270 commits

Author	SHA1	Message	Date
Claude	6dc42c3d1a	fix: bug: via_msg unbound variable under set -euo pipefail (#585)	2026-04-10 14:37:54 +00:00
Claude	c7e43e091a	fix: bug: setup_ops_repo tries POST /api/v1/orgs/disinto-admin/repos but disinto-admin is a user, not an org (#585)	2026-04-10 14:31:18 +00:00
Claude	cecfb3374d	fix: bug: bin/disinto init rotates all bot tokens and passwords on every run, invalidating existing cloned repos with embedded credentials (#584)	2026-04-10 14:18:27 +00:00
Claude	e58caa5dfd	fix: bug: setup_forge's admin_token is a local variable, not exported — setup_ops_repo falls back to dev-bot token and fails with 403 (#583)	2026-04-10 14:07:49 +00:00
Claude	817d691e4d	fix: bug: setup_forge has ~6 other anonymous curl checks for user/repo existence, all fail with 403 on locked-down forgejos (#582)	2026-04-10 13:58:48 +00:00
Claude	c753bebb14	fix: bug: setup_forge reachability check uses unauthenticated curl against /api/v1/version, fails on REQUIRE_SIGNIN_VIEW=true forgejos (#581) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 13:36:02 +00:00
Claude	95aba008ac	fix: bug: WOODPECKER_REPO_ID not set in agent containers — ci-debug.sh fails to fetch logs, agents see "No logs available" (#599)	2026-04-10 11:50:08 +00:00
Claude	e092158fb0	fix: bug: WOODPECKER_REPO_ID not set in agent containers — ci-debug.sh fails to fetch logs, agents see "No logs available" (#599)	2026-04-10 11:41:50 +00:00
Claude	f700c33a1b	fix: bug: local-model agents reuse FORGE_TOKEN of main agent — wrong Forgejo identity (#563) ... This fixes the issue where agents-llama containers were using the main FORGE_TOKEN (dev-bot) instead of dedicated credentials for the llama bot user. Changes: - forge-setup.sh: Added generation of FORGE_TOKEN_LLAMA and FORGE_PASS_LLAMA for local-model bot users (dev-qwen, dev-qwen-nightly). These are created as Forgejo users with their own API tokens and passwords for git push. - generators.sh: Updated agents-llama service to use FORGE_TOKEN_LLAMA and FORGE_PASS_LLAMA instead of falling back to dev-bot's credentials. Fixed escaping to defer variable resolution to docker-compose runtime. - docker-compose.yml: Updated to use FORGE_TOKEN_LLAMA and FORGE_PASS_LLAMA (renamed from FORGE_TOKEN_DEVQWEN for consistency). - .env.example: Added documentation for all per-bot tokens and passwords. - projects/disinto.toml.example: Documented the auto-credential generation. When a project TOML configures [agents.llama] with forge_user = dev-qwen: 1. disinto init creates the dev-qwen Forgejo user 2. Generates FORGE_TOKEN_LLAMA and FORGE_PASS_LLAMA 3. Adds dev-qwen as write collaborator on the project repo 4. The agents-llama container uses these credentials for all Forgejo API calls This ensures issues and PRs created by the llama agent are correctly attributed to dev-qwen instead of dev-bot.	2026-04-10 10:49:23 +00:00
Claude	f0c3c773ff	fix: tech-debt: sweep cron-isms from code comments, helpers, lib, and public site copy (#548) ... - Rename acquire_cron_lock → acquire_run_lock in lib/formula-session.sh and all five *-run.sh call sites - Update all *-run.sh file headers: "Cron wrapper" → "Polling-loop wrapper" - Rewrite docs/updating-factory.md: replace crontab check with pgrep, replace "Crontab empty after restart" section with polling-loop equivalent - Update docs/EVAL-MCP-SERVER.md to reflect polling-loop reality - Update lib/guard.sh, lib/AGENTS.md, lib/ci-setup.sh comments - Update formulas/*.toml comments (cron → polling loop) - Update dev/dev-poll.sh usage comment - Update tests/smoke-init.sh to handle compose vs bare-metal scheduling - Update .woodpecker/agent-smoke.sh comments - Update site HTML: architecture.html, quickstart.html, index.html - Clarify _install_cron_impl is bare-metal only (compose uses polling loop) - Keep site/collect-engagement.sh and site/collect-metrics.sh cron refs (genuinely cron-driven on the website host, separate from factory loop) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 08:54:11 +00:00
