vrr/openclaw
2
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-12 03:05:45 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 22
37164 commits 1551 branches 182 tags 8.8 GiB
Commit graph

820 commits

Author SHA1 Message Date
Vincent Koc
cc80a40d86
fix(ci): preserve mixed macOS CodeQL SARIF findings 
Conservatively filter macOS CodeQL SARIF by dropping only findings where every location is SwiftPM build output. Verified with workflow sanity, local jq filtering, PR CI, and a failed-job rerun for an unrelated stalled Vitest shard.
 2026-04-27 15:43:53 -07:00
Peter Steinberger
39e3d8d31d
ci: shard release validation reruns 2026-04-27 23:38:13 +01:00
Vincent Koc
6e77c10c6c
fix(ci): harden macOS CodeQL SARIF filtering 
Harden the macOS CodeQL SARIF filter to drop only findings whose primary location is SwiftPM build output. Verified with workflow sanity, local jq filtering, full PR CI, and profile=macos-security branch proof in 18m44s.
 2026-04-27 15:25:38 -07:00
Vincent Koc
2c2a240344
fix(ci): filter macOS CodeQL dependency SARIF 
Filter SwiftPM dependency build results from the manual macOS CodeQL shard before upload. Verified with workflow sanity, local jq filtering, and profile=macos-security branch proof in 15m54s. PR CI has the same unrelated extensions/memory-core timeout failure currently present on main.
 2026-04-27 14:37:29 -07:00
Peter Steinberger
fb4d9fc4fb
ci: harden npm telegram artifact upload 2026-04-27 22:13:21 +01:00
Peter Steinberger
295d63c331
ci: record package proof in release evidence 2026-04-27 22:00:03 +01:00
Vincent Koc
bd51f82efa
fix(security): harden CodeQL secret ref validation 
Remediate current-profile CodeQL findings for file SecretRef id validation and release workflow job permissions. Includes changelog credit. Thanks @vincentkoc.
 2026-04-27 13:53:27 -07:00
Vincent Koc
36b5e34fc0
fix(ci): add macOS CodeQL security shard 
Add a manual macOS CodeQL security shard scoped to app sources. Verified with profile=macos-security on Blacksmith in 16m55s.
 2026-04-27 13:40:34 -07:00
Peter Steinberger
cdf88bcad4
test: harden release qa live gates 2026-04-27 21:16:48 +01:00
Vincent Koc
74eccd42d8
fix(ci): add android CodeQL security shard 
Add a manual Android CodeQL security shard scoped to app production sources. Verified with profile=android-security on Blacksmith in 4m22s.
 2026-04-27 12:32:55 -07:00
Peter Steinberger
54e13d4910
ci: split release validation slow shards 2026-04-27 20:30:17 +01:00
dependabot[bot]
48f433479d
chore(deps): bump github/codeql-action 
Bump github/codeql-action from b25d0ebf40e5b63ee81e1bd6e5d2a12b7c2aeb61 to 95e58e9a2cdfd71adc6e0353d5c52f41a045d225.
 2026-04-27 12:01:27 -07:00
Vincent Koc
282af9c50a
fix(ci): run CodeQL on small Blacksmith runners (#72988) 2026-04-27 11:56:48 -07:00
Vincent Koc
e864fd39cc
fix(ci): narrow CodeQL critical scan (#72982) 2026-04-27 11:42:42 -07:00
Peter Steinberger
c41126dbbb
ci: capture dispatched full validation runs 2026-04-27 15:51:03 +01:00
Peter Steinberger
2243a68a1d
ci: shard release live validation 2026-04-27 14:24:10 +01:00
Peter Steinberger
9ca4049861
ci: match package Telegram harness to release ref 2026-04-27 14:06:05 +01:00
Peter Steinberger
1b1916053f
ci: inline Docker release planning for old refs 2026-04-27 14:03:17 +01:00
Peter Steinberger
fd4b59a906
ci: keep release checks compatible with stable refs 2026-04-27 13:59:49 +01:00
Peter Steinberger
0931a1f11e
ci: fix release validation dispatch and protocol drift 2026-04-27 13:32:03 +01:00
Peter Steinberger
98b441edb1
ci: split release docker integration chunks 2026-04-27 13:24:30 +01:00
Peter Steinberger
cff1bdb491
ci: trim duplicate release package lanes 2026-04-27 13:15:10 +01:00
Peter Steinberger
e9986aa787
fix(ci): make full validation rerun-aware 2026-04-27 13:00:09 +01:00
Peter Steinberger
c4fe72b8d6
ci: pin full release validation child refs 2026-04-27 11:16:16 +01:00
Peter Steinberger
5757d1bb69
ci: harden live release validation lane 2026-04-27 10:59:25 +01:00
Peter Steinberger
1b581b4c71
fix(ci): stabilize live release validation 2026-04-27 10:56:35 +01:00
Vincent Koc
600df95c8c
feat(migrate): add Claude importer 
Add a bundled Claude migration provider for Claude Code and Claude Desktop imports.\n\nIncludes source discovery, preview/apply behavior for instructions, MCP servers, skills and command prompts, archive/manual handling for unsafe Claude state, docs, labeler, and tests.
 2026-04-27 02:35:44 -07:00
Peter Steinberger
4de235f908
feat(providers): add cerebras plugin 2026-04-27 10:22:20 +01:00
Peter Steinberger
57092a1794
ci: harden cross-os release harness on Windows 2026-04-27 10:03:38 +01:00
Peter Steinberger
87b8072a85
test: cover qqbot channel guardrails 2026-04-27 08:58:13 +01:00
Vincent Koc
1fc5b2b703
feat(migrations): add plugin-owned Hermes import 
* feat: add migration providers

