github/OpenHands
1
0
Fork 0
mirror of https://github.com/OpenHands/OpenHands.git synced 2026-03-22 13:47:19 +08:00
Code Issues Packages Projects Releases Wiki Activity
6,283 Commits 1,217 Branches 123 Tags
b4107ff9dcb0464d304cc25be994de24b655cf95
Commit Graph

1037 Commits

Author SHA1 Message Date
openhands
b4107ff9dc settings: merge Critic+Security into Verification, remove OpenHandsAgentSettings 
- SDK: combined CriticSettings + SecuritySettings into VerificationSettings
  with backward-compat property accessors and type aliases
- Removed OpenHandsAgentSettings subclass — use AgentSettings directly
- Nav order: LLM → Condenser → Verification (was separate Security + Critic)
- Single verification-settings route replaces critic-settings + security-settings
- Updated _SDK_TO_FLAT_SETTINGS keys to verification.* namespace
- All 119 backend tests pass, frontend builds, lint clean

Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-17 02:31:05 +00:00
openhands
3e04713097 Merge remote-tracking branch 'origin/main' into openhands/issue-2228-gui-settings-schema 2026-03-17 02:28:36 +00:00
openhands
77f868081c feat: add Security settings section via OpenHandsAgentSettings 
Create OpenHandsAgentSettings(AgentSettings) in the OpenHands codebase
that extends the SDK's AgentSettings with a 'security' section containing
confirmation_mode (critical) and security_analyzer (major). The SDK's
export_schema() picks these up automatically via its metadata conventions.

Backend:
- SecuritySettings pydantic model with SDK metadata annotations
- OpenHandsAgentSettings subclass used by _get_sdk_settings_schema()
- _SDK_TO_FLAT_SETTINGS bridges dotted SDK keys to flat Settings attrs
  so existing consumers (session init, security-analyzer setup) work
- _extract_sdk_settings_values seeds from flat fields for UI display

Frontend:
- /settings/security route renders the security schema section
- Nav: LLM -> Security -> Condenser -> Critic (both SAAS and OSS)
- Removed empty General page (no schema section exists for it yet)

Tests:
- New test_get_sdk_settings_schema_includes_security_section
- All 119 backend + 10 frontend tests pass

Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-17 02:08:07 +00:00
openhands
3a12924bc8 refactor: add General/Security pages, remove SDK_LEGACY_FIELD_MAP, fix inferInitialView 
- Add /settings/general and /settings/security sidebar pages rendering
  their respective SDK schema sections
- Reorder nav: General above LLM, Security below LLM (both SAAS + OSS)
- Remove SDK_LEGACY_FIELD_MAP and all legacy field bridging — the only
  canonical store for SDK settings is now sdk_settings_values
- Simplify to_agent_settings(), _extract_sdk_settings_values(), and
  _apply_settings_payload() to read/write sdk_settings_values only
- Fix inferInitialView to accept an optional schemaOverride so
  SdkSectionPage passes filteredSchema (prevents cross-section
  minor-value overrides from elevating the view tier on unrelated pages)
- Add SETTINGS$NAV_GENERAL and SETTINGS$NAV_SECURITY i18n keys with
  translations for all 14 languages
- Use lock.svg for Security icon and settings.svg for General icon

Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-17 01:46:11 +00:00
Tim O'Farrell
8941111c4e refactor: use status instead of pod_status in RemoteSandboxService (#13436) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-16 17:34:27 -06:00
Xingyao Wang
55e4f07200 fix: add missing params to TestLoadHooksFromWorkspace setup (#13424) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-16 14:49:36 -04:00
openhands
c9a5834164 Merge main and resolve conflicts for SDK settings schema PR 
- Resolved merge conflicts in 5 files keeping both PR and main changes
- Fixed TestLoadHooksFromWorkspace missing pending_message_service and
  max_num_conversations_per_sandbox constructor args
- Removed unused UUID import flagged by ruff

All 118 targeted tests pass, frontend builds cleanly, pre-commit checks pass.

Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-16 17:55:03 +00:00
Xingyao Wang
00daaa41d3 feat: Load workspace hooks for V1 conversations and add hooks viewer UI (#12773) 
Co-authored-by: openhands <openhands@all-hands.dev>
Co-authored-by: enyst <engel.nyst@gmail.com>
Co-authored-by: Alona King <alona@all-hands.dev>
 2026-03-17 00:55:23 +08:00
Hiep Le
238cab4d08 fix(frontend): prevent chat message loss during websocket disconnections or page refresh (#13380) 2026-03-16 22:25:44 +07:00
Tim O'Farrell
d591b140c8 feat: Add configurable sandbox reuse with grouping strategies (#11922) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-16 05:19:31 -06:00
openhands
19a089aa4b Merge main and fix settings schema CI 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-15 19:51:27 +00:00
chuckbutkus
922e3a2431 Add AwsSharedEventService for shared conversations (#13141) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-13 14:32:58 -04:00
Tim O'Farrell
0527c46bba Add sandbox_id__eq filter to AppConversationService search and count methods (#13387) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-13 11:24:58 -06:00
Tim O'Farrell
8e6d05fc3a Add sandbox_id__eq filter parameter to search/count conversation methods (#13385) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-13 15:30:16 +00:00
openhands
918c44d164 Merge main and align settings schema with latest SDK 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-13 13:40:07 +00:00
Tim O'Farrell
8b8ed5be96 fix: Revert on_conversation_update to load conversation inside method (#13368) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-12 19:08:04 -06:00
Tim O'Farrell
e2805dea75 Fix pagination bug in event_service_base.search_events causing duplicate events in exports (#13364) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-12 12:24:06 -06:00
Tim O'Farrell
ab78d7d6e8 fix: Set correct user context in webhook callbacks based on sandbox owner (#13340) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-12 09:11:35 -06:00
Xingyao Wang
53bb82fe2e fix: use project_dir consistently for workspace.working_dir, setup.sh, and git hooks (#13329) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-11 15:26:34 +08:00
Joe Laverty
3432bbbb88 fix: Remove N+1 request from Bitbucket Data Center integration (#13281) 2026-03-10 11:08:30 -05:00
Tim O'Farrell
598b381e3d Added fallback for sandbox spec service (#13317) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-09 12:21:52 -06:00
openhands
e06e20a5ba fix: refresh SDK locks and settings schema coverage 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-09 17:55:59 +00:00
Ray Myers
698cfc2520 fix: sanitize file_path in git diff shell commands to prevent command injection (#13051) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-09 17:29:25 +00:00
aivong-openhands
ef840b046a remove mcp version check for cve_2025_66416 (#13277) 2026-03-09 09:38:44 -05:00
openhands
a03377698c Consume SDK AgentSettings schema in OpenHands 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-09 01:18:53 +00:00
openhands
9dab5b1bbf test: stub SDK schema in settings API coverage (#2228) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-08 21:43:35 +00:00
openhands
135d5fbd38 settings: fix schema-driven settings follow-ups (#2228) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-08 21:09:10 +00:00
openhands
ad615ebc8b settings: use generic sdk settings values in OpenHands 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-08 20:42:35 +00:00
openhands
424f6b30d1 settings: expose SDK settings schema to OpenHands (#2228) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-08 20:10:48 +00:00
aivong-openhands
b0cdd0358f fix: add mcp>=1.25 constraint and CVE-2025-66416 tests (#13247) 
Co-authored-by: openhands <openhands@all-hands.dev>
Co-authored-by: coderabbitai[bot] <136622811+coderabbitai[bot]@users.noreply.github.com>
 2026-03-06 10:31:46 -06:00
Chris Bagwell
41d8bd28e9 fix: preserve llm_base_url when saving MCP server config (#13225) 2026-03-06 02:39:58 +01:00
Rohit Malhotra
4c380e5a58 feat: Add timeout handling for Slack repo query (#13249) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-06 00:02:04 +00:00
Tim O'Farrell
15e9435b35 Remove ExperimentManager concept from codebase (#13215) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-04 13:41:18 -07:00
Pierrick Hymbert
e7934ea6e5 feat(bitbucket): supports cloud and server APIs (#11052) 
Co-authored-by: Ray Myers <ray.myers@gmail.com>
Co-authored-by: Chris Bagwell <chris@cnpbagwell.com>
Co-authored-by: CHANGE <joe.laverty@openhands.dev>
Co-authored-by: Joe Laverty <jlav@users.noreply.github.com>
 2026-03-03 10:51:43 -05:00
chuckbutkus
0c7ce4ad48 V1 Changes to Support Path Based Routing (#13120) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-03-02 22:37:37 -05:00
Hiep Le
8059c18b57 fix(backend): update planning agent to direct users to the build button instead of asking ready to proceed (#13139) 2026-03-03 03:31:29 +07:00
aivong-openhands
baaec8473a Fix CVE-2024-23342: Replace python-jose with jwcrypto (#13012) 
Co-authored-by: OpenHands CVE Fix Bot <openhands@all-hands.dev>
 2026-02-27 22:15:23 +00:00
aivong-openhands
a905e35531 Fix CVE-2026-25990: Update pillow to 12.1.1 (#13024) 
Co-authored-by: OpenHands CVE Fix Bot <openhands@all-hands.dev>
 2026-02-27 12:37:25 -06:00
Tim O'Farrell
3161b365a8 Add sandbox_id field to conversation endpoints (#13044) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-25 14:29:42 +00:00
MkDev11
51b989b5f8 feat: Allow attaching/changing repository for existing conversations (#12671) 
Co-authored-by: mkdev11 <MkDev11@users.noreply.github.com>
Co-authored-by: hieptl <hieptl.developer@gmail.com>
 2026-02-25 18:09:12 +07:00
Tim O'Farrell
0677c035ff Optimize get_sandbox_by_session_api_key with hash lookup (#13019) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-24 13:55:21 +00:00
Tim O'Farrell
ddb809bc43 Add webhook endpoint authentication bypass and admin context unfiltered data access (#12956) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-23 09:28:49 +00:00
sp.wack
3bc2ef954e fix(backend): config values (#12944) 2026-02-20 17:53:35 +04:00
Manrique Vargas
3fc977eddd fix(mcp): skip conversation link when conversation_id is None (#12941) 
Signed-off-by: machov <mv1742@nyu.edu>
Co-authored-by: Rohit Malhotra <rohitvinodmalhotra@gmail.com>
 2026-02-19 21:41:26 +00:00
Chujiang
6676cae249 fix: add missing type hints and improve test logging (#12810) 
Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>
 2026-02-19 00:58:39 +01:00
Clay Arnold
fede37b496 fix: add claude-opus-4-6 to temperature/top_p guard (#12874) 
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
 2026-02-19 00:33:17 +01:00
Engel Nyst
b06b9eedac fix: wire suggested task prompts for V1 (#12787) 
Co-authored-by: openhands <openhands@all-hands.dev>
 2026-02-16 23:57:32 +01:00
Hiep Le
1948200762 chore: update sdk to the latest version (#12811) 2026-02-11 12:57:08 +07:00
MkDev11
4fa2ad0f47 fix: add exponential backoff retry for env var export when bash session is busy (#12748) 
Co-authored-by: mkdev11 <MkDev11@users.noreply.github.com>
 2026-02-06 05:07:17 -07:00
Hiep Le
ee2885eb0b feat: store plan.md file in appropriate configuration folders (#12713) 2026-02-06 16:09:39 +07:00