Skip to content

cowork-bot: add licensing/analytics/auth Pro features to inspector#6

Merged
Coding-Dev-Tools merged 1 commit into
mainfrom
cowork/local-merge-20260704
Jul 4, 2026
Merged

cowork-bot: add licensing/analytics/auth Pro features to inspector#6
Coding-Dev-Tools merged 1 commit into
mainfrom
cowork/local-merge-20260704

Conversation

@Coding-Dev-Tools

Copy link
Copy Markdown
Owner

Adds a licensing layer, analytics module, and inspector auth, plus supporting scripts, docs (LAUNCH_PLAN, GO_TO_MARKET), config wiring and tests. 14 modified files + 10 new files; applies cleanly onto current origin/main. Substantial change — flagged for human review, not auto-merged.

Adds a licensing layer, analytics module, and inspector auth, plus supporting scripts, docs (LAUNCH_PLAN, GO_TO_MARKET), config wiring and tests. 14 modified files + 10 new files; applies cleanly onto current origin/main. Substantial change — flagged for human review, not auto-merged.
@Coding-Dev-Tools
Coding-Dev-Tools merged commit f41cfa2 into main Jul 4, 2026
5 checks passed
@Coding-Dev-Tools
Coding-Dev-Tools deleted the cowork/local-merge-20260704 branch July 4, 2026 01:01
Coding-Dev-Tools added a commit that referenced this pull request Jul 9, 2026
Closes the §3.2 gap where CI installed only numpy+pytest, so ruff never ran and the fastapi/mcp/tree-sitter-gated tests always skipped (which is how the mcp_server.py truncation could have slipped past CI). CI now runs three jobs:
- test (matrix 3.10/3.11/3.12): pip install -e ".[test]" (full offline stack, no torch), ruff check ., the full 135-test suite, both eval datasets, and ablation.
- core-py39: numpy-only core on the 3.9 floor (extras-gated tests skip) — verifies requires-python >=3.9 empirically.
- build: sdist+wheel build and a clean-install import check.

Adds a `test` extra to pyproject.toml and updates classifiers to 3.9-3.12.
Coding-Dev-Tools added a commit that referenced this pull request Jul 9, 2026
…imiting (#6)

Brings the legacy v1 REST surface to parity with the v2 service.py write-path guards that SECURITY.md flagged as missing:
- Pydantic models strip control characters and cap length (content 100k, title 1k, names 200) on stored/name/query text via AfterValidator; the /documents/upload path caps body size and strips control chars.
- Optional in-process per-client-IP rate limiter (ENGRAPHIS_RATE_LIMIT/_WINDOW), sliding window, 429 + Retry-After, off by default; health/static exempt.

Adds tests/test_v1_hardening.py (4 tests). Full gate green: 139 tests, evals 1.000, ablation 1.0, ruff clean. Updates SECURITY.md + CHANGELOG.
Coding-Dev-Tools added a commit that referenced this pull request Jul 9, 2026
Adds a licensing layer, analytics module, and inspector auth, plus supporting
scripts, docs (LAUNCH_PLAN, GO_TO_MARKET), config wiring and tests. 14 modified
files + 10 new files.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant