chiguyong
|
47f3bfecfc
|
feat(documents): add document processing capability (U1-U9)
Implements end-to-end document generation, template filling, and reading:
- DocumentService: unified business layer for create/query/download
- Renderers: Word (Markdown->docx), Excel (Markdown/JSON->xlsx),
PDF (Markdown->pdf with CJK font), Template (Jinja2 sandbox .docx fill)
- DocumentLoader: read PDF/Word/Excel/Markdown/HTML/text -> Document
- DocumentTool: Agent tool with action=create|read
- REST API: /api/v1/documents (create, upload-template, list, download)
- Frontend: DocumentPanel, DocumentCard, documents Pinia store,
chat store tool_result detection
- Security: path traversal guard (Path.resolve + relative_to),
SSTI guard (SandboxedEnvironment), API key auth, 50MB upload limit
- Bug fixes: template path traversal (400 not 500), TemplateRenderer
lazy-load (no external registration dependency)
- Tests: 168 tests (unit + security + E2E F1/F2/F3 + bug hunt)
- Docs: README section 17, requirements + plan + test-plan docs
Requirements R1-R28 verified, F1-F3 user flows pass.
|
2026-06-23 15:05:01 +08:00 |
chiguyong
|
91f56ca663
|
feat: 企业级客户端-服务端架构 + 代码审查修复
## 主要变更
### 新增功能
- 企业级客户端-服务端架构(JWT 认证 + RBAC 权限 + 终端安全)
- Tauri 桌面客户端与服务端配置同步
- 远程 LLM 网关(RemoteLLMProvider,支持 401 token 刷新重试)
- 服务端终端 WebSocket(带管理员审批流程)
- 终端白名单六层防御(黑名单 → shell 操作符检测 → 内置安全 → 全局/用户/会话白名单 → 危险检测)
### 代码审查修复(P0/P1/P2)
- P0: 危险二进制(rm/docker 等)不再加入白名单,compute_whitelist_entry 返回 None
- P1: 终端审批所有权追踪(_approval_owners dict)+ 会话清理防泄漏
- P1: 本地终端 WebSocket URL 补齐 JWT token
- P1: 审计日志支持 terminal_mode 过滤
- P1: /system/resources 端点强制 SYSTEM_CONFIG 权限
- P1: RemoteLLMProvider 增加 401 token 刷新重试机制
- P1: auth/models.py 使用 Mapping[str, object] 替代 Any 类型
- P2: 终端授权依赖检查 is_active 账户状态
- 修复 app.py 未使用的 APIKeyAuthMiddleware 导入
### 文档更新
- README.md: 新增第 16 章「企业级客户端-服务端架构」
- AGENTS.md / CLAUDE.md: 同步模块映射、路由表、前端页面
- 计划文档标记为 completed
Closes: docs/plans/2026-06-19-003-feat-enterprise-client-server-evolution-plan.md
|
2026-06-20 06:48:18 +08:00 |
chiguyong
|
99fe4c99f7
|
fix: comprehensive code review fixes + WS test stability
|
2026-06-15 08:17:34 +08:00 |
chiguyong
|
baaa7089cd
|
docs: update README and knowledge graph for gap closure features
- README: add dark theme, LLM cache, semantic router, cascade detection, ComputerUseTool, @-mention
- build_kg.py: add 30+ module summaries for new modules
- knowledge-graph.json: rebuild (2496 nodes, 3328 edges)
- fingerprints.json: recalculate 524 file fingerprints
- meta.json: update gitCommitHash and analyzedAt
|
2026-06-14 16:54:12 +08:00 |
chiguyong
|
94c4c8b887
|
feat: accumulated frontend enhancements, docs, and static assets
- Frontend view updates (ChatView, EvolutionView, SkillsView, etc.)
- Updated portal routes and chat store
- New frontend components (FilePreview, ToolCallCard, IconNav)
- Updated static build assets
- New test files (merged router, parallel tools, ReWOO fallback)
- Documentation and brainstorm files
- Codegraph and understand-anything artifacts
|
2026-06-14 16:35:01 +08:00 |
chiguyong
|
5ef08a3b30
|
fix(review): comprehensive P0-P2 code review fixes
|
2026-06-12 22:18:25 +08:00 |
chiguyong
|
74e2223153
|
feat(cli): pair command + doctor rename + client config priority
- health → doctor (better naming)
- agentkit pair --name <client> generates ak_live_ API key
- agentkit pair --list / --revoke for client management
- ClientConfig class: client config > init defaults > hardcoded
- README updated with pair usage + business system pairing guide
- 38 CLI tests passing
|
2026-06-06 13:08:14 +08:00 |
chiguyong
|
3cd6a73d86
|
feat(cli): Docker deployment + README CLI section
U5: docker-compose.yaml (agentkit + redis + postgres) + Dockerfile ENTRYPOINT
U6: README updated with CLI quick start + Docker deployment guide
31 CLI tests passing, no regression.
|
2026-06-06 12:47:47 +08:00 |
chiguyong
|
f87b790c0f
|
feat(agentkit): v2 Phase 1 - ReAct/LLM Gateway/Skill/Server + review fixes
535 unit + 52 integration tests passing. README added.
|
2026-06-05 23:32:16 +08:00 |