Claude	3a4f2c0101	fix: keep GITHUB_TOKEN/CODEBERG_TOKEN secrets in release vault action ... formulas/release.sh still uses API tokens for mirror pushes. Add mounts alongside secrets rather than replacing them, so both the .sh (token) and .toml (SSH) formula paths work. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 06:36:59 +00:00
Claude	43af38046c	fix: feat: vault actions should support mount declarations for credentials like SSH keys (#528) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 06:30:08 +00:00
Claude	33f1eebd64	fix: move _generate_local_model_services before CLAUDE_BIN_PLACEHOLDER sed pass ... The placeholder substitution ran before local-model services were appended, leaving a literal CLAUDE_BIN_PLACEHOLDER in the compose file. Reorder so the sed pass runs after all services (including local-model) are in place. Also adds the `g` flag to the sed substitution so it replaces all occurrences, and aligns the .ssh volume mount escaping with the other ${HOME} references. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 06:16:40 +00:00
Claude	000ccb17c2	fix: bug: generate_compose() agents-llama missing Claude binary and credential volume mounts (#527) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 06:09:19 +00:00
Claude	35885fa30c	fix: separate poll_interval from compact_pct in local-model agent TOML config ... --poll-interval was incorrectly written as compact_pct in the project TOML, misconfiguring CLAUDE_AUTOCOMPACT_PCT_OVERRIDE instead of polling behavior. Now compact_pct is hardcoded to 60 (the correct default) and poll_interval is a separate TOML field emitted as POLL_INTERVAL in the compose service. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 05:56:18 +00:00
Claude	1e4754675d	fix: feat: hire-an-agent should support local models (--local-model flag) (#521) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-10 05:47:34 +00:00
Claude	3e9ac2b261	fix: feat: generate_compose() should support local-model agent containers (#520)	2026-04-09 20:09:38 +00:00
Claude	09719aa635	fix: bug: generate_compose() emits unresolved ${PROJECT_NAME} in PROJECT_REPO_ROOT (#518) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-09 19:39:18 +00:00
Claude	77de5ef4c5	fix: bug: dispatcher runner invokes formulas as bash scripts but formulas are TOML (#516) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-09 19:02:52 +00:00
Claude	8679332756	fix: bug: dev-poll stale detection races with issue_claim — blocks freshly claimed issues (#471) ... Add 60-second grace period to stale in-progress detection in dev-poll.sh. When a poller sees an in-progress issue with no assignee/PR/lock, it now checks the timeline API for when the label was added. If <60s ago, it skips stale detection to allow the claiming agent time to finish its assign+label sequence. Also documents the intentional assign-before-label ordering in issue_claim() that minimizes the race window. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-09 14:45:30 +00:00
Claude	46a87c5798	fix: correct lib/AGENTS.md — Forgejo image tag 11.0, OPS_REPO_ROOT variable name	2026-04-09 14:33:40 +00:00
Claude	6971371e27	chore: gardener housekeeping 2026-04-09	2026-04-09 14:24:52 +00:00
Claude	3c443322ca	fix: fix: load-project.sh should derive container repo paths instead of using TOML value (#502) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-09 12:02:51 +00:00
