatim; the per-language translation pass runs at release
time via i18n:run — this only restores the size-sync the gate enforces.
* feat(compression): pure per-step fidelity checker (4 invariants, fail-open)
* feat(compression): fidelityGate config + rejected breakdown fields
* feat(compression): wire per-step fidelity gate into stacked pipeline (opt-in)
* feat(compression): preview route accepts fidelityGate flag (playground)
* feat(compression): playground fidelity-gate toggle + lane rejection display
* docs(compression): note fidelityGate advanced thresholds are intentionally API-omitted
* refactor(compression): extract fidelity-gate step helpers to shrink strategySelector (file-size gate)
bodyToText and gateAdvance moved to fidelityGateStep.ts; StackAccumulator exported.
strategySelector: 889->854 (-35). Residual +6 vs pre-Milestone-B frozen 848 is the
irreducible StackOptions.fidelityGate field + two stacked-loop dispatch reads + import.
Baseline updated to 854 with justification. No cycle introduced (import type only).
940 compression tests pass; typecheck clean.
* test(usage): wire usageHistoryDedup under unit runner brace-list (#5145)
Integrated into release/v3.8.38.
* feat: salvage batch from closed stale PRs (#5038, #5057, #5076) (#5138)
Integrated into release/v3.8.38.
* test(combo): deterministic routing-decision matrix for all 17 strategies (#5146)
Integrated into release/v3.8.38.
* feat(compression): fuzzy near-duplicate dedup (session-dedup 2nd pass + playground toggle) (#5143)
Integrated into release/v3.8.38.
* chore(quality): rebaseline file-size for sidebarVisibility.ts + chat.ts drift (#5147)
Mid-cycle drift on release/v3.8.38 from already-merged PRs that the fast-path
(PR->release skips check:file-size) let accumulate without a bump:
- src/shared/constants/sidebarVisibility.ts 1100->1198 (#3812 colored menu
icons, per-item accent map; #5142 dropped one orphan, net still above frozen)
- src/sse/handlers/chat.ts 1560->1575 (#5064 self-inflicted-timeout cooldown
skip + #5124 long OpenAI-compatible SSE hardening + #5110 embed-WS
LIVE_WS_HOST honour / early empty-message reject)
Each covered by its own PR tests; structural shrink of chat.ts tracked in #3501.
Unblocks the Fast Quality Gates for PRs targeting release/v3.8.38.
* chore(release): finalize v3.8.38 CHANGELOG + cycle reconciliation
- Reconcile [3.8.38]: +18 bullets (compression fidelity-gate/fuzzy-dedup #5143,
quota keepalive #5102, web-session robustness #5121, MiniMax/Nemotron #5136,
model-visibility #5091, failover logs #5016, disconnect races #5007, sidebar
orphan #5142, SRE playbooks salvage #5138, new Security #5130 + Maintenance roll-up)
- Credit salvaged-PR authors (@JxnLexn / @KooshaPari / @herjarsa / @Witroch4)
- Remove phantom bullet for CLOSED-not-merged #5092 (setup aggregator never landed)
- Fix isHidden bullet PR citation #4389 -> #5086 (@herjarsa)
- Back-fill forgotten v3.8.36 bullet: #5026 crypto.randomUUID ID-gen (@hamsa0x7)
- Sync 41 i18n CHANGELOG mirrors; README What's New -> v3.8.38
- Rebaseline cycle drift: eslint 3987->4002, cognitive 833->841, dead-exports
345->346, cyclomatic 1978->1980 (file-size handled by #5147)
* fix(i18n): add missing English UI labels (#5153)
Integrated into release/v3.8.38
* Preserve non-stream reasoning fields for compatible clients (#5155)
Integrated into release/v3.8.38
* feat(compression): ionizer engine — lossy JSON-array sampling reversible via CCR (#5148)
Integrated into release/v3.8.38
* test(combo): gated live smoke for combo strategies (in-process + VPS HTTP) (#5151)
Integrated into release/v3.8.38
* test: refresh release expectations to match current code (#5150)
Integrated into release/v3.8.38 (test-only base-red alignment extracted from #5150)
---------
Co-authored-by: Éder Costa <eder.almeida.costa@gmail.com>
Co-authored-by: José Victor Ferreira <root@josevictor.me>
Co-authored-by: Hernan Javier Ardila Sanchez <hjasgr@gmail.com>
Co-authored-by: fulorgnas <46461624+fulorgnas@users.noreply.github.com>
Co-authored-by: Randi <55005611+rdself@users.noreply.github.com>
Co-authored-by: Jan Leon <Jan.gaschler@gmail.com>
Co-authored-by: R. Beltran <rbeltran8000@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: KooshaPari <42529354+KooshaPari@users.noreply.github.com>
Co-authored-by: Ramel Tecnologia - Rafa Martins <146174365+rafacpti23@users.noreply.github.com>
Co-authored-by: herjarsa <herjarsa@users.noreply.github.com>
Co-authored-by: Witroch4 <175152067+Witroch4@users.noreply.github.com>
319 lines
11 KiB
JavaScript
319 lines
11 KiB
JavaScript
/**
|
|
* scripts/test/_vpsClient.mjs
|
|
*
|
|
* Reusable Phase-3 VPS HTTP client for OmniRoute combo live-smoke tests.
