Skip to content

chore: v1.0.8 #5051

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 149 commits into from
Jun 11, 2025
Merged

chore: v1.0.8 #5051

merged 149 commits into from
Jun 11, 2025

Conversation

ChristopherTrimboli
Copy link
Member

@ChristopherTrimboli ChristopherTrimboli commented Jun 10, 2025
edited by odilitime
Loading

includes PRs:

lalalune and others added 30 commits June 6, 2025 23:15
@lalalune
feat: install dependencies of plugins when running tests so they dont…
8115e5a 
… fail
@lalalune
pre-install and register plugin dependencies
ae6722f
@lalalune
add cli test fixes, but review because we need to make sure it doesnt…
b763dba 
… break anything else
@lalalune
Merge branch 'feat/cli-test-deps' of https://github.com/elizaos/eliza
2b88a9d 
…into feat/split-types
@lalalune
Merge branch 'develop' of https://github.com/elizaos/eliza into feat/…
a7d144b 
…split-types
@wtfsayo
Reorganize API routes into logical domain-based structure
0e97072 
- Restructure API into 8 domain-based routers: agents, messaging, media, memory, audio, runtime, tee, system
- Create shared utilities for response handling, validation, and file operations
- Remove 2,800+ lines of duplicate and legacy code (agent.ts, messages.ts, env.ts, tee.ts, world.ts)
- Maintain backward compatibility through proper domain organization
- Clean up main router integration and remove duplicate route aliases
- Fix TypeScript build errors and import path issues

New structure:
- /agents: Agent CRUD operations and management
- /messaging: Message handling, channels, and communication
- /media: File uploads and media management
- /memory: Memory and knowledge operations
- /audio: Speech, TTS, and audio processing
- /runtime: Server runtime operations (health, logs, stop)
- /tee: TEE security operations
- /system: Environment and system configuration
@wtfsayo
Update client API endpoints to match new domain structure
6d05ddb 
- Update /messages/* endpoints to /messaging/*
- Update /envs/* endpoints to /system/*
- Update /logs, /ping endpoints to /runtime/*
- Maintain full backward compatibility through proper domain routing
- All client builds pass successfully
@wtfsayo
fix messaging
20e0476
@wtfsayo
Fix security vulnerabilities identified by CodeQL
9e3e06d 
- Add SSRF protection in MessageBusService with URL validation for allowed hosts
- Add path traversal protection in file-utils with proper path validation
- Add rate limiting to audio processing endpoints (10 uploads/minute per IP)
- Update API endpoint URL to use new messaging domain structure

Addresses:
- Critical: Server-side request forgery vulnerability
- High: Uncontrolled data used in path expressions
- High: Missing rate limiting for file system access routes
@wtfsayo
Fix agent memories endpoint routing
f0fbdb9 
- Add memory functionality to agents domain router
- Ensure /api/agents/:id/memories endpoint is accessible
- Import and mount createAgentMemoryRouter in agents/index.ts
- Maintains compatibility with existing client expectations
@wtfsayo
Fix critical security vulnerabilities in API endpoints
6a1736a 
- Fix SSRF vulnerability in message service by strengthening URL validation
- Add enhanced rate limiting with IP blocking for audio processing endpoints
- Add strict file type validation and size limits for uploads
- Improve path validation to prevent directory traversal attacks
- Strengthen environment variable validation and sanitization
@wtfsayo
Fix CLI test timeouts and improve error handling
773c922 
- Add explicit timeouts to all execSync calls to prevent hanging
- Increase server startup timeout from 30s to 60s
- Add better error handling for character loading failures
- Increase overall test timeout from 60s to 120s
- Add debugging output for server startup failures
- Handle exit code 137 gracefully for timeout scenarios

Revert "Fix CLI test timeouts and improve error handling"

This reverts commit 79e8b94.
@lalalune
init commit of dynamic sql
00be1cc
@lalalune
ignore db
78b9061
@wtfsayo @coderabbitai
Update packages/cli/src/server/api/agents/crud.ts
3e7344c 
Co-authored-by: coderabbitai[bot] <136622811+coderabbitai[bot]@users.noreply.github.com>
@wtfsayo @github-advanced-security
Potential fix for code scanning alert no. 181: Uncontrolled data used…
e2db64c 
… in path expression

