Phase 1: Project 9 automation, workspace_providers, orchestrator (from draft) #312
Conversation
- Remove OpenTelemetry dependencies from requirements.txt (not implemented) - Clean up Grafana references from documentation (removed per team decision) - Keep Prometheus (actively used for metrics collection) - Update documentation to reflect current monitoring stack - Add MONITORING_ANALYSIS.md with comprehensive analysis Changes: - requirements.txt: Removed opentelemetry-api and opentelemetry-sdk - docs/: Updated all documentation to remove Grafana references - Framework docs: Updated architecture diagrams and specs - Note: Prometheus remains active and required
- Rename apps/api to apps/hyperagent-api - Rename apps/web to apps/hyperagent-web - Create apps/issue-automation for GitHub automation - Move agents/ to services/agents/ - Move scripts/ to tools/scripts/ - Create packages/config with typed config helpers - Add pnpm-workspace.yaml and turbo.json - Update package.json files for all apps - Update .gitignore for per-app env files
- Merge projects branch (GitHub automation) into feature branch - Resolve conflicts by keeping monorepo structure - Integrate new LLM documentation from projects branch - Keep issue-automation app structure - Resolve file conflicts (gitignore, README, workflows)
- Keep monorepo structure with Turbo scripts - Merge author and repository info from projects branch - Remove conflict markers - Ensure valid JSON syntax
- Create missing package.json files for sdk-ts, shared-ui, and env packages - Fix JSON syntax error in hyperagent-web/package.json (trailing comma) - Move resolutions to root package.json using pnpm.overrides - Install turbo as dev dependency - Update @mantleio/sdk to latest version (1.0.5) - Update api-gateway to use workspace protocol for @hyperagent/env - Create packages/env directory and package.json
- Update project structure to reflect monorepo layout - Add project status section - Update installation instructions for pnpm workspace - Add Turbo commands documentation - Follow README.mdc standards - Simplify and modernize content
- Execute read-only git commands (status, diff) even in dry-run mode - Fix unstaged file detection to handle deleted, renamed, and all status types - Update file grouping to support new monorepo paths (hyperagent-web, hyperagent-api) - Improve path normalization for Windows compatibility
- Update setup instructions for pnpm workspace - Add Turbo commands documentation - Update paths to reflect apps/hyperagent-api structure - Add monorepo structure overview - Update deployment instructions for Render/VPS - Add troubleshooting section for monorepo-specific issues - Modernize content for current project structure
- Add team structure and responsibilities - Document GitFlow branch strategy - Explain sprint implementation workflow - Document parallel commit and issue tracking scripts - Add do's and don'ts section - Include common pitfalls and solutions - Add critical Git best practices (no rebase shared commits) - Include code review process - Add communication guidelines - Provide quick reference commands
- Show all files in dry-run mode (not truncated) - Properly detect deleted files in getAllChangedFiles - Display complete file list in planning output - Fix file staging logic for deleted files - Improve dry-run accuracy to match actual commit behavior
- Fix getAllChangedFiles to handle staged deletion format (D vs D) - Staged deletions start filename at position 2, unstaged at position 3 - Dry-run now accurately shows all files that would be committed - Display all files in dry-run output (not truncated) - Fixes typo where 'docs' was showing as 'ocs'
- Keep deleted files removed (part of monorepo restructure) - Resolve README.md conflict (keep updated monorepo badges) - Resolve requirements.txt conflict (keep OpenTelemetry dependencies) - All conflicts resolved, ready for merge
…rom-projects feat: monorepo restructure and issue automation integration
.windsurf is already in .gitignore but was accidentally committed. Removing from Git tracking while keeping local files.
Ignore backup-before-env-removal-* directories to prevent accidental commits
…rom-projects feat: monorepo restructure and issue automation integration
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
apps/hyperagent-api/requirements.txt
Outdated
Check failure
Code scanning / Trivy
MLFlow is vulnerable to DNS rebinding attacks due to a lack of Origin header validation High
apps/hyperagent-api/requirements.txt
Outdated
Check failure
Code scanning / Trivy
MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability High
apps/hyperagent-api/requirements.txt
Outdated
Check failure
Code scanning / Trivy
MLflow Weak Password Requirements Authentication Bypass Vulnerability High
apps/hyperagent-api/requirements.txt
Outdated
Check failure
Code scanning / Trivy
mlflow Creates of Temporary File in Directory with Insecure Permissions High
apps/hyperagent-api/requirements.txt
Outdated
Check failure
Code scanning / Trivy
MLflow has a Local File Read/Path Traversal in dbfs High
apps/hyperagent-api/requirements.txt
Outdated
Check failure
Code scanning / Trivy
MLFlow unsafe deserialization High
apps/hyperagent-api/requirements.txt
Outdated
Check failure
Code scanning / Trivy
MLflow's excessive directory permissions allow local privilege escalation High
apps/hyperagent-api/requirements.txt
Outdated
Check warning
Code scanning / Trivy
MLflow Uncontrolled Resource Consumption vulnerability Medium
apps/hyperagent-api/requirements.txt
Outdated
Check warning
Code scanning / Trivy
MLFlow SSRF via gateway_proxy_handler Medium
apps/hyperagent-api/requirements.txt
Outdated
Check notice
Code scanning / Trivy
MLflow has Weak Password Requirements Low
2 participants
Phase 1 delivery from hyperagent-draft. See branch feature/justinedevs on Hyperkit-Labs/hyperagent-draft. If opening cross-repo: use GitHub UI to compare hyperagent-draft:feature/justinedevs vs hyperagent:main.
Made with Cursor