|
|
* NOT a test file — intentionally placed in scripts/test/ so check:test-discovery
|
|
* does not scan it.
|
|
*
|
|
* Combo create/delete mechanism: SSH-sqlite fallback.
|
|
* /api/combos requires management auth (returns 401 unauthenticated).
|
|
* We insert/delete rows directly via:
|
|
* execFileSync("ssh", ["root@192.168.0.15", "sqlite3", "/root/.omniroute/storage.sqlite", SQL])
|
|
* Values are static test-scoped data — no untrusted interpolation.
|
|
*
|
|
* combos table schema (PRAGMA table_info):
|
|
* id TEXT PK, name TEXT NOT NULL, data TEXT NOT NULL (JSON blob),
|
|
* created_at TEXT NOT NULL, updated_at TEXT NOT NULL,
|
|
* system_message TEXT, tool_filter_regex TEXT,
|
|
* context_cache_protection INTEGER DEFAULT 0, sort_order INTEGER NOT NULL DEFAULT 0
|
|
*
|
|
* The `data` column stores the full combo as JSON (name, models[], strategy, config,
|
|
* id, createdAt, updatedAt, version, sortOrder).
|
|
*/
|
|
|
|
import { execFileSync } from "node:child_process";
|
|
import { randomUUID } from "node:crypto";
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// Config
|
|
// ---------------------------------------------------------------------------
|
|
const BASE_URL = process.env.COMBO_LIVE_BASE_URL ?? "http://192.168.0.15:20128";
|
|
const API_KEY = process.env.COMBO_LIVE_API_KEY ?? null;
|
|
const VPS_SSH_HOST = "root@192.168.0.15";
|
|
const VPS_DB_PATH = "/root/.omniroute/storage.sqlite";
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// Nonce counter — increments per call so semantic cache cannot serve stale
|
|
// ---------------------------------------------------------------------------
|
|
let _nonceCounter = 0;
|
|
export function nonce() {
|
|
return ++_nonceCounter;
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// Shared fetch helpers
|
|
// ---------------------------------------------------------------------------
|
|
function authHeaders() {
|
|
const h = { "Content-Type": "application/json" };
|
|
if (API_KEY) h["Authorization"] = `Bearer ${API_KEY}`;
|
|
return h;
|
|
}
|
|
|
|
async function fetchJson(path, options = {}) {
|
|
const url = `${BASE_URL}${path}`;
|
|
const res = await fetch(url, { ...options, headers: { ...authHeaders(), ...(options.headers ?? {}) } });
|
|
let body;
|
|
try {
|
|
body = await res.json();
|
|
} catch {
|
|
body = null;
|
|
}
|
|
return { status: res.status, ok: res.ok, body };
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// health() — GET /api/monitoring/health
|
|
// ---------------------------------------------------------------------------
|
|
export async function health() {
|
|
const { status, body } = await fetchJson("/api/monitoring/health");
|
|
return {
|
|
status,
|
|
version: body?.version ?? null,
|
|
uptime: body?.uptime ?? null,
|
|
raw: body,
|
|
};
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// chat() — POST /v1/chat/completions (non-streaming)
|
|
// ---------------------------------------------------------------------------
|
|
export async function chat(model, { maxTokens = 16, content } = {}) {
|
|
const n = nonce();
|
|
const userContent = content ?? `ping ${n}`;
|
|
const payload = {
|
|
model,
|
|
stream: false,
|
|
max_tokens: maxTokens,
|
|
temperature: 0,
|
|
messages: [{ role: "user", content: userContent }],
|
|
};
|
|
const { status, body } = await fetchJson("/v1/chat/completions", {
|
|
method: "POST",
|
|
body: JSON.stringify(payload),
|
|
});
|
|
const text = body?.choices?.[0]?.message?.content ?? null;
|
|
return {
|
|
status,
|
|
model: body?.model ?? model,
|
|
text,
|
|
raw: body,
|
|
};
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// Combo create/delete via SSH sqlite
|
|
// ---------------------------------------------------------------------------
|
|
function sshSqlite(sql) {
|
|
// Pipe SQL via stdin to avoid shell quoting issues with complex SQL statements.
|
|
// ssh + sqlite3 reads from stdin when no trailing SQL arg is given.
|
|
return execFileSync("ssh", [VPS_SSH_HOST, "sqlite3", VPS_DB_PATH], {
|
|
input: sql,
|
|
encoding: "utf8",
|
|
timeout: 15_000,
|
|
}).trim();
|
|
}
|
|
|
|
/**
|
|
* createCombo(def) — inserts a combo row via SSH sqlite.
|
|
*
|
|
* def shape:
|
|
* { name, strategy, models, config }
|
|
*
|
|
* models: array of "providerId/model" strings OR
|
|
* array of { providerId, model, connectionId?, weight? } objects.
|
|
*
|
|
* config: optional object (judgeModel, fusionTuning, etc.)
|
|
*
|
|
* Returns the combo id string.
|
|
*/
|
|
export function createCombo(def) {
|
|
const id = randomUUID();
|
|
const now = new Date().toISOString();
|
|
const strategy = def.strategy ?? "priority";
|
|
const config = def.config ?? {};
|
|
const name = def.name;
|
|
|
|
// Normalise models to the shape the DB expects
|
|
const rawModels = def.models ?? [];
|
|
const models = rawModels.map((m, idx) => {
|
|
if (typeof m === "string") {
|
|
// "providerId/model" shorthand
|
|
const slashIdx = m.indexOf("/");
|
|
const providerId = slashIdx >= 0 ? m.slice(0, slashIdx) : m;
|
|
const model = slashIdx >= 0 ? m.slice(slashIdx + 1) : m;
|
|
const slugName = name.toLowerCase().replace(/[^a-z0-9]/g, "-");
|
|
const slugModel = model.toLowerCase().replace(/[^a-z0-9]/g, "-");
|
|
return {
|
|
id: `${slugName}-model-${idx + 1}-${providerId}-${slugModel}-${randomUUID()}`,
|
|
kind: "model",
|
|
model: `${providerId}/${model}`,
|
|
providerId,
|
|
weight: 1,
|
|
};
|
|
}
|
|
// Already an object
|
|
const providerId = m.providerId;
|
|
const model = m.model;
|
|
const slugName = name.toLowerCase().replace(/[^a-z0-9]/g, "-");
|
|
const slugModel = (model ?? "").toLowerCase().replace(/[^a-z0-9]/g, "-");
|
|
return {
|
|
id: m.id ?? `${slugName}-model-${idx + 1}-${providerId}-${slugModel}-${randomUUID()}`,
|
|
kind: "model",
|
|
model: model.includes("/") ? model : `${providerId}/${model}`,
|
|
providerId,
|
|
...(m.connectionId ? { connectionId: m.connectionId } : {}),
|
|
weight: m.weight ?? 1,
|
|
};
|
|
});
|
|
|
|
const dataObj = {
|
|
name,
|
|
models,
|
|
strategy,
|
|
config,
|
|
id,
|
|
createdAt: now,
|
|
updatedAt: now,
|
|
version: 2,
|
|
sortOrder: 9999,
|
|
};
|
|
|
|
const dataJson = JSON.stringify(dataObj).replace(/'/g, "''");
|
|
const nameSafe = name.replace(/'/g, "''");
|
|
const sql = `INSERT INTO combos (id, name, data, created_at, updated_at, sort_order) VALUES ('${id}', '${nameSafe}', '${dataJson}', '${now}', '${now}', 9999);`;
|
|
sshSqlite(sql);
|
|
return id;
|
|
}
|
|
|
|
/**
|
|
* deleteCombo(nameOrId) — deletes a combo by name or id via SSH sqlite.
|
|
* Only deletes __live_test__* prefixed combos as a safety guard.
|
|
*/
|
|
export function deleteCombo(nameOrId) {
|
|
if (!nameOrId.startsWith("__live_test__")) {
|
|
throw new Error(`deleteCombo safety guard: refusing to delete '${nameOrId}' — only __live_test__* combos allowed.`);
|
|
}
|
|
const safe = nameOrId.replace(/'/g, "''");
|
|
// Try delete by name first, then by id
|
|
sshSqlite(`DELETE FROM combos WHERE name='${safe}' OR id='${safe}';`);
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// listHealthyProviders(candidates) — probe each "provider/model" candidate
|
|
// ---------------------------------------------------------------------------
|
|
/**
|
|
* For each "provider/model" string, fire a minimal chat() and keep those
|
|
* returning HTTP 200 with non-empty text.