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@wtfsayo
Merge branch 'develop' into feat/api-domain-reorganization
ba7ebc8
@wtfsayo
Update message.ts
c206b23
@wtfsayo
Update processing.ts
6ba4e94
@wtfsayo
minor
992b9cb
@wtfsayo
Update rooms.ts
594e4b3
@wtfsayo
Update core.ts
61e4c54
@lalalune
tests passing in sql
8334c14
@wtfsayo @coderabbitai
Update packages/cli/src/server/api/audio/conversation.ts
ff1346a 
Co-authored-by: coderabbitai[bot] <136622811+coderabbitai[bot]@users.noreply.github.com>
@wtfsayo @coderabbitai
Apply suggestions from code review
be32829 
Co-authored-by: coderabbitai[bot] <136622811+coderabbitai[bot]@users.noreply.github.com>
@wtfsayo
Update channels.ts
14d129f
@wtfsayo
update /messaging
038480d
@wtfsayo @github-advanced-security
Potential fix for code scanning alert no. 183: Missing rate limiting
ca1ace4 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@wtfsayo
file utils
f7a8ed3
@wtfsayo
Merge branch 'feat/api-domain-reorganization' of https://github.com/e…
a0031bc 
…lizaOS/eliza into feat/api-domain-reorganization
ChristopherTrimboli and others added 20 commits June 10, 2025 11:58
@ChristopherTrimboli
Merge pull request #5035 from elizaOS/fix-message-delete
d69d71e 
fix: remove message from chat UI on delete
@ChristopherTrimboli
Merge pull request #4968 from standujar/fix/realtime-messages-deletion
e76e3f3 
fix: implement real-time message deletion via SocketIO
@ChristopherTrimboli
Merge pull request #5033 from elizaOS/fix-onboarding
4a83eb6 
fix: onboarding user settings error
@ChristopherTrimboli
Merge remote-tracking branch 'origin/develop' into feat/refactor-agen…
8827200 
…t-command
@ChristopherTrimboli
Merge pull request #5036 from elizaOS/feat/refactor-agent-command
ebc6def 
refactor: reorganize cli commands into modular structure
@ChristopherTrimboli
Merge pull request #5030 from elizaOS/feat-add-plugin-dummy-services
378c3d7 
feat: add dummy services
@ChristopherTrimboli
migrate all generated files into .eliza
c0d24a7
@wtfsayo
fix: enable loading project agents when no character files specified
ebc1beb 
- Add support for ProjectAgent type in start command
- Load project configuration when no --character flag provided
- Start agents with their initialization functions and plugins
- Fall back to default Eliza character if no project agents found
- Improve logging to show loaded agent names

This allows projects to define agents in their configuration
and have them automatically loaded by the start command.
@ChristopherTrimboli
Merge pull request #5044 from elizaOS/fix/load-project-agents
83745a3 
Fix: Enable loading project agents when no character files specified
@ChristopherTrimboli
fix release workflow, remove claude workflow
44fe67a
@ChristopherTrimboli
remove instrumentation test, fix clean
97b44e3
@ChristopherTrimboli
handle default character project loading, no error
ce6d39d
@wtfsayo
Add comprehensive Postman collection for all Eliza APIs
a8b1b64 
- Complete collection with 90+ REST API endpoints
- Organized into logical categories (agents, messaging, memory, audio, etc.)
- Fixed URL paths to match actual implementation
- Includes collection variables and auto-generated test UUIDs
- Covers all discovered endpoints from server codebase
@0xbbjoker
fix: load the env config before agent project is loaded
582e374
@wtfsayo
Merge pull request #5048 from elizaOS/fix/load-the-env-config-before-…
32acdd6 
…project-load

fix: load the env config before agent project is loaded
@wtfsayo
Merge branch 'develop' into feature/postman-collection
855abe5
@ChristopherTrimboli
fix dup chats
e9eb544
@ChristopherTrimboli
Merge pull request #5043 from elizaOS/eliza-folder
39c11a2 
chore: migrate all generated files into .eliza
@ChristopherTrimboli
Merge pull request #5049 from elizaOS/dup-chats-fix
4925b5e 
fix: dup chats
@ChristopherTrimboli
Merge pull request #5047 from elizaOS/feature/postman-collection
40bf404 
chore: add comprehensive Postman collection for elizaOS APIs
@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Jun 10, 2025

Important

Review skipped

Auto reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

✨ Finishing Touches
🧪 Generate Unit Tests
  • Create PR with Unit Tests
  • Commit Unit Tests in branch develop
  • Post Copyable Unit Tests in Comment

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share
🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Explain this complex logic.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai explain this code block.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read src/utils.ts and explain its main purpose.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
    • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai full review to do a full review from scratch and review all the files again.
  • @coderabbitai summary to regenerate the summary of the PR.
  • @coderabbitai generate docstrings to generate docstrings for this PR.
  • @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
  • @coderabbitai auto-generate unit tests to generate unit tests for this PR.
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
  • @coderabbitai help to get help.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

@ChristopherTrimboli ChristopherTrimboli changed the title v1.0.8 chore: v1.0.8 Jun 10, 2025
@ChristopherTrimboli ChristopherTrimboli merged commit 928b3ca into main Jun 11, 2025
13 of 15 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
9 participants
@ChristopherTrimboli @lalalune @wtfsayo @odilitime @tcm390 @coderwander @standujar @yungalgo @0xbbjoker