8 Commits

Author	SHA1	Message	Date
ZhenYi	bc7a5a6549	fix: resolve remaining warnings and fix API method name ... - issue_triage.rs: use check_project_access instead of nonexistent get_project_member - email/lib.rs: make EMAIL_REGEX pub to suppress dead_code warning - tracing_fmt.rs: minor import ordering cleanup and code formatting	2026-04-27 16:42:01 +08:00
ZhenYi	09645d8641	fix: resolve multiple bugs across backend and frontend ... Security fixes: - Remove WS token from plaintext log output (ws_universal.rs) - Replace weak LCG PRNG with rand::thread_rng() for access key generation - Add project membership check to issue triage endpoint (prevent unauthorized AI usage) - Validate deepLinkUrl to prevent javascript: navigation (XSS defense-in-depth) Data integrity fixes: - Fix UUID truncation in AI model sync (as_u128() as i64 -> timestamp_millis) - Wrap PR cascade delete in database transaction - Add missing cascade deletes for room_message_reaction, room_message_edit_history, room_notifications - Fix N+1 query for last_commit_times (single grouped query instead of per-repo) Panic prevention: - Replace unwrap() with safe fallbacks in health/metrics endpoints (email, git-hook apps) - Replace unwrap() in access key scopes serialization - Replace expect() in tool executor result map with synthetic error - Replace expect() in log level parsing with default fallback Logic bugs: - Fix users_online metric double-decrement (decrement only when count reaches 0) - Fix Map iteration + deletion bug in universal-ws.ts onclose handler - Fix stale audioStream reference in catch block (use local stream variable) - Add missing reInit event cleanup in carousel.tsx - Fix email retry backoff integer overflow ((1 << i) as u64 -> 1u64 << i) React fixes: - Use message.id instead of index as key in message-list - Add audio stream cleanup on unmount in use-audio-recording	2026-04-27 13:54:21 +08:00
ZhenYi	f36f08e3c4	fix: remaining unwrap panics and new bugs discovered during audit ... - email worker: replace Mailbox::parse().unwrap() with match to handle invalid recipient addresses gracefully - metrics middleware: RwLock poison recovery on read/write locks to prevent panic on thread panic - access key: SystemTime::now() unwrap_or_default instead of unwrap for clock-before-epoch edge case - chpc: NaiveDateTime and_hms_opt unwrap_or MIN/MAX fallbacks - push notification: second code path fixed for let-chain unwrap - ai_streaming: constant UUID parse use expect() instead of unwrap	2026-04-27 11:30:01 +08:00
ZhenYi	10836730ed	feat: add health endpoints and Prometheus metrics to git-hook and email-worker ... Health monitoring: - gitserver: /health endpoint on port 8021 (DB + Redis ping) - git-hook: hyper health server on port 8083 with /health - email-worker: hyper health server on port 8084 with /health - K8s probes updated to httpGet for all three services Metrics (via /metrics endpoint): - git-hook: hook_tasks_total/success/failed/locked/retried/exhausted, hook_sync_branches/tags_changed_total - email: email_queued/consumed/sent/failed_total, email_validation_skipped/build_errors/send_attempts_total	2026-04-25 23:45:48 +08:00
ZhenYi	e99feb236b	refactor(core): migrate session_manager, email, rpc from slog to tracing ... - session_manager/manager.rs: remove slog::Logger field, update new() and with_config() to remove log parameter - email/lib.rs: remove slog::Logger from AppEmail::init() - rpc/admin/server.rs: remove slog::Logger from serve() and spawn(), replace with tracing::info!/error!	2026-04-21 22:29:43 +08:00
ZhenYi	39d30678b5	fix(email): resolve SMTP connection failures (port 465 SMTPS, URL double scheme, retry backoff)	2026-04-19 01:04:11 +08:00
ZhenYi	882e86dc33	refactor(email): switch to async channel-based email queue with retry ... Converts AppEmail from blocking sync sends to a background worker via mpsc channel, adds SMTP pool tuning (min_idle 5, max_size 100), and 3-retry backoff on send failures.	2026-04-19 00:10:38 +08:00
ZhenYi	93cfff9738	init	2026-04-15 09:08:09 +08:00