|
|
*
|
|
* @param {string[]} candidates - array of "provider/model" strings
|
|
* @returns {Promise<string[]>} healthy candidates
|
|
*/
|
|
export async function listHealthyProviders(candidates) {
|
|
const results = await Promise.allSettled(
|
|
candidates.map(async (c) => {
|
|
const r = await chat(c, { maxTokens: 16 });
|
|
return r.status === 200 && r.text ? c : null;
|
|
})
|
|
);
|
|
return results
|
|
.map((r) => (r.status === "fulfilled" ? r.value : null))
|
|
.filter(Boolean);
|
|
}
|
|
|
|
// ---------------------------------------------------------------------------
|
|
// Preflight self-check (run directly: node scripts/test/_vpsClient.mjs)
|
|
// ---------------------------------------------------------------------------
|
|
const isMain = process.argv[1]?.endsWith("_vpsClient.mjs") ||
|
|
import.meta.url === `file://${process.argv[1]}`;
|
|
|
|
if (isMain) {
|
|
(async () => {
|
|
console.log("=== OmniRoute VPS Phase-3 Preflight ===");
|
|
console.log(`Base URL: ${BASE_URL}`);
|
|
console.log(`API key: ${API_KEY ? "set (Bearer)" : "not set (REQUIRE_API_KEY=false)"}`);
|
|
console.log();
|
|
|
|
// 1. Health
|
|
console.log("--- health() ---");
|
|
try {
|
|
const h = await health();
|
|
console.log(` status: ${h.status}`);
|
|
console.log(` version: ${h.version}`);
|
|
} catch (e) {
|
|
console.error(` ERROR: ${e.message}`);
|
|
}
|
|
|
|
// 2. Combo mechanism probe
|
|
console.log();
|
|
console.log("--- combo create/delete mechanism ---");
|
|
console.log(" /api/combos GET (unauthenticated):", (() => {
|
|
try {
|
|
const r = execFileSync("curl", ["-s", "-o", "/dev/null", "-w", "%{http_code}", `${BASE_URL}/api/combos`], { encoding: "utf8", timeout: 5000 });
|
|
return r.trim();
|
|
} catch { return "error"; }
|
|
})());
|
|
console.log(" Mechanism: SSH sqlite fallback (management API requires auth)");
|
|
console.log(" SSH host:", VPS_SSH_HOST);
|
|
console.log(" DB path:", VPS_DB_PATH);
|
|
|
|
// 3. Create + delete a probe combo via SSH sqlite
|
|
console.log();
|
|
console.log("--- createCombo / deleteCombo (SSH sqlite) ---");
|
|
const probeName = "__live_test__probe";
|
|
let probeId;
|
|
try {
|
|
probeId = createCombo({
|
|
name: probeName,
|
|
strategy: "priority",
|
|
models: ["groq/llama-3.1-8b-instant"],
|
|
config: {},
|
|
});
|
|
console.log(` created id: ${probeId}`);
|
|
deleteCombo(probeName);
|
|
console.log(` deleted OK`);
|
|
} catch (e) {
|
|
console.error(` ERROR: ${e.message}`);
|
|
// Attempt cleanup on error
|
|
if (probeId) {
|
|
try { deleteCombo(probeName); } catch {}
|
|
}
|
|
}
|
|
|
|
// 4. ollama-cloud chat probe
|
|
console.log();
|
|
console.log("--- chat probe: ollama-cloud/glm-5.2 ---");
|
|
try {
|
|
const r = await chat("ollama-cloud/glm-5.2", { maxTokens: 16 });
|
|
console.log(` status: ${r.status}`);
|
|
console.log(` model: ${r.model}`);
|
|
console.log(` text: ${r.text ? r.text.slice(0, 80) : "(empty)"}`);
|
|
if (r.status !== 200 || !r.text) {
|
|
console.log(" NOTE: ollama-cloud/glm-5.2 did not return a valid response.");
|
|
console.log(" raw error:", JSON.stringify(r.raw?.error ?? r.raw).slice(0, 200));
|
|
}
|
|
} catch (e) {
|
|
console.error(` ERROR: ${e.message}`);
|
|
}
|
|
|
|
// 5. Quick healthy provider scan over a small candidate set
|
|
console.log();
|
|
console.log("--- listHealthyProviders (subset scan) ---");
|
|
const candidates = [
|
|
"groq/llama-3.1-8b-instant",
|
|
"gemini/gemini-2.0-flash",
|
|
"deepseek/deepseek-chat",
|
|
"cerebras/llama3.1-8b",
|
|
"ollama-cloud/glm-5.2",
|
|
];
|
|
try {
|
|
const healthy = await listHealthyProviders(candidates);
|
|
console.log(` tested: ${candidates.join(", ")}`);
|
|
console.log(` healthy (${healthy.length}/${candidates.length}): ${healthy.join(", ") || "(none)"}`);
|
|
} catch (e) {
|
|
console.error(` ERROR: ${e.message}`);
|
|
}
|
|
|
|
console.log();
|
|
console.log("=== Preflight complete ===");
|
|
})();
|
|
}
|