* feat: offer Hermes migration during onboarding

* feat(hermes): map imported config surfaces

* feat(onboard): require fresh migration imports

* docs(cli): clarify Hermes import coverage

* chore(migrations): rename Hermes importer package

* chore(migrations): rewire Hermes importer id

* fix(migrations): redact migration JSON details

* fix(hermes): use provider runtime for config imports

* test(hermes): cover missing source planning

---------

Co-authored-by: Peter Steinberger <steipete@gmail.com>
 2026-04-27 00:34:29 -07:00
Peter Steinberger
ca44ab65e6
ci(release): allow live E2E actions reads 2026-04-27 07:26:33 +01:00
Peter Steinberger
93ac2cefaa
ci(docker): resolve short refs before checkout 2026-04-27 07:18:57 +01:00
Peter Steinberger
a3fcb8db79
ci(docker): split bundled release lanes 2026-04-27 07:17:14 +01:00
Peter Steinberger
ac5a1d1622
ci: forward package acceptance live secrets 2026-04-27 07:00:11 +01:00
Peter Steinberger
45bdfb5f72
ci(docker): keep release path at three chunks 2026-04-27 06:39:46 +01:00
Peter Steinberger
5e9a96fafb
ci(docker): reuse cached e2e images for reruns 2026-04-27 06:29:09 +01:00
Peter Steinberger
679e476183
ci: always shard full Matrix QA 2026-04-27 06:28:35 +01:00
Peter Steinberger
32b1f0ce74
ci: narrow package acceptance to artifact lanes 2026-04-27 06:17:05 +01:00
Peter Steinberger
86da88c120
ci: request release evidence after full validation 2026-04-27 06:01:06 +01:00
Peter Steinberger
748daa4857
ci: make package acceptance legacy-safe 2026-04-27 05:46:06 +01:00
Peter Steinberger
6987132aed
ci: add Matrix QA profiles 2026-04-27 05:43:14 +01:00
Peter Steinberger
02455c0c52
ci: include telegram in release package acceptance 2026-04-27 05:14:19 +01:00
Peter Steinberger
09107e0b7f
ci: let telegram e2e use package artifacts 2026-04-27 05:09:16 +01:00
Vincent Koc
a33a2c97a3
ci(testbox): save build artifact cache before wait 2026-04-26 21:07:02 -07:00
Vincent Koc
9626ef274a
ci(testbox): add build artifact cache warmup 2026-04-26 20:58:14 -07:00
Peter Steinberger
5f9506f7fd
ci: avoid inherited package acceptance secrets 2026-04-27 04:44:29 +01:00
Peter Steinberger
02d266c6c4
ci: split package acceptance refs 2026-04-27 04:39:19 +01:00
Peter Steinberger
6a05b9eec5
ci: fix package acceptance permissions 2026-04-27 04:27:45 +01:00
Peter Steinberger
76de167ca1
ci: add package acceptance workflow 2026-04-27 04:25:31 +01:00