Agent	da65518f07	fix: fix: generate_compose() uses wrong Forgejo image tag — codeberg.org/forgejo/forgejo:1 does not exist (#493)	2026-04-09 11:16:36 +00:00
Claude	def09c441c	fix: fix: generate_compose() must add security_opt apparmor=unconfined to all services (#492) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-09 11:00:01 +00:00
Claude	2d04ef9406	fix: fix: profile_write_journal uses fixed filename — each run overwrites previous journal entry (#488) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-09 09:12:13 +00:00
Claude	a61955182a	fix: fix: env.sh unbound WOODPECKER_TOKEN crashes all cron agents under set -u (#475) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-09 07:26:07 +00:00
Claude	7c688bc196	chore: gardener housekeeping 2026-04-09	2026-04-09 06:02:34 +00:00
Claude	faaaeb0a1f	chore: gardener housekeeping 2026-04-09	2026-04-09 00:05:31 +00:00
Agent	605fc136ae	fix: dispatcher.sh: handle direct-commit low-tier vault actions (#439)	2026-04-08 20:15:26 +00:00
Agent	9b11940f38	fix: lib/vault.sh: low-tier direct commit bypass using FORGE_ADMIN_TOKEN (#438)	2026-04-08 19:56:57 +00:00
Claude	894c635783	fix: vault/classify.sh + vault/policy.toml: blast-radius classification engine (#437) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-08 19:45:20 +00:00
Claude	93efc6e435	fix: correct migrate_ops_repo caller in lib/AGENTS.md	2026-04-08 18:13:08 +00:00
Claude	887bc7bbea	chore: gardener housekeeping 2026-04-08	2026-04-08 18:02:36 +00:00
Claude	d341acee2a	fix: correct ops-setup.sh evidence subdirs in lib/AGENTS.md	2026-04-08 12:22:13 +00:00
Claude	fe1ef3d5ef	chore: gardener housekeeping 2026-04-08	2026-04-08 12:22:13 +00:00
Agent	ce94a74c5f	fix: fix: seed missing ops repo directories on existing deployments (#425)	2026-04-08 12:05:08 +00:00
Claude	28376495bf	fix: fix: setup_ops_repo should seed evidence subdirectories for predictor (#407) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-08 10:04:44 +00:00
Agent	b7f346cf33	fix: fix: disinto init should run hire-an-agent for all configured bot users (#404)	2026-04-08 09:53:42 +00:00
Claude	6e350c0838	fix: fix: setup_ops_repo should seed sprints/ directory (#402) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-08 07:26:20 +00:00
Agent	ee001534eb	fix: fix: compose template should use explicit environment per container, not shared env_file (#381)	2026-04-08 05:53:09 +00:00
Agent	4f4158d1e1	fix: fix: delete entrypoint-llama.sh — unify into single entrypoint with AGENT_ROLES (#380)	2026-04-08 05:19:07 +00:00
Agent	0721ec6cd4	fix: fix: env.sh should not source .env inside containers — compose env is the source of truth (#378)	2026-04-08 05:07:09 +00:00
Agent	d653680d64	fix: fix: standardize logging across all agents — capture errors, log exit codes, consistent format (#367)	2026-04-07 21:15:36 +00:00
Claude	7db129aba2	fix: fix: FORGE_TOKEN_OVERRIDE in entrypoint-llama.sh is overwritten by env.sh sourcing .env (#375) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-07 18:34:45 +00:00
dev-bot	2014eab1c4	Merge pull request 'chore: gardener housekeeping' (#372) from chore/gardener-20260407-1805 into main	2026-04-07 18:14:02 +00:00
Claude	514de48f58	chore: gardener housekeeping 2026-04-07	2026-04-07 18:05:41 +00:00
Claude	cfe96f365c	fix: fix: docker-compose.yml generated by init diverges from running stack — recreate breaks services (#354) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-07 18:00:42 +00:00
Claude	c35d57a045	fix: fix: env.sh save/restore should only protect FORGE_URL, not FORGE_TOKEN (#364) ... Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-07 17:24:54 +00:00
Agent	8480308d1d	fix: fix: edge entrypoint clones disinto repo without auth — fails when Forgejo requires authentication (#353)	2026-04-07 17:11:59